Update malware still here:- JS:Clickjack-H [Trj] https://www.virustotal.com/nl/url/a46d90f9fa2119f147ea0cd2ca0a05565e0e82ab89f69932682cb14be34cc796/analysis/ Not detected here: https://sitecheck.sucuri.net/results/aljazeera-sport-tv-hd-live-online.blogspot.mx Flagged by Fortinet’s filter: http://urlquery.net/report.php?id=1430255528238 Trojans detected: Object: http://aljazeera-sport-tv-hd-live-online.blogspot.mx/ SHA1: e80509efe0e6a76c3a5e69ce57826e50e9ef5d80 Name: TrojWare.JS.TrojanClicker.FbLiker.A aka JS:Clickjack-H [Trj]
Linked Javascript -http://ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js -https://funnypics-jpg.googlecode.com/svn/trunk/opon.js -http://www.websnapr.com/js/websnapr.js -http://bubble.websnapr.com/EyUL4QE1i0lM/swi/ -https://www.google.com/jsapi?key=ABQIAAAAlQIoliUVPjZwD8UDgw_U3RTUhB4JyH-ajz-fA9t4yePPPdGAfRTC_mtuh6Iq1MLEipD0I2rCi30Png -http://ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js -http://facewoman.googlecode.com/files/rss.js -https://apis.google.com/js/plusone.js -http://w.sharethis.com/button/buttons.js -http://chordpoprocktoolbar.googlecode.com/files/scrollerchordpoprock.js -http://yourjavascript.com/425111422721/label.js -http://ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.js -http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js -http://ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.js -https://www-blanat-net.googlecode.com/svn/trunk/all.js#xfbml=1 -https://funnypics-jpg.googlecode.com/svn/trunk/facebook.js -https://www.blogger.com/static/v1/widgets/2076720373-widgets.js -https://apis.google.com/js/plusone.js
WP theme phantom vulnerable - could lead to the total compromittal of a WP blogsite.
Additionally a PHP threat was found by Quttera’s: http://quttera.com/detailed_report/aljazeera-sport-tv-hd-live-online.blogspot.mx → wXw-blanat-net.googlecode.com/svn/trunk/all.js#xfbml=1 Severity: Potentially Suspicious Reason: Detected potentially suspicious content. Details: Potentially suspicious obfuscated PHP threat Offset: 39502 → -> http://www.domxssscanner.com/scan?url=http%3A%2F%2Fwww-blanat-net.googlecode.com%2F
polonus (volunteer website security analyst and website error-hunter)