JS/Spy.Banker.KJ

[amirus 0]

Good time everyone. Since recently, on which site I often visit the location of the detection of malicious transport. If you just open the site, everything is fine, but start flipping through it, then you should find this message. For example, I opened the site, at the bottom I go to the second one, and there is a warning right there. Is this a false detection or is it the infection site? https://www.mk3.com/xhorse I choose a product, go to the second page from the bottom and immediately launch it.

[Marcos 5,074]

The detection is correct. Do you have to be signed in and click Proceed to checkout to reproduce the detection?

[amirus 0]

Thank you for answer, and sorry for my bad english. No, just start flipping through the pages of the selected brand.

[Marcos 5,074]

Searching for "c2V0VGltZW91dChmdW5jdG" should help you locate the malicious JS.

 

[amirus 0]

Thank you! I correctly understood, the site is infected? Or is there a problem with my computer?

[Marcos 5,074]

2 minutes ago, amirus said:

Thank you! I correctly understood, the site is infected? Or is there a problem with my computer?

Yes, the website is still infected.