« previous next »
Pages: [1]   Go Down

Author Topic: HTML/Rce.Gen3 flagged here?  (Read 790 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33925
  • malware fighter
HTML/Rce.Gen3 flagged here?
« on: August 15, 2015, 03:55:26 PM »
See: https://www.virustotal.com/en/url/feeae9ba4b5c8ea994bd90b5a108e508951ffc9d99a6bdd9cbd605b7cde7433b/analysis/1439646314/
See: index.html
Severity:   Malicious
Reason:   Detected malicious drive-by-download attack
Details:   Malicious obfuscated JavaScript threat
Offset:   4027
Threat dump:   View code
Code: [Select]
[[DropFileName = "svchost.exe"^WriteData = ]]  Threat dump MD5:   04421920DFEB0470D4EE51EDB8A93CFA
File size[byte]:   65705
File type:   HTML
Page/File MD5:   A2A2C13151DA6609A072307AF749885B
Scan duration[sec]:   0.004000

Malware   Detected   Critical   GET YOUR SITE CLEANED
ISSUE DETECTED   DEFINITION   INFECTED URL
Defacement   MW:DEFACED:01   -http://environicsdigital.com/./HaCkeD By V0TR3X_files/2.js
Defacement   MW:DEFACED:01   -http://environicsdigital.com
Defacement   MW:DEFACED:01   -http://environicsdigital.com/404testpage4525d2fdc
Defacement   MW:DEFACED:01   -http://environicsdigital.com/404javascript.js
Defacement   MW:DEFACED:01   -http://environicsdigital.com/404javascript.js
Web site defaced. Details: http://sucuri.net/malware/entry/MW:DEFACED:01
<title>HaCkeD By Med Max</title>
*Site error detected. Details: http://sucuri.net/malware/php-error-fatal-error?v6
<b>Fatal error</b>:  Call to undefined function wp() in <b>/nfs/c01/h12/mnt/2895/domains/environicsdigital.com/html/wp-blog-header.php</b> on line <b>14</b><br />

Security risk external link: مركز تحميل الصور, تحميل الصور, مركز تحميل صور, ... padlock icon
-www.gulfup.com
Alerts (1)
Insecure login (1)
Password will be transmited in clear to- http://www.gulfup.com/login
Infos (1)
Encryption (HTTPS) (1)
Communication is NOT encrypted

See: http://www.domxssscanner.com/scan?url=http%3A%2F%2Fenvironicsdigital.com%2F

Defacement: http://killmalware.com/environicsdigital.com/

polonus
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!
Pages: [1]   Go Up
« previous next »