« previous next »
Pages: [1]   Go Down

Author Topic: Is this HTML Malware?  (Read 1218 times)

0 Members and 1 Guest are viewing this topic.

Offline TrueIndian

  • Poster
  • *
  • Posts: 433
Is this HTML Malware?
« on: June 20, 2015, 05:20:12 AM »
I found this on a facebook page.

https://www.virustotal.com/en/file/e28989f6f28ffcfff070a6e94116b6c0691c3fa4173efce5c6c6fbf96943d2cf/analysis/1434770219/

Avira detected this as HTML/Redir.EP.76.Should this be detected by avast too?

Zscalar found it malicious:
http://zulu.zscaler.com/submission/show/a0b18e056240f43c6b2df7b6c7779db1-1434770846
« Last Edit: June 20, 2015, 05:32:05 AM by True Ind »
Logged

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33914
  • malware fighter
Re: Is this HTML Malware?
« Reply #1 on: June 20, 2015, 10:54:16 AM »
Hi True Ind,

Thanks for reporting to us all.
Read here about the infested plug-in script file: http://www.kriesi.at/support/topic/google-reports-malware-in-enfold-file/
The other one comes infested on Chinese sites, SEO malware related, read: http://www.bot24.com/2013/03/xss-vulnerabilities-in-zeroclipboard.html - link site detected as with malware: http://urlquery.net/report.php?id=1434790111260
Re: https://www.virustotal.com/en-gb/ip-address/209.188.31.25/information/
See: http://toolbar.netcraft.com/site_report?url=funmoodapps.com
Threat reproted on IP: https://cymon.io/209.188.31.25 Malicious activities reported! (as you so aptly reported).

polonus
« Last Edit: June 20, 2015, 10:56:58 AM by polonus »
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline TrueIndian

  • Poster
  • *
  • Posts: 433
Re: Is this HTML Malware?
« Reply #2 on: June 21, 2015, 04:15:56 AM »
Hi Pol,
I have reported the threat to virus AT avast DOT com.
Logged
Pages: [1]   Go Up
« previous next »