Gandalf_The_Grey
Level 85
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Forum Veteran
I don't know, maybe others more into websites do?
HEUR:Trojan-PSW.Script.Generic
- Thread starter JB007
- Start date
Please provide comments and solutions that are helpful to the author of this topic.
There website is dedication to cleaning, protecting, secure ones website.They have 4 levels on what their cost for service is
Here is their main web site: Sucuri - Complete Website Security, Protection & Monitoring
| Basic | Professional | Business | Custom |
|---|
Here is their main web site: Sucuri - Complete Website Security, Protection & Monitoring
Hello,
Just checked with ESET on a friend laptop. NOD32 detects the threat
What's up with the other antivirus ?
I have sent the complete script to almost all AV vendors. Let's see how many of them add it to their signatures.Hello,
Just checked with ESET on a friend laptop. NOD32 detects the threat
What's up with the other antivirus ?
View attachment 230114
VirusTotal link: VirusTotal
It looks like Kaspersky and ESET detect it via a real time module, is netcraft also detecting this on the fly or it operates via blacklisting websites?
Thanks @SeriousHoax
I'm wondering about how VirusTotal works because Kaspersky was the first AV to detect this threat and it doesn't yet appear on the list of AV that detect this URL
Also I don't understand the difference between this two VT check : VirusTotal and VirusTotal
- Apr 28, 2015
- 9,386
- 1
- 84,789
- 8,389
VT usually does not reflect properly Kaspersky detections, in these cases You can check if ZoneAlarm does, because it uses Kaspersky engine
Like harlan4096 said, VT often doesn't reflect the actual detection and this is more common for URLs than actual sample. Also some AV may not block the site but detect the malicious script it loads.
BDTL response after 4 days since submitting, netcraft still blocks as skimmer
Reply them that the site loads a malicious script. This one: Virustotal
Update: It seems the website has been fixed. It doesn't load that malicious script anymore so safe to visit and purchase again. Cheers
Hello @SeriousHoaxUpdate: It seems the website has been fixed. It doesn't load that malicious script anymore so safe to visit and purchase again. Cheers
You answered my question before I ask it
I just noticed that Kaspersky no longer blocks thi site.
But Netcraft always blocks it.
Kaspersky never blacklisted the site but it by default scans encrypted connections in browsers so it knows whether any known malicious script has loaded or not while Netcraft can't do that and they simply put the site in blacklist I suppose. So, that's the reason.Hello @SeriousHoax
You answered my question before I ask it
I just noticed that Kaspersky no longer blocks thi site.
But Netcraft always blocks it.
It's frightening to see that "great" AV are continuing to undetect this script; Panda, Malwarebytes, Sophos, McAfee, Symantec, TrendMicro ! 
You may also like...
-
-
I had to use a few second opinion scanners alongside Kaspersky premium. Any chance of Kaspersky corruption.
- Started by nonamebob567
- Replies: 18
-
Google "Results about you": Has any one used? How were your experiences?- Started by Wrecker4923
- Replies: 3
-
Kaspersky showed 52 disinfected objects after a full scan, but there's nothing in the quarantine folder.
- Started by nonamebob567
- Replies: 13
