Upon entrance to: hxxps://redheadbouquet.wordpress.com/ i was immediately prompted to either open or save mysterious file: sp.js. For fun, i decided to save it. Scans with both Norton and MBAM revealed nothing, however, i wanted to see what encoding was behind this. Therefore, i changed the file format to .txt to gain safe entry. Upon examination, it looks as though it is a facilitator for the following domain: hxxps://service-dev.sp.advertising.com/. Safe Web’s community rates that site as ‘suspicious or annoying’. Please see:
In any event, i did not like the fact that, upon entrance to a site, i’m immediately hit with something to download and submitted it directly to Symantec at: https://submit.symantec.com/websubmit/retail.cgi.
Please also note- When you attempt to put in the full extension for the questionable WordPress domain i.e., “redheadbouquet.wordpress.com” into Safe Web, it just defaults to wordpress.com. Again, this is one of my historical contentions with Safe Web. It needs to become more intuitive to perceive add-ons in the title of a site. If i could rate the specific site, i would give it 3 bars for annoying, as i shouldn’t be prompted with a download the minute i arrive on the Homepage….
Have a Happy and Safe 4th,