@adotd,
Here you may participate, because it is not about giving advice for qualified malware removal. And you are not hindering a qualified malware routine.
What you come up with is a privacy risk for a particular subdomain found there, that is flagged, but they say it is currently found safe. Good observation, as it is tracker script, and benign as far as we can establish here:
http://zulu.zscaler.com/submission/show/95f6e60bcecfc453edd2f9bea7f3e8c9-1333320107The BrightCloude index score is green 88 for the IP, that means "There is a very low probability that the user will be exposed to malicious links or payloads",
@4444
I found the vulnerability via Chrome PasswordFail extension and this is valid:
And this was a problem: This website send passwords in clear text upon request
NAME MySpace
TYPE Social Network
STATUS Insecure
REPORTED BY sondreb
REPORTED DATE Saturday, September 12, 2009
LAST UPDATED DATE Saturday, September 12, 2009
And we have this report:
http://www.google.com/safebrowsing/diagnostic?site=www.msplinks.com See:
http://www.unmaskparasites.com/web-page-options/? 3 exploits), 1 scripting exploit:
url=hxtp//www.msplinks.com/MDVodHRwOi8vd3d3LmJsZWVwaW5nY29tcHV0ZXIuY29tL2ZvcnVtcy90b3BpYzM5MDU0MC5odG1s%3Ft%3Dq0iUWTbWPeWgQTnFXorIMYqhYNULQkEFV7OeQS8S14zsRvDdKxEhjSKIX0QvOSGMRDuJkq9125ByyjJE-DxxlQ (no longer responding - was discussed at bleeping computer...)
polonus