santoso 7 Posted November 16, 2021 Share Posted November 16, 2021 hello, I browsing this web https://restabessmg.jateng.polri.go.id/libas/ Eset found threat JS/Agent.OZD trojan Try to scan url with virustotal but Eset says it cleanhttps://www.virustotal.com/gui/url/5e0297a004ded5fdfd67a690776433a92df2f01c1ee647d8b3f6273972656088?nocache=1 Is this website compromised or it is false alarm? Thank you Link to comment Share on other sites More sharing options...
Administrators Marcos 5,243 Posted November 16, 2021 Administrators Share Posted November 16, 2021 The detection is correct. The website was compromised and contains malware. One of the infected files is wp-emoji-release.min.js for instance. Link to comment Share on other sites More sharing options...
santoso 7 Posted November 17, 2021 Author Share Posted November 17, 2021 Thank you Marcos Link to comment Share on other sites More sharing options...
Katzi 0 Posted November 24, 2021 Share Posted November 24, 2021 On 11/16/2021 at 7:25 AM, Marcos said: The detection is correct. The website was compromised and contains malware. One of the infected files is wp-emoji-release.min.js for instance. Hi Marcos, I am interested how you found out which file is infected? Are there any tools/tutorials you can recommend? Kind regards, Katzi ~Meow~ Link to comment Share on other sites More sharing options...
Administrators Marcos 5,243 Posted November 24, 2021 Administrators Share Posted November 24, 2021 3 minutes ago, Katzi said: I am interested how you found out which file is infected? Just open the website in a browser and browse through it until the detection is triggered. Then check the Detections log for information about the file that the threat was detected in. Link to comment Share on other sites More sharing options...
Recommended Posts