Jump to content

JS/Spy.Banker.MF trojan


Go to solution Solved by Marcos,

Recommended Posts

Hello, I'm trying to do a course/exam online. Website is legit but keeps getting blocked by ESET. I tried calling them and they claim their page is fine. I've tried my best to research it further, but came up short. VirusTotal gives results back as clean, but I do not know how to scan deeper than the URL that is blocked. Can I please get confirmation that this site is infected and not a false positive so that I can notify them? Main page is https://www.boatsmartexam.com/ca/ which loads fine, but when you try to buy, it redirects (which I confirmed is correct) to https://boatsmart.thecampfirecollective.com/cart/?add-to-cart=38809&aelia_cs_currency=CAD&ac=1 which ESET tags with this. HASH seems the same every time. Thanks for any feedback.

image.png.f17c32d33590e427a6f292c25d5c4f97.png

Time;Scanner;Object type;Object;Detection;Action;User;Information;Hash;First seen here
2024-09-25 4:45:59 PM;HTTP filter;file;https://www.thecampfirecollective.com/wp-includes/js/jquery/jquery.js?ver=3.6.0;JS/Spy.Banker.MF trojan;connection terminated;xxxxx-LAPTOP\xxxxxxx;Event occurred during an attempt to access the web by the application: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (6616BCD7C0E23E1161DEF8BBA95AE6C279E14EFE).;83A563083BE13F63E683346EF0E21E165421B160;

Link to comment
Share on other sites

Thank you for your prompt reply and confirmation of the infected website.

Unfortunately, after hours on the phone and email discussions with them this morning, this was their final reply. Number 3 is especially impressive... I was however directed to another site that offers the course, though that doesn't protect others that don't have a reliable antivirus/web protection in place. Hopefully the page will get flagged as malicious.

 

Quote

 

Thank you for reaching out to us.
 
Unfortunately, our technicians have reviewed your account and cannot find a problem, and we are not aware of the same problem on other accounts. Please try the following to fix the issue:

1. Our courses work best with Chrome or Firefox. Make sure your browser is up to date and restart if necessary.

2. WebGL support must be enabled in your browser. Chrome and Firefox have this feature enabled by default; however, others may have it disabled. An Internet search for instructions on turning it on will provide a step-by-step guide, or call your chosen browser's helpline for assistance.

3. Deleting your cookies and cache will remove any corruption.

4. Our course videos are designed to play in all browsers; however, Vimeo's FAQs may offer assistance (Vimeo is the video player used in the course, https://help.vimeo.com/hc/en-us/categories/12385942899985-Watching-videos-and-events)
 
Please note that the videos are complementary and all required study materials are in the text on each page.

Best Regards,

 

 

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...