Is this site secure or just having poor WOT results?

Hi forum friends,

Look here: http://wepawet.iseclab.org/view.php?hash=1646cc8756c9e6bbbc38024b95513a97&t=1306269723&type=js
Websense ThreatSeeker says Malware site
SOSWebscan: -http://www.mypcsafe.com/tag/windrv-sys-remover has been successfully scanned.
And No Malware or badwares found.
Sucuri status: Site verified to be secure and free of malware.
web trust: Site not blacklisted.
Only WOT results are very poor…
hpHosts give it a FSA status - faudulent software and websites
Is it only the webcontent reputation that is at stake here?

polonus

P.S. Do not like the script link here: -http://dt.tongji.linezing.com etc
because: http://www.threatlog.com/search/dt.tongji.linezing.com

D

Hi forum friends,

Searching the link there -http://js.tongji.linezing.com/1247328/tongji.js
made me land at this write up on a particular grand scale SQL attack:
http://www.net-security.org/secworld.php?id=8604 from a year ago
article source: Help Net Security
and I stumbled upon this ThreatExpert Report: http://www.threatexpert.com/report.aspx?md5=db1a291598d8acd5e1cbfa2a24981e0f

The data identified by the following URLs was then requested from the remote web server: -http://js.tongji.linezing.com/1170422/tongji.js -http://js.tongji.linezing.com/icon1.gif -http://js.tongji.linezing.com/1267979/tongji.js -http://js.tongji.linezing.com/988330/tongji.js

polonus

Update: https://www.virustotal.com/nl/url/cd01903631fa438a5ef2a6024f5ab3b24927d46a241fa148abd66d36fb3879a5/analysis/1438636484/
https://sitecheck.sucuri.net/results/www.aixinmama.org site potentially harmful → : http://www.aixinmama.org/js/tongji.js
Consider: http://www.domxssscanner.com/scan?url=http%3A%2F%2Fwww.aixinmama.org
Outdated Web Server Apache Found: Apache/2.2.22
Been with us quite some time since 2009: http://blog.emagined.com/2009/12/11/the-new-sql-injection-attack/
http://quttera.com/detailed_report/www.aixinmama.org 74 maicious files:
Severity: Malicious
Reason: Detected reference to blacklisted domain
Details: Detected reference to malicious blacklisted domain wap.cmread.com, p2008.zbjimg.com, h.hiphotos.baidu.com,
www.qqma.com, www.jianyonghy.com, www.hongyu.tv, www.shw.cn, www.xjbsy.com etc. etc.

polonus

polonus