Author Topic: javascript malware on site detected?  (Read 1285 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33928
  • malware fighter
javascript malware on site detected?
« on: November 25, 2015, 10:29:31 PM »
See: https://www.virustotal.com/nl/url/77b39ea131ca0731a9c87a08116ee76702071cb4e83d574af5d161a39b081565/analysis/1448485932/
Blacklisted because of PHISHing attacks and Google Safebrowsing blacklisted.
Re: https://www.google.com/transparencyreport/safebrowsing/diagnostic/index.html#url=shoppasherpa.com
55 malicious files detected: Detected encoded JavaScript code commonly used to hide malicious behaviour.
Details:   Malicious obfuscated JavaScript threat -> https://www.unphp.net/decode/a1e9e36a154338be13903218448b2eba/
MD5: a1e9e36a154338be13903218448b2eba

Malicious: http://zulu.zscaler.com/submission/show/88d6bdab9776699b7e9d044d44bed45d-1448486111
Re: http://www.domxssscanner.com/scan?url=http%3A%2F%2Fshoppasherpa.com%2Fterms_of_use.php
Blocked: uBlock₀ has prevented the loading of:
-http://w.sharethis.com/button/buttons.js
Because of the filter
-||w.sharethis.com^
Found in: hpHosts’ Ad and tracking servers

pol
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37599
  • Not a avast user

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33928
  • malware fighter
Re: javascript malware on site detected?
« Reply #2 on: November 25, 2015, 11:44:22 PM »
Thanks, Pondus, we are being protected. Good to know.

pol
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!