Anonymous site hosts malicious script

Posted on by

The site: www.anonstillalive.com hosts a malicious script:

It looks like an automated injection to me because it is right after the <body> tag. (click  to enlarge)

Wepawet report (http://wepawet.cs.ucsb.edu/view.php?hash=5600b7a8b41a216d6f2cb4b353590076&t=1340388312&type=js) shows an iframe to http://zfhbsvcererr.myredirect.us/?go=2

Thankfully the page has been parked.

Jerome Segura

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>