AlexS 0 Posted June 6 Share Posted June 6 I have an website and after I entered it appeas me a notification that there is a malware: JS/Agent.RRO after I login. I ve scanned on my local the project and there is nothing wrong, but when try to access the site the problem appears. Can you help me please? Link to comment Share on other sites More sharing options...
Administrators Marcos 5,273 Posted June 6 Administrators Share Posted June 6 What is the website where the threat was detected? Link to comment Share on other sites More sharing options...
AlexS 0 Posted June 6 Author Share Posted June 6 https://unelte.pioniiregelui.ro Link to comment Share on other sites More sharing options...
Marinos 0 Posted June 6 Share Posted June 6 14 minutes ago, AlexS said: https://unelte.pioniiregelui.ro strange i get no alert from eset but one from malwarebytes browser guard and i use the premium eset version... Link to comment Share on other sites More sharing options...
Marinos 0 Posted June 6 Share Posted June 6 maybe this article could help clear some things up Link to comment Share on other sites More sharing options...
AlexS 0 Posted June 6 Author Share Posted June 6 (edited) The alert will appear after you will login. If you want, I can create an user to see it. I see the post, but not sure if it is the same problem as I ve tried. Edited June 6 by AlexS Link to comment Share on other sites More sharing options...
Marinos 0 Posted June 6 Share Posted June 6 3 minutes ago, AlexS said: The alert will appear after you will login. If you want, I can create an user to see it. I see the post, but not sure if it is the same problem as I ve tried. yeah but i got a detection while entering the site from malwarebytes not even after the login. check your code maybe? Link to comment Share on other sites More sharing options...
Marinos 0 Posted June 6 Share Posted June 6 havent actually tried these software but they have good reputation. test your code with these maybe https://www.aikido.dev https://snyk.io/code-checker/javascript/ Link to comment Share on other sites More sharing options...
Administrators Marcos 5,273 Posted June 6 Administrators Share Posted June 6 Searching for "(function(A,Y){var k=p,c=A();" might help you locate the malicious JS. Marinos 1 Link to comment Share on other sites More sharing options...
AlexS 0 Posted June 6 Author Share Posted June 6 I ve checked the code, but didn't found something bad. Link to comment Share on other sites More sharing options...
Administrators Marcos 5,273 Posted June 6 Administrators Share Posted June 6 It may be encrypted, in a database, etc. so searching for the above string may not yield any results. You can contact a website cleaning and monitoring service, such as sucuri.net to clean the website. Link to comment Share on other sites More sharing options...
AlexS 0 Posted June 6 Author Share Posted June 6 In the database no chance. Ok, I will try to see. Thank you Link to comment Share on other sites More sharing options...
Recommended Posts