porno türk porno rokettube
Page 1 of 3 123 LastLast
Results 1 to 20 of 50

Thread: Freeware to test a specific web site php URL for malware?

  1. #1
    Ext User(jan) Guest

    Freeware to test a specific web site php URL for malware?

    Is there a way to test a website for malware without going to it?

    Recently a family member had their mail account hijacked where an email
    was sent to all their contacts, including me, and it contained a link to
    the web site below:

    http colon slash slash aochi dot hideo dot perso dot neuf dot fr slash
    876569 dot php

    Some of the family members actually clicked on the link, and found it to
    be a green-coffee bean advertisement, and then they asked *me* if it
    contained a virus. (The Mac & Windows users asked, not the Linux users.)

    I knew enough not to click on the site but now I need to know *how* to
    tell if the site contains malware.

    Is there freeware I can hand this URL to that will check it out for
    malware payloads?


  2. #2
    Ext User(~BD~) Guest

    Re: Freeware to test a specific web site php URL for malware?

    jan <jan@is.invalid> wrote:
    > Is there a way to test a website for malware without going to it?
    >
    > Recently a family member had their mail account hijacked where an email
    > was sent to all their contacts, including me, and it contained a link to
    > the web site below:
    >
    > http colon slash slash aochi dot hideo dot perso dot neuf dot fr slash
    > 876569 dot php
    >
    > Some of the family members actually clicked on the link, and found it to
    > be a green-coffee bean advertisement, and then they asked *me* if it
    > contained a virus. (The Mac & Windows users asked, not the Linux users.)
    >
    > I knew enough not to click on the site but now I need to know *how* to
    > tell if the site contains malware.
    >
    > Is there freeware I can hand this URL to that will check it out for
    > malware payloads?


    Yes! Paste the URL here:- https://www.virustotal.com/en-gb/
    --
    Dave

  3. #3
    Ext User(FromTheRafters) Guest

    Re: Freeware to test a specific web site php URL for malware?

    On Tue, 17 Sep 2013 14:22:19 +0000 (UTC)
    jan <jan@is.invalid> wrote:

    > Is there a way to test a website for malware without going to it?
    >
    > Recently a family member had their mail account hijacked where an email
    > was sent to all their contacts, including me, and it contained a link to
    > the web site below:
    >
    > http colon slash slash aochi dot hideo dot perso dot neuf dot fr slash
    > 876569 dot php
    >
    > Some of the family members actually clicked on the link, and found it to
    > be a green-coffee bean advertisement, and then they asked *me* if it
    > contained a virus. (The Mac & Windows users asked, not the Linux users.)
    >
    > I knew enough not to click on the site but now I need to know *how* to
    > tell if the site contains malware.
    >
    > Is there freeware I can hand this URL to that will check it out for
    > malware payloads?
    >


    Wepawet and zscaler come to mind. There are others as well, none of
    them are perfect of course.

  4. #4
    Ext User(~BD~) Guest

    Re: Freeware to test a specific web site php URL for malware?

    ~BD~ <~BD~@nomail.afraid.com> wrote:
    > jan <jan@is.invalid> wrote:
    >> Is there a way to test a website for malware without going to it?
    >>
    >> Recently a family member had their mail account hijacked where an email
    >> was sent to all their contacts, including me, and it contained a link to
    >> the web site below:
    >>
    >> http colon slash slash aochi dot hideo dot perso dot neuf dot fr slash
    >> 876569 dot php
    >>
    >> Some of the family members actually clicked on the link, and found it to
    >> be a green-coffee bean advertisement, and then they asked *me* if it
    >> contained a virus. (The Mac & Windows users asked, not the Linux users.)
    >>
    >> I knew enough not to click on the site but now I need to know *how* to
    >> tell if the site contains malware.
    >>
    >> Is there freeware I can hand this URL to that will check it out for
    >> malware payloads?

    >
    > Yes! Paste the URL here:- https://www.virustotal.com/en-gb/


    Please see here:-

    https://www.virustotal.com/en-gb/url...28d1/analysis/

    --
    Dave

  5. #5
    Ext User(FromTheRafters) Guest

    Re: Freeware to test a specific web site php URL for malware?

    On Tue, 17 Sep 2013 14:36:42 +0000 (UTC)
    ~BD~ <~BD~@nomail.afraid.com> wrote:

    > jan <jan@is.invalid> wrote:
    > > Is there a way to test a website for malware without going to it?
    > >
    > > Recently a family member had their mail account hijacked where an email
    > > was sent to all their contacts, including me, and it contained a link to
    > > the web site below:
    > >
    > > http colon slash slash aochi dot hideo dot perso dot neuf dot fr slash
    > > 876569 dot php
    > >
    > > Some of the family members actually clicked on the link, and found it to
    > > be a green-coffee bean advertisement, and then they asked *me* if it
    > > contained a virus. (The Mac & Windows users asked, not the Linux users.)
    > >
    > > I knew enough not to click on the site but now I need to know *how* to
    > > tell if the site contains malware.
    > >
    > > Is there freeware I can hand this URL to that will check it out for
    > > malware payloads?

    >
    > Yes! Paste the URL here:- https://www.virustotal.com/en-gb/


    What kind of results do you get?

  6. #6
    Ext User(FromTheRafters) Guest

    Re: Freeware to test a specific web site php URL for malware?

    On Tue, 17 Sep 2013 14:46:24 +0000 (UTC)
    ~BD~ <~BD~@nomail.afraid.com> wrote:

    > ~BD~ <~BD~@nomail.afraid.com> wrote:
    > > jan <jan@is.invalid> wrote:
    > >> Is there a way to test a website for malware without going to it?
    > >>
    > >> Recently a family member had their mail account hijacked where an email
    > >> was sent to all their contacts, including me, and it contained a link to
    > >> the web site below:
    > >>
    > >> http colon slash slash aochi dot hideo dot perso dot neuf dot fr slash
    > >> 876569 dot php
    > >>
    > >> Some of the family members actually clicked on the link, and found it to
    > >> be a green-coffee bean advertisement, and then they asked *me* if it
    > >> contained a virus. (The Mac & Windows users asked, not the Linux users.)
    > >>
    > >> I knew enough not to click on the site but now I need to know *how* to
    > >> tell if the site contains malware.
    > >>
    > >> Is there freeware I can hand this URL to that will check it out for
    > >> malware payloads?

    > >
    > > Yes! Paste the URL here:- https://www.virustotal.com/en-gb/

    >
    > Please see here:-
    >
    > https://www.virustotal.com/en-gb/url...28d1/analysis/


    So, what's the verdict?

  7. #7
    Ext User(FromTheRafters) Guest

    Re: Freeware to test a specific web site php URL for malware?

    On Tue, 17 Sep 2013 14:22:19 +0000 (UTC)
    jan <jan@is.invalid> wrote:

    > Is there a way to test a website for malware without going to it?
    >
    > Recently a family member had their mail account hijacked where an email
    > was sent to all their contacts, including me, and it contained a link to
    > the web site below:
    >
    > http colon slash slash aochi dot hideo dot perso dot neuf dot fr slash
    > 876569 dot php


    It looks suspicious to me, that jquery script in particular. Too
    complicated for me to check out right now, looks like mostly
    advertising crap.

  8. #8
    Ext User(Mike Easter) Guest

    Re: Freeware to test a specific web site php URL for malware?

    f/ups to acf only

    ~BD~ wrote:
    > jan wrote:
    >> Is there a way to test a website for malware without going to it?
    >>
    >> Recently a family member had their mail account hijacked where an email
    >> was sent to all their contacts, including me, and it contained a link to
    >> the web site below:
    >>
    >> http colon slash slash aochi dot hideo dot perso dot neuf dot fr slash
    >> 876569 dot php


    Google can test a URL and give you a report like this:

    http://www.google.com/safebrowsing/d...r%2F876569.php
    Safe Browsing
    Diagnostic page for aochi.hideo.perso.neuf.fr

    Append any domain to the end of the URL
    “google.com/safebrowsing/diagnostic?site="

    But that testing isn't 'comprehensive' for the potential of a site to be
    a problem.

    >> Some of the family members actually clicked on the link, and found it to
    >> be a green-coffee bean advertisement, and then they asked *me* if it
    >> contained a virus. (The Mac & Windows users asked, not the Linux users.)
    >>
    >> I knew enough not to click on the site but now I need to know *how* to
    >> tell if the site contains malware.
    >>
    >> Is there freeware I can hand this URL to that will check it out for
    >> malware payloads?

    >
    > Yes! Paste the URL here:- https://www.virustotal.com/en-gb/


    That is not correct. That is not the purpose of the VT functions.

    VT functions to allow you to 'send' VT a malware file or to 'give' VT a
    specific file by providing VT a link to the specific file. VT does not
    send some kind of freeware tool to the site.

    If you give VT the link to the site above, you will get a VT report like
    this:

    File scan:The URL response content could not be retrieved or it is some
    text format (HTML, XML, CSV, TXT, etc.), hence, it was not enqueued for
    antivirus scanning.



    --
    Mike Easter

  9. #9
    Ext User(~BD~) Guest

    Re: Freeware to test a specific web site php URL for malware?

    Mike Easter <MikeE@ster.invalid> wrote:
    > f/ups to acf only
    >
    > ~BD~ wrote:
    >> jan wrote:
    >>> Is there a way to test a website for malware without going to it?
    >>>
    >>> Recently a family member had their mail account hijacked where an email
    >>> was sent to all their contacts, including me, and it contained a link to
    >>> the web site below:
    >>>
    >>> http colon slash slash aochi dot hideo dot perso dot neuf dot fr slash
    >>> 876569 dot php

    >
    > Google can test a URL and give you a report like this:
    >
    > http://www.google.com/safebrowsing/d...r%2F876569.php
    > Safe Browsing
    > Diagnostic page for aochi.hideo.perso.neuf.fr
    >
    > Append any domain to the end of the URL “google.com/safebrowsing/diagnostic?site="
    >
    > But that testing isn't 'comprehensive' for the potential of a site to be a problem.
    >
    >>> Some of the family members actually clicked on the link, and found it to
    >>> be a green-coffee bean advertisement, and then they asked *me* if it
    >>> contained a virus. (The Mac & Windows users asked, not the Linux users.)
    >>>
    >>> I knew enough not to click on the site but now I need to know *how* to
    >>> tell if the site contains malware.
    >>>
    >>> Is there freeware I can hand this URL to that will check it out for
    >>> malware payloads?

    >>
    >> Yes! Paste the URL here:- https://www.virustotal.com/en-gb/

    >
    > That is not correct. That is not the purpose of the VT functions.
    >
    > VT functions to allow you to 'send' VT a malware file or to 'give' VT a
    > specific file by providing VT a link to the specific file. VT does not
    > send some kind of freeware tool to the site.
    >
    > If you give VT the link to the site above, you will get a VT report like this:
    >
    > File scan:The URL response content could not be retrieved or it is some
    > text format (HTML, XML, CSV, TXT, etc.), hence, it was not enqueued for antivirus scanning.


    You need to spend a little more time exploring on the page where you saw
    that, Mike.

    --
    Dave

  10. #10
    Ext User(Mike Easter) Guest

    Re: Freeware to test a specific web site php URL for malware?

    jan wrote:
    > http colon slash slash aochi dot hideo dot perso dot neuf dot fr slash
    > 876569 dot php


    That site redirects to:

    http://greencoffee-fat-loss.com/?20/12

    Google's tester says:

    http://google.com/safebrowsing/diagn...oss.com/?20/12
    What is the current listing status for greencoffee-fat-loss.com? This
    site is not currently listed as suspicious.

    However VT's function to submit to 39 site testers shows 36 of them
    reporting clean site, while 4 report as malicious or suspicious, 6
    report as unrated, and 29 report as clean.

    https://www.virustotal.com/en-gb/url...28d1/analysis/

    It appears to me that in order to use the VT function to submit to
    numerous site testers that you have to resolve the redirection first.

    --
    Mike Easter

  11. #11
    Ext User(~BD~) Guest

    Re: Freeware to test a specific web site php URL for malware?

    Mike Easter <MikeE@ster.invalid> wrote:
    > f/ups to acf only
    >
    > ~BD~ wrote:
    >> jan wrote:
    >>> Is there a way to test a website for malware without going to it?
    >>>
    >>> Recently a family member had their mail account hijacked where an email
    >>> was sent to all their contacts, including me, and it contained a link to
    >>> the web site below:
    >>>
    >>> http colon slash slash aochi dot hideo dot perso dot neuf dot fr slash
    >>> 876569 dot php

    >
    > Google can test a URL and give you a report like this:
    >
    > http://www.google.com/safebrowsing/d...r%2F876569.php
    > Safe Browsing
    > Diagnostic page for aochi.hideo.perso.neuf.fr
    >
    > Append any domain to the end of the URL “google.com/safebrowsing/diagnostic?site="
    >
    > But that testing isn't 'comprehensive' for the potential of a site to be a problem.
    >
    >>> Some of the family members actually clicked on the link, and found it to
    >>> be a green-coffee bean advertisement, and then they asked *me* if it
    >>> contained a virus. (The Mac & Windows users asked, not the Linux users.)
    >>>
    >>> I knew enough not to click on the site but now I need to know *how* to
    >>> tell if the site contains malware.
    >>>
    >>> Is there freeware I can hand this URL to that will check it out for
    >>> malware payloads?

    >>
    >> Yes! Paste the URL here:- https://www.virustotal.com/en-gb/

    >
    > That is not correct. That is not the purpose of the VT functions.
    >
    > VT functions to allow you to 'send' VT a malware file or to 'give' VT a
    > specific file by providing VT a link to the specific file. VT does not
    > send some kind of freeware tool to the site.
    >
    > If you give VT the link to the site above, you will get a VT report like this:
    >
    > File scan:The URL response content could not be retrieved or it is some
    > text format (HTML, XML, CSV, TXT, etc.), hence, it was not enqueued for antivirus scanning.


    You need to spend a little more time exploring on the page where you saw
    that, Mike.

    --
    Dave

  12. #12
    Ext User(~BD~) Guest

    Re: Freeware to test a specific web site php URL for malware?

    FromTheRafters <erratic@nomail.afraid.org> wrote:
    > On Tue, 17 Sep 2013 14:46:24 +0000 (UTC)
    > ~BD~ <~BD~@nomail.afraid.com> wrote:
    >
    >> ~BD~ <~BD~@nomail.afraid.com> wrote:
    >>> jan <jan@is.invalid> wrote:
    >>>> Is there a way to test a website for malware without going to it?
    >>>>
    >>>> Recently a family member had their mail account hijacked where an email
    >>>> was sent to all their contacts, including me, and it contained a link to
    >>>> the web site below:
    >>>>
    >>>> http colon slash slash aochi dot hideo dot perso dot neuf dot fr slash
    >>>> 876569 dot php
    >>>>
    >>>> Some of the family members actually clicked on the link, and found it to
    >>>> be a green-coffee bean advertisement, and then they asked *me* if it
    >>>> contained a virus. (The Mac & Windows users asked, not the Linux users.)
    >>>>
    >>>> I knew enough not to click on the site but now I need to know *how* to
    >>>> tell if the site contains malware.
    >>>>
    >>>> Is there freeware I can hand this URL to that will check it out for
    >>>> malware payloads?
    >>>
    >>> Yes! Paste the URL here:- https://www.virustotal.com/en-gb/

    >>
    >> Please see here:-
    >>
    >> https://www.virustotal.com/en-gb/url...28d1/analysis/

    >
    > So, what's the verdict?


    Detection ratio 3/39

    Can you not see that at my link?
    --
    Dave

  13. #13
    Ext User(FromTheRafters) Guest

    Re: Freeware to test a specific web site php URL for malware?

    On Tue, 17 Sep 2013 16:49:44 +0000 (UTC)
    ~BD~ <~BD~@nomail.afraid.com> wrote:

    > FromTheRafters <erratic@nomail.afraid.org> wrote:
    > > On Tue, 17 Sep 2013 14:46:24 +0000 (UTC)
    > > ~BD~ <~BD~@nomail.afraid.com> wrote:
    > >
    > >> ~BD~ <~BD~@nomail.afraid.com> wrote:
    > >>> jan <jan@is.invalid> wrote:
    > >>>> Is there a way to test a website for malware without going to it?
    > >>>>
    > >>>> Recently a family member had their mail account hijacked where an email
    > >>>> was sent to all their contacts, including me, and it contained a link to
    > >>>> the web site below:
    > >>>>
    > >>>> http colon slash slash aochi dot hideo dot perso dot neuf dot fr slash
    > >>>> 876569 dot php
    > >>>>
    > >>>> Some of the family members actually clicked on the link, and found it to
    > >>>> be a green-coffee bean advertisement, and then they asked *me* if it
    > >>>> contained a virus. (The Mac & Windows users asked, not the Linux users.)
    > >>>>
    > >>>> I knew enough not to click on the site but now I need to know *how* to
    > >>>> tell if the site contains malware.
    > >>>>
    > >>>> Is there freeware I can hand this URL to that will check it out for
    > >>>> malware payloads?
    > >>>
    > >>> Yes! Paste the URL here:- https://www.virustotal.com/en-gb/
    > >>
    > >> Please see here:-
    > >>
    > >> https://www.virustotal.com/en-gb/url...28d1/analysis/

    > >
    > > So, what's the verdict?

    >
    > Detection ratio 3/39
    >
    > Can you not see that at my link?


    Yes, but wat does that *mean*?

  14. #14
    Ext User(~BD~) Guest

    Re: Freeware to test a specific web site php URL for malware?

    FromTheRafters <erratic@nomail.afraid.org> wrote:
    > On Tue, 17 Sep 2013 16:49:44 +0000 (UTC)
    > ~BD~ <~BD~@nomail.afraid.com> wrote:
    >
    >> FromTheRafters <erratic@nomail.afraid.org> wrote:
    >>> On Tue, 17 Sep 2013 14:46:24 +0000 (UTC)
    >>> ~BD~ <~BD~@nomail.afraid.com> wrote:
    >>>
    >>>> ~BD~ <~BD~@nomail.afraid.com> wrote:
    >>>>> jan <jan@is.invalid> wrote:
    >>>>>> Is there a way to test a website for malware without going to it?
    >>>>>>
    >>>>>> Recently a family member had their mail account hijacked where an email
    >>>>>> was sent to all their contacts, including me, and it contained a link to
    >>>>>> the web site below:
    >>>>>>
    >>>>>> http colon slash slash aochi dot hideo dot perso dot neuf dot fr slash
    >>>>>> 876569 dot php
    >>>>>>
    >>>>>> Some of the family members actually clicked on the link, and found it to
    >>>>>> be a green-coffee bean advertisement, and then they asked *me* if it
    >>>>>> contained a virus. (The Mac & Windows users asked, not the Linux users.)
    >>>>>>
    >>>>>> I knew enough not to click on the site but now I need to know *how* to
    >>>>>> tell if the site contains malware.
    >>>>>>
    >>>>>> Is there freeware I can hand this URL to that will check it out for
    >>>>>> malware payloads?
    >>>>>
    >>>>> Yes! Paste the URL here:- https://www.virustotal.com/en-gb/
    >>>>
    >>>> Please see here:-
    >>>>
    >>>> https://www.virustotal.com/en-gb/url...28d1/analysis/
    >>>
    >>> So, what's the verdict?

    >>
    >> Detection ratio 3/39
    >>
    >> Can you not see that at my link?

    >
    > Yes, but wat does that *mean*?


    It *may* mean that most AV companies are slow off the blocks ..... OR that
    the detections found are 'false positives'.

    Does this help you?
    --
    Dave

  15. #15
    Ext User(p-0''0-h the cat (ES)) Guest

    Re: Freeware to test a specific web site php URL for malware?

    On Tue, 17 Sep 2013 17:12:08 +0000 (UTC), FromTheRafters
    <erratic@nomail.afraid.org> wrote:

    >On Tue, 17 Sep 2013 16:49:44 +0000 (UTC)
    >~BD~ <~BD~@nomail.afraid.com> wrote:
    >
    >> FromTheRafters <erratic@nomail.afraid.org> wrote:
    >> > On Tue, 17 Sep 2013 14:46:24 +0000 (UTC)
    >> > ~BD~ <~BD~@nomail.afraid.com> wrote:
    >> >
    >> >> ~BD~ <~BD~@nomail.afraid.com> wrote:
    >> >>> jan <jan@is.invalid> wrote:
    >> >>>> Is there a way to test a website for malware without going to it?
    >> >>>>
    >> >>>> Recently a family member had their mail account hijacked where an email
    >> >>>> was sent to all their contacts, including me, and it contained a link to
    >> >>>> the web site below:
    >> >>>>
    >> >>>> http colon slash slash aochi dot hideo dot perso dot neuf dot fr slash
    >> >>>> 876569 dot php
    >> >>>>
    >> >>>> Some of the family members actually clicked on the link, and found it to
    >> >>>> be a green-coffee bean advertisement, and then they asked *me* if it
    >> >>>> contained a virus. (The Mac & Windows users asked, not the Linux users.)
    >> >>>>
    >> >>>> I knew enough not to click on the site but now I need to know *how* to
    >> >>>> tell if the site contains malware.
    >> >>>>
    >> >>>> Is there freeware I can hand this URL to that will check it out for
    >> >>>> malware payloads?
    >> >>>
    >> >>> Yes! Paste the URL here:- https://www.virustotal.com/en-gb/
    >> >>
    >> >> Please see here:-
    >> >>
    >> >> https://www.virustotal.com/en-gb/url...28d1/analysis/
    >> >
    >> > So, what's the verdict?

    >>
    >> Detection ratio 3/39
    >>
    >> Can you not see that at my link?

    >
    >Yes, but wat does that *mean*?


    I venture that it means there's a growing body of evidence that it's
    best to stay the **** away from that site. What do you infer from the
    evidence so far submitted?

    --
    p-0.0-h the cat

    Internet Terrorist, Mass sock puppeteer, Agent provocateur, Gutter rat,
    Devil incarnate, Linux user#666, BaStarD hacker, Resident evil, Monkey Boy,
    Certifiable criminal, Spineless cowardly scum, textbook Psychopath,
    the SCOURGE, l33t p00h d3 tr0ll, p00h == lam3r, p00h == tr0ll, troll infâme,
    the OVERCAT [The BEARPAIR are dead, and we are its murderers], lowlife troll,
    shyster [pending approval by STATE_TERROR], cripple, sociopath, kook,
    smug prick, smartarse, arsehole, moron, idiot, imbecile, snittish scumbag,
    liar, and shill.

    Honorary SHYSTER and FRAUD awarded for services to Haberdashery.
    By Appointment to God Frank-Lin.



  16. #16
    Ext User(FromTheRafters) Guest

    Re: Freeware to test a specific web site php URL for malware?

    On Tue, 17 Sep 2013 17:19:50 +0000 (UTC)
    ~BD~ <~BD~@nomail.afraid.com> wrote:

    > FromTheRafters <erratic@nomail.afraid.org> wrote:
    > > On Tue, 17 Sep 2013 16:49:44 +0000 (UTC)
    > > ~BD~ <~BD~@nomail.afraid.com> wrote:
    > >
    > >> FromTheRafters <erratic@nomail.afraid.org> wrote:
    > >>> On Tue, 17 Sep 2013 14:46:24 +0000 (UTC)
    > >>> ~BD~ <~BD~@nomail.afraid.com> wrote:
    > >>>
    > >>>> ~BD~ <~BD~@nomail.afraid.com> wrote:
    > >>>>> jan <jan@is.invalid> wrote:
    > >>>>>> Is there a way to test a website for malware without going to it?
    > >>>>>>
    > >>>>>> Recently a family member had their mail account hijacked where an email
    > >>>>>> was sent to all their contacts, including me, and it contained a link to
    > >>>>>> the web site below:
    > >>>>>>
    > >>>>>> http colon slash slash aochi dot hideo dot perso dot neuf dot fr slash
    > >>>>>> 876569 dot php
    > >>>>>>
    > >>>>>> Some of the family members actually clicked on the link, and found it to
    > >>>>>> be a green-coffee bean advertisement, and then they asked *me* if it
    > >>>>>> contained a virus. (The Mac & Windows users asked, not the Linux users.)
    > >>>>>>
    > >>>>>> I knew enough not to click on the site but now I need to know *how* to
    > >>>>>> tell if the site contains malware.
    > >>>>>>
    > >>>>>> Is there freeware I can hand this URL to that will check it out for
    > >>>>>> malware payloads?
    > >>>>>
    > >>>>> Yes! Paste the URL here:- https://www.virustotal.com/en-gb/
    > >>>>
    > >>>> Please see here:-
    > >>>>
    > >>>> https://www.virustotal.com/en-gb/url...28d1/analysis/
    > >>>
    > >>> So, what's the verdict?
    > >>
    > >> Detection ratio 3/39
    > >>
    > >> Can you not see that at my link?

    > >
    > > Yes, but wat does that *mean*?

    >
    > It *may* mean that most AV companies are slow off the blocks ..... OR that
    > the detections found are 'false positives'.
    >
    > Does this help you?


    Does VT follow links? What did they think of
    hxxp://aochi.hideo.perso.neuf.fr/js/jquery-1.8.2.min.js

  17. #17
    Ext User(FromTheRafters) Guest

    Re: Freeware to test a specific web site php URL for malware?

    On Tue, 17 Sep 2013 18:24:23 +0100
    "p-0''0-h the cat (ES)" <super.pooh@furryfreeware.invalid> wrote:

    > On Tue, 17 Sep 2013 17:12:08 +0000 (UTC), FromTheRafters
    > <erratic@nomail.afraid.org> wrote:
    >
    > >On Tue, 17 Sep 2013 16:49:44 +0000 (UTC)
    > >~BD~ <~BD~@nomail.afraid.com> wrote:
    > >
    > >> FromTheRafters <erratic@nomail.afraid.org> wrote:
    > >> > On Tue, 17 Sep 2013 14:46:24 +0000 (UTC)
    > >> > ~BD~ <~BD~@nomail.afraid.com> wrote:
    > >> >
    > >> >> ~BD~ <~BD~@nomail.afraid.com> wrote:
    > >> >>> jan <jan@is.invalid> wrote:
    > >> >>>> Is there a way to test a website for malware without going to it?
    > >> >>>>
    > >> >>>> Recently a family member had their mail account hijacked where an email
    > >> >>>> was sent to all their contacts, including me, and it contained a link to
    > >> >>>> the web site below:
    > >> >>>>
    > >> >>>> http colon slash slash aochi dot hideo dot perso dot neuf dot fr slash
    > >> >>>> 876569 dot php
    > >> >>>>
    > >> >>>> Some of the family members actually clicked on the link, and found it to
    > >> >>>> be a green-coffee bean advertisement, and then they asked *me* if it
    > >> >>>> contained a virus. (The Mac & Windows users asked, not the Linux users.)
    > >> >>>>
    > >> >>>> I knew enough not to click on the site but now I need to know *how* to
    > >> >>>> tell if the site contains malware.
    > >> >>>>
    > >> >>>> Is there freeware I can hand this URL to that will check it out for
    > >> >>>> malware payloads?
    > >> >>>
    > >> >>> Yes! Paste the URL here:- https://www.virustotal.com/en-gb/
    > >> >>
    > >> >> Please see here:-
    > >> >>
    > >> >> https://www.virustotal.com/en-gb/url...28d1/analysis/
    > >> >
    > >> > So, what's the verdict?
    > >>
    > >> Detection ratio 3/39
    > >>
    > >> Can you not see that at my link?

    > >
    > >Yes, but wat does that *mean*?

    >
    > I venture that it means there's a growing body of evidence that it's
    > best to stay the **** away from that site. What do you infer from the
    > evidence so far submitted?


    The obfuscation is to hide its spamminess not its maliciousness. I only
    looked at it for a little while. The VT results are worthless, it's a
    file submission scanner and expects executable code of some kind to be
    in the file it gets pointed to. The zulu.zscaler or wepawet would be a
    better choice for checking webpage maliciousness - but not all that
    much better sometimes. Most of the rest are 'reputation' based and
    don't actually look at all.

  18. #18
    Ext User(p-0''0-h the cat (ES)) Guest

    Re: Freeware to test a specific web site php URL for malware?

    On Tue, 17 Sep 2013 17:44:44 +0000 (UTC), FromTheRafters
    <erratic@nomail.afraid.org> wrote:

    >On Tue, 17 Sep 2013 18:24:23 +0100
    >"p-0''0-h the cat (ES)" <super.pooh@furryfreeware.invalid> wrote:
    >
    >> On Tue, 17 Sep 2013 17:12:08 +0000 (UTC), FromTheRafters
    >> <erratic@nomail.afraid.org> wrote:
    >>
    >> >On Tue, 17 Sep 2013 16:49:44 +0000 (UTC)
    >> >~BD~ <~BD~@nomail.afraid.com> wrote:
    >> >
    >> >> FromTheRafters <erratic@nomail.afraid.org> wrote:
    >> >> > On Tue, 17 Sep 2013 14:46:24 +0000 (UTC)
    >> >> > ~BD~ <~BD~@nomail.afraid.com> wrote:
    >> >> >
    >> >> >> ~BD~ <~BD~@nomail.afraid.com> wrote:
    >> >> >>> jan <jan@is.invalid> wrote:
    >> >> >>>> Is there a way to test a website for malware without going to it?
    >> >> >>>>
    >> >> >>>> Recently a family member had their mail account hijacked where an email
    >> >> >>>> was sent to all their contacts, including me, and it contained a link to
    >> >> >>>> the web site below:
    >> >> >>>>
    >> >> >>>> http colon slash slash aochi dot hideo dot perso dot neuf dot fr slash
    >> >> >>>> 876569 dot php
    >> >> >>>>
    >> >> >>>> Some of the family members actually clicked on the link, and found it to
    >> >> >>>> be a green-coffee bean advertisement, and then they asked *me* if it
    >> >> >>>> contained a virus. (The Mac & Windows users asked, not the Linux users.)
    >> >> >>>>
    >> >> >>>> I knew enough not to click on the site but now I need to know *how* to
    >> >> >>>> tell if the site contains malware.
    >> >> >>>>
    >> >> >>>> Is there freeware I can hand this URL to that will check it out for
    >> >> >>>> malware payloads?
    >> >> >>>
    >> >> >>> Yes! Paste the URL here:- https://www.virustotal.com/en-gb/
    >> >> >>
    >> >> >> Please see here:-
    >> >> >>
    >> >> >> https://www.virustotal.com/en-gb/url...28d1/analysis/
    >> >> >
    >> >> > So, what's the verdict?
    >> >>
    >> >> Detection ratio 3/39
    >> >>
    >> >> Can you not see that at my link?
    >> >
    >> >Yes, but wat does that *mean*?

    >>
    >> I venture that it means there's a growing body of evidence that it's
    >> best to stay the **** away from that site. What do you infer from the
    >> evidence so far submitted?

    >
    >The obfuscation is to hide its spamminess not its maliciousness. I only
    >looked at it for a little while. The VT results are worthless, it's a
    >file submission scanner and expects executable code of some kind to be
    >in the file it gets pointed to. The zulu.zscaler or wepawet would be a
    >better choice for checking webpage maliciousness - but not all that
    >much better sometimes. Most of the rest are 'reputation' based and
    >don't actually look at all.


    Interestingly, when I put
    hxxp://aochi.hideo.perso.neuf.fr/js/jquery-1.8.2.min.js
    into URL to scan it comes up clean, but if you click on
    Go to downloaded file analysis

    the file is called keygen.exe

    Which comes up clean.

    I've not even looked at this site yet, but the word keygen has tickled
    my whiskers.

    Unfortunately the need to hunt, is my primary directive right now.

    --
    p-0.0-h the cat

    Internet Terrorist, Mass sock puppeteer, Agent provocateur, Gutter rat,
    Devil incarnate, Linux user#666, BaStarD hacker, Resident evil, Monkey Boy,
    Certifiable criminal, Spineless cowardly scum, textbook Psychopath,
    the SCOURGE, l33t p00h d3 tr0ll, p00h == lam3r, p00h == tr0ll, troll infâme,
    the OVERCAT [The BEARPAIR are dead, and we are its murderers], lowlife troll,
    shyster [pending approval by STATE_TERROR], cripple, sociopath, kook,
    smug prick, smartarse, arsehole, moron, idiot, imbecile, snittish scumbag,
    liar, and shill.

    Honorary SHYSTER and FRAUD awarded for services to Haberdashery.
    By Appointment to God Frank-Lin.



  19. #19
    Ext User(jan) Guest

    Re: Freeware to test a specific web site php URL for malware?

    On Tue, 17 Sep 2013 14:36:42 +0000, ~BD~ wrote:

    >> http colon slash slash aochi dot hideo dot perso dot neuf
    >> dot fr slash 876569 dot php


    > Paste that URL here:
    > https://www.virustotal.com/en-gb/


    Ah. Perfect.

    That site's home page explains:
    "VirusTotal is a free service that analyzes suspicious files
    and URLs and facilitates the quick detection of viruses,
    worms, trojans, and all kinds of malware."

    However, it wasn't (at first) at all intuitive how to paste the
    URL in, as it kept wanting me to upload a file (which I don't have).

    But then I (temporarily) turned off my automatic script blockers
    and only then did the GUI for the URL show up on the web page.

    Once I turned off my Firefox script blockers, it immediately reported:
    URL already analysed
    This URL was already analysed by VirusTotal on 2013-09-17 14:40:40 UTC.
    Detection ratio: 0/39
    You can take a look at the last analysis or analyse it again now.

    Looking at the detailed results, it was clean on most issues
    (and "unrated" for a half dozen of the 39 tests).

    Thanks for this nice testing site.
    I will read on and respond to each suggestion separately.

    jan



  20. #20
    Ext User(jan) Guest

    Re: Freeware to test a specific web site php URL for malware?

    On Tue, 17 Sep 2013 16:49:44 +0000, ~BD~ wrote:

    > Detection ratio 3/39
    > Can you not see that at my link?


    Hi Dave,
    I did visit your link, and I ran the test myself, which
    showed the following:

    a. BitDefender Malware site
    b. Sophos Malicious site
    c. Websense ThreatSeeker Malicious site
    d. CLEAN MX Suspicious site

    But, I'm not sure what that means, to me, and I'm definitely
    unclear what to tell my siblings who had clicked on the link.

    What does this mean, to a Mac/Windows/Linux user?


Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •