« previous next »
Pages: [1]   Go Down

Author Topic: Suspicious URLs found on website...Bitcom SCAM via iFrame on line 884.  (Read 1013 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33913
  • malware fighter
Suspicious URLs found on website...Bitcom SCAM via iFrame on line 884.
« on: November 21, 2018, 01:58:17 PM »
IDS Alert for
Quote
ET CURRENT_EVENTS Double-Encoded Reverse Base64/Dean Edwards Packed JavaScript Observed in Unknown EK Feb 16 2015 b64 1 M2
-> https://urlquery.net/report/b515ccbb-1759-4b94-bfcc-8aec0a2b456a

Recent detections on domain: https://www.virustotal.com/#/domain/math-bimprippt19.blogspot.com.es
Re: https://aw-snap.info/file-viewer/?protocol=not-secure&ref_sel=GSP2&ua_sel=ff&chk-cache=&fs=1&tgt=bXx0aC1iW21wfVtwcHQxOS5ibF1nc3BddC5eXW0ue3NgMjAxM2AwMWBze2x8bXx0LSN8dHxuZy0jWy1iW21wfVstcHB0Lmh0bWw%3D~enc
Does avast detect: Suspicious URLs found in: -http://math-bimprippt19.blogspot.com.es/2013/01/selamat-datang-di-bimpri-ppt.html

1: hxxp://ad·a-ads·com/799751?size=468x60  Bitcoin SCAM to rip off and steal money.
malicious iframe code on line 884 of the code.
First of these two iFrames. Any iframes? Yes there are. show.
Quote
1. <iframe data-aa="799751" src="//-ad.a-ads dot com/799751?size=468x60" scrolling="no" style="width:468px; height:60px; border:0px; padding:0;overflow:hidden" allowtransparency="true"></iframe>
2. <iframe class="blogger-iframe-colorize blogger-comment-from-post" height="410" id="comment-editor" name="comment-editor"></iframe>

polonus (volunteer 3rd party cold reconnaissance website security analyst and website eror-hunter)
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!
Pages: [1]   Go Up
« previous next »