when visiting hxxp://www.redtigersecurity.com/forum/
Weird Javascript in Contextual Menu
-
a
Weird Javascript in Contextual Menu
Last edited by Alan Baxter on Thu Apr 15, 2010 3:29 am, edited 1 time in total.
Reason: Broke link to infected site
Reason: Broke link to infected site
Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.3) Gecko/20100401 Firefox/3.6.3
-
Giorgio Maone
- Site Admin
- Posts: 9524
- Joined: Wed Mar 18, 2009 11:22 pm
- Location: Palermo - Italy
- Contact:
Re: Weird Javascript in Contextual Menu
The site has been infected with multiple injections.
Some of them are inserted at the wrong position, creating malformed <script> elements which cause NoScript to display those "strange" sources.
Notice that allowing them won't do anything, while allowing "mainnetsoll.com" is extremely dangerous, since it appears to be the malicious site serving the attack payload.
Some of them are inserted at the wrong position, creating malformed <script> elements which cause NoScript to display those "strange" sources.
Notice that allowing them won't do anything, while allowing "mainnetsoll.com" is extremely dangerous, since it appears to be the malicious site serving the attack payload.
Mozilla/5.0 (Windows; U; Windows NT 5.2; en-US; rv:1.9.2.3) Gecko/20100401 Firefox/3.6.3
-
Alan Baxter
- Ambassador
- Posts: 1586
- Joined: Fri Mar 20, 2009 4:47 am
- Location: Colorado, USA
Re: Weird Javascript in Contextual Menu
Avast 5 is blocking "mainnetsoll.com" as malware.Giorgio Maone wrote:allowing "mainnetsoll.com" is extremely dangerous, since it appears to be the malicious site serving the attack payload.
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.3) Gecko/20100401 Firefox/3.6.3