My malware Script Detector v.02b immedeately starts to alert for an XSS atatck on that URL and well on:
-http://rcybc.com/news.asp?bigclass=%C3%83%3F%3F%3F%3F% etc. etc. is in Dr.Web malicious sites list!
Site potentially harmful ->
https://sitecheck.sucuri.net/results/rcybc.comNorton Safeweb at one time found 22 threats at this website. Not given as safe to visit:
https://www.google.com/transparencyreport/safebrowsing/diagnostic/index.html#url=rcybc.comiFrame included: -http://cache.xixik.com.cn/10/rongcheng/
Quttera detects 28 malicious files:
http://quttera.com/detailed_report/rcybc.comDetected malicious drive-by-download attack
Details: Malicious obfuscated JavaScript threat
[[DropFileName = "svchost.exe"^^WriteData = ]]malware referer: -http://rcybc.com/rfzn.asp?BigClass=????1u0026SmallClass=...?%C
Cookie: ASPSESSIONIDCAATCCRC=GNDPAFFDKJKOBDIEDGBMCNPD; safedog-flow-item=B1CC6E8369D8737D2CE4921F43E94457 &
Custom errors:Fail and three warnings on:
https://asafaweb.com/Scan?Url=rcybc.comAvast should detect a VBS dropper malware variant here!
polonus (volunteer website security analyst and website error-hunter)
