Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=1minut.info
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://1minut.info/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://1minut.info/ | HTTP/1.1 200 OK Connection: close Date: Tue, 19 Aug 2014 23:11:18 GMT Accept-Ranges: bytes Server: nginx Content-Length: 74 Content-Type: text/html Last-Modified: Wed, 30 Apr 2014 03:09:11 GMT | clean |
http://www.1mcontrol.com/wp3/ | 200 OK Content-Length: 26164 Content-Type: text/html | clean |
http://www.1mcontrol.com/wp3/wp-content/themes/MinutV2014250/jquery.js?ver=3.9.2 | 200 OK Content-Length: 92629 Content-Type: application/x-javascript | clean |
http://www.1mcontrol.com/wp3/wp-content/plugins/ts-visual-composer-extend/js/jquery.modernizr.min.js?ver=3.9.2 | 200 OK Content-Length: 13387 Content-Type: application/x-javascript | clean |
http://www.1mcontrol.com/wp3/wp-content/plugins/intense/js/modernizr.js?ver=2.6.2 | 200 OK Content-Length: 9384 Content-Type: application/x-javascript | clean |
http://www.1mcontrol.com/wp3/wp-content/plugins/iphorm-form-builder/js/iphorm.js?ver=1.4.17 | 200 OK Content-Length: 527 Content-Type: application/x-javascript | clean |
http://www.1mcontrol.com/wp3/wp-content/themes/MinutV2014250/jquery-migrate-1.1.1.js?ver=3.9.2 | 200 OK Content-Length: 16174 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function( jQuery, window, undefined ) { var warnedAbout = {}; jQuery.migrateWarnings = []; jQuery.migrateMute = true; if ( !jQuery.migrateMute && window.console && console.log ) { console.log("JQMIGRATE: Logging is active"); } if ( jQuery.migrateTrace === undefined ) { jQuery.migrateTrace = true; } jQuery.migrateReset = function() { warnedAbout = {}; jQuery.migrateWarnings.length = 0; }; function migrateWarn( msg) { jQuery.event.add( document, name + "." + jQuery.guid, function() { jQuery.event.trigger( name, null, elem, true ); }); jQuery._data( this, name, jQuery.guid++ ); } return false; }, teardown: function() { if ( this !== document ) { jQuery.event.remove( document, name + "." + jQuery._data( this, name ) ); } return false; } }; } ); })( jQuery, window ); Antivirus reports:
| ||
http://www.1mcontrol.com/wp3/wp-content/themes/MinutV2014250/script.js?ver=3.9.2 | 200 OK Content-Length: 55217 Content-Type: application/x-javascript | clean |
http://www.1mcontrol.com/wp3/wp-content/themes/MinutV2014250/script.responsive.js?ver=3.9.2 | 200 OK Content-Length: 18550 Content-Type: application/x-javascript | clean |
http://www.1mcontrol.com/wp3/wp-includes/js/comment-reply.min.js?ver=3.9.2 | 200 OK Content-Length: 757 Content-Type: application/x-javascript | clean |
http://www.1mcontrol.com/wp3/wp-content/plugins/js_composer/assets/lib/jquery-waypoints/waypoints.min.js?ver=4.1.3.1 | 200 OK Content-Length: 8044 Content-Type: application/x-javascript | clean |
http://www.1mcontrol.com/wp3/wp-content/plugins/iphorm-form-builder/js/swfupload.min.js?ver=1.4.17 | 200 OK Content-Length: 31107 Content-Type: application/x-javascript | clean |
http://www.1mcontrol.com/wp3/wp-content/plugins/iphorm-form-builder/js/jquery.iphorm.js?ver=1.4.17 | 200 OK Content-Length: 25694 Content-Type: application/x-javascript | clean |
http://www.1mcontrol.com/wp3/wp-content/plugins/iphorm-form-builder/js/jquery.form.min.js?ver=v20130616 | 200 OK Content-Length: 14510 Content-Type: application/x-javascript | clean |
http://www.1mcontrol.com/wp3/wp-content/plugins/iphorm-form-builder/js/jquery.smooth-scroll.min.js?ver=1.4.9 | 200 OK Content-Length: 2681 Content-Type: application/x-javascript | clean |
http://www.1mcontrol.com/wp3/wp-content/plugins/iphorm-form-builder/js/qtip2/jquery.qtip.min.js?ver=2.0.1 | 200 OK Content-Length: 29869 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 1minut.info
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 19 Aug 2014 23:11:18 GMT
Accept-Ranges: bytes
Server: nginx
Content-Length: 74
Content-Type: text/html
Last-Modified: Wed, 30 Apr 2014 03:09:11 GMT
...74 bytes of data.
GET / HTTP/1.1
Host: 1minut.info
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 19 Aug 2014 23:11:18 GMT
Accept-Ranges: bytes
Server: nginx
Content-Length: 74
Content-Type: text/html
Last-Modified: Wed, 30 Apr 2014 03:09:11 GMT
...74 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: 1minut.info
Referer: http://www.google.com/search?q=1minut.info
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 1minut.info
Referer: http://www.google.com/search?q=1minut.info
Result:
The result is similar to the first query. There are no suspicious redirects found.