Suspicious coinhive mining on website...

See: https://aw-snap.info/file-viewer/?protocol=not-secure&tgt=ngancati.net%2F&ref_sel=GSP2&ua_sel=ff&fs=1

Suspicious URLs found in: http://ngancati.net/

1: hxxp://coinhive·com/lib/coinhive·min·js (CoinHive Anonymous etc.)
The suspicious pattern flagged here: https://webcookies.org/cookies/ngancati.net/10978312

Google Safebrowsing does not flag.

Re htxps://coinhive.com/lib/coinhive.min.js
hxtps://coinhive.com/lib/worker-asmjs.min.js
hxtps://coinhive.com/lib/worker-asmjs.min.js.mem all blacklisted!

Here just one flag: https://www.virustotal.com/#/url/3cec72a94dfd55bb8c064ba4f20ee5cb8b9ef4ed2362a0ee08ec353c2c85cabf/detection
but nothing here: https://www.virustotal.com/#/domain/ngancati.net

polonus (volunteer website security analyst and website error-hunter)

Sucuri got it >> https://sitecheck.sucuri.net/results/ngancati.net/

and urlQuery >> http://urlquery.net/report/2c377684-d1a8-4e53-b7b5-14e47b8170b4

Thanks for that update, Pondus.

Did you notice by the way a lot of coinhive mining injections comes from Ukranian malcreants. >:(

polonus

They have lots of coal mines in ukraine, maybe they are empty and they need a new type of mining ;D