Avast Community

Phishing and other frauds on website....

Viruses and worms

polonus October 21, 2015, 10:02pm 1

Re: https://sitecheck.sucuri.net/results/tasses.com
Listed at PHISHTank. Compromised sites will often be linked to malicious javascript in an attempt to attack users of your WordPress installation. Look over the listed javascript, you should be familiar with all scripts and investigate ones you are not sure. In addition removal of unneeded javascript will speed up your website.

-https://s.yimg.com/lq/lib/yui-ssl/3.4.1/build/yui/yui-min.js
-https://s.yimg.com/lq/combo?yui-ssl/3.4.1/build/oop/oop-min.js&yui-ssl/3.4.1/build/event-custom-base/event-custom-base-min.js&yui-ssl/3.4.1/build/dom-core/dom-core-min.js&yui-ssl/3.4.1/build/dom-base/dom-base-min.js&yui-ssl/3.4.1/build/selector-native/selector-native-min.js&yui-ssl/3.4.1/build/selector/selector-min.js&yui-ssl/3.4.1/build/selector-css2/selector-css2-min.js&yui-ssl/3.4.1/build/node-core/node-core-min.js&yui-ssl/3.4.1/build/node-base/node-base-min.js&yui-ssl/3.4.1/build/event-base/event-base-min.js&yui-ssl/3.4.1/build/event-delegate/event-delegate-min.js&yui-ssl/3.4.1/build/node-event-delegate/node-event-delegate-min.js&yui-ssl/3.4.1/build/pluginhost-base/pluginhost-base-min.js&yui-ssl/3.4.1/build/pluginhost-config/pluginhost-config-min.js&yui-ssl/3.4.1/build/node-pluginhost/node-pluginhost-min.js&yui-ssl/3.4.1/build/dom-style/dom-style-min.js&yui-ssl/3.4.1/build/dom-screen/dom-screen-min.js&yui-ssl/3.4.1/build/node-screen/node-screen-min.js&yui-ssl/3.4.1/build/node-style/node-style-min.js&yui-ssl/3.4.1/build/event-custom-complex/event-custom-complex-min.js&yui-ssl/3.4.1/build/event-synthetic/event-synthetic-min.js&yui-ssl/3.4.1/build/event-mousewheel/event-mousewheel-min.js&yui-ssl/3.4.1/build/event-mouseenter/event-mouseenter-min.js&yui-ssl/3.4.1/build/event-key/event-key-min.js&yui-ssl/3.4.1/build/event-focus/event-focus-min.js&yui-ssl/3.4.1/build/event-resize/event-resize-min.js&yui-ssl/3.4.1/build/event-hover/event-hover-min.js&yui-ssl/3.4.1/build/event-outside/event-outside-min.js&yui-ssl/3.4.1/build/substitute/substitute-min.js&yui-ssl/3.4.1/build/attribute-base/attribute-base-min.js&yui-ssl/3.4.1/build/attribute-complex/attribute-complex-min.js&yui-ssl/3.4.1/build/base-base/base-base-min.js&yui-ssl/3.4.1/build/plugin/plugin-min.js&yui-ssl/3.4.1/build/event-simulate/event-simulate-min.js&yui-ssl/3.4.1/build/node-event-simulate/node-event-simulate-min.js&yui-ssl/3.4.1/build/node-focusmanager/node-focusmanager-min.js&yui-ssl/3.4.1/build/intl/intl-min.js
-https://s.yimg.com/zz/combo?kx/ucs/sts/js/442/skip-min.js&kx/ucs/uh/js/279/timestamp_library-min.js&kx/ucs/menu_utils/js/164/menu_utils_v2-min.js&kx/ucs/uh/js/267/aria_toolbar-min.js&kx/ucs/username/js/43/user_menu-min.js&kx/ucs/help/js/41/help_menu-min.js&kx/ucs/utility_link/js/20/utility_menu-min.js&kx/ucs/uh/js/262/logo_debug-min.js
-https://s.yimg.com/zz/combo?yui:2.8.2/build/yahoo-dom-event/yahoo-dom-event.js&yui:2.8.2/build/animation/animation-min.js&yui:2.8.2/build/connection/connection_core-min.js&sf/l/2.6.66/j/centerIframe-min.js&sf/l/2.6.65/j/capslock_ui-min.js&sf/l/2.6.65/j/login_md5-min.js
-https://s.yimg.com/rq/darla/2-4-4/js/darla-secure-pre-min.js
Verified as a Yahoo PHISH: http://www.phishtank.com/phish_detail.php?phish_id=3507823

polonus

Announcements