Misooo 0 Posted October 24 Share Posted October 24 Hi guys, can you please provide more info about "JS/Agent.RDF Trojan" threat? Website (JS) is maybe false positive detected, but I can not find any further info about this. Thanks Quote Link to comment Share on other sites More sharing options...
Administrators Marcos 4,935 Posted October 24 Administrators Share Posted October 24 What website was the detection triggered on? Quote Link to comment Share on other sites More sharing options...
Misooo 0 Posted October 24 Author Share Posted October 24 smf.sk Quote Link to comment Share on other sites More sharing options...
Administrators Solution Marcos 4,935 Posted October 24 Administrators Solution Share Posted October 24 The website is indeed infected: Quote Link to comment Share on other sites More sharing options...
thae 7 Posted October 24 Share Posted October 24 Got another JS/Agent.RCW Trojan for www.sprintbox.de What do you look for in the raw details to determine if it might be a true positive? Something like obfuscated JS? For the named website I found function _0x9e23(_0x14f71d,_0x4c0b72){const _0x4d17dc=_0x4d17(); ...$andSoOn... Does this look like strange, obfuscated JS? Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.