Reply To: GOTMLS plugin does not find existing malware. Help!

Home Forums Support Forum GOTMLS plugin does not find existing malware. Help! Reply To: GOTMLS plugin does not find existing malware. Help!

#1360
Anti-Malware Admin
Anti-Malware Admin
Key Master

So first of all Sucuri calls this “MW:BLK:2″ but that’s only Sucuri’s generic designation for link to a blacklisted site. My plugin (nor anyone else’s for that matter) will ever refer to any given threat with the as Sucuri does with their MW:ABC:123 type names for things.

What the are picking up on is a link to a javascript file in your header, and the only problem with that is that it is loading that file from the remote site stg.odnoklassniki.ru which Sucuri says is blacklisted. Here is the code they are finding in your header:

<script type='text/javascript' src='http://stg.odnoklassniki.ru/share/odkl_share.js?ver=4.4'></script>

To be fair I am not sure this is actually malicious code. It looks like some kind of share button and the only people who have blacklisted this Russian domain is Sucuri themselves. Just look at all the other security websites that say that domain is clean:

Domain blacklisted by Sucuri Malware Labs: stg.odnoklassniki.ru
Domain clean by Google Safe Browsing: stg.odnoklassniki.ru
Domain clean by Norton Safe Web: stg.odnoklassniki.ru
Domain clean on Phish tank: stg.odnoklassniki.ru
Domain clean on the Opera browser: stg.odnoklassniki.ru
Domain clean by SiteAdvisor: stg.odnoklassniki.ru
Domain clean on SpamHaus DBL: stg.odnoklassniki.ru
Domain clean by Bitdefender: stg.odnoklassniki.ru
Domain clean on Yandex (via Sophos): stg.odnoklassniki.ru
Domain clean by ESET: stg.odnoklassniki.ru