Jump to content

JS/Packed.Agent.Q was found when visiting social question-and-answer website


Go to solution Solved by Marcos,

Recommended Posts

Hello, when I was visiting a social question-and-answer website: https://zhuanlan.zhihu.com/p/594322970, eset internet security started alerting me about JS/Packed.Agent.Q. 

However when I submitted this website to virustotal, it showed that No security vendors flagged this URL as malicious. I have tested some other websites under zhuanlan.zhihu.com, eset still alerted me with JS/Packed.Agent.Q whereas visiting zhihu.com did not have this alert. I have used a completely new web browser to visit this website but still the same result. I am rather confused by this situation, and I don't want to simply create a detection exclusion to expose my computer to unknown threat. 

Is there anyway to fix this problem.

The logs collected by eset log collector and log file from eset internet security are attached below.

virustotalresult.thumb.png.5161a543a76880e2c4354c3e3bfb4907.pnglog.thumb.png.b3da07822ba705e0c088c8c022085ade.png

eis_logs.zip

Link to comment
Share on other sites

  • Administrators
  • Solution

It's just a suspicious JS obfuscation used on the website. If you trust the website, you can create a detection exclusion for that site.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...