Hi malware fighters,
Only finjan detects this as a spyware site: htxp://mpay.qq.com/index.htm Title: 腾讯移动支付平台
Cannot try out at wepawet because that is down for maintanance now…
Check here: http://jsunpack.jeek.org/dec/go?report=1e9aed7001810994cd1b1c8e29376c3164685a77
maybe because of this script there?: htxp://pingjs.qq.com/ping.js
see: http://jsunpack.jeek.org/dec/go?report=39c8453f320190e4a69f80c30a81c3a64aa57874
For the malware trend see: http://www.tenebril.com/src/info.php?id=441301950
But because of securemost reports, I do not know how the situation is now considering QQ-adware,
iFrame detecting scan delivered these results:
No zeroiframes detected!
Check took 39.77 seconds
(Level: 0) Url checked:
htxp://mpay.qq.com/index.htm
Zeroiframes detected on this site: 0
No ad codes identified
(Level: 1) Url checked: (script source)
htxp://source2.qq.com/pub/mpay/js/jquery-1[1].3.2.min.js
Zeroiframes detected on this site: 0
No ad codes identified
(Level: 1) Url checked: (script source)
htxp://source2.qq.com/pub/mpay/js/jquery.blockui.js
Blank page / could not connect
No ad codes identified
(Level: 1) Url checked: (script source)
htxp://source2.qq.com/pub/mpay/js/v1.0/sys.js
Zeroiframes detected on this site: 0
No ad codes identified
(Level: 2) Url checked: (iframe source)
htxp://source2.qq.com/pub/mpay/js/v1.0//login.html
Blank page / could not connect
No ad codes identified
(Level: 2) Url checked: (iframe source)
htxp://source2.qq.com/pub/mpay/js/v1.0//loading.html
Blank page / could not connect
No ad codes identified
(Level: 1) Url checked: (script source)
htxp://source1.qq.com/common/javascript/builder_footer_normal_v1.0.js
Zeroiframes detected on this site: 0
No ad codes identified
(Level: 1) Url checked: (script source)
htxp://pingjs.qq.com/ping.js
Zeroiframes detected on this site: 0
No ad codes identified
External references:
External References
-
source2.qq.com safe? - displaying 4 of 4
- link - htxp://source2.qq.com/pub/mpay/js/jquery-1[1].3.2.min.js
- link - htxp://source2.qq.com/pub/mpay/js/jquery.blockUI.js
- link - htxp://source2.qq.com/pub/mpay/js/v1.0/sys.js
- 我要留言 - htxp://source2.qq.com/pub/mpay/images/v1.0/ASK/index.html
-
service.qq.com safe? - displaying 1 of 1
-
source1.qq.com safe? - displaying 1 of 1
- link - hxtp://source1.qq.com/common/javascript/builder_footer_normal_v1.0.js
-
pingjs.qq.com safe? - displaying 1 of 1
- link - htxp://pingjs.qq.com/ping.js
polonus