Scanned pages/files
| Request | Server response | Status |
http://avxhome.se/ | 200 OK Content-Length: 30892 Content-Type: text/html | suspicious |
Suspicious code. Script contains iFrame. window.MGWidgetTitle22604 = "Promoted Content"; (function(){ var D=new Date(),d=document,b='body',ce='createElement',ac='appendChild',st='style',ds='display',n='none',gi='getElementById'; var i=d[ce]('iframe');i[st][ds]=n;d[gi]("MarketGidScriptRootC22604")[ac](i);try{var iw=i.contentWindow.document;iw.open();iw.writeln("<ht"+"ml><bo"+"dy></bo"+"dy></ht"+"ml>");iw.close();var c=iw[b];} catch(e){var iw=d;var c=d[gi]("MarketGidScriptRootC22604");}var dv=iw[ce]('div');dv.id="MG_ID";dv[st][ds]=n;dv.innerHTML=22604;c[ac](dv); var s=iw[ce]('script');s.async='async';s.defer='defer';s.charset='utf-8';s.src="//jsc.mgid.com/a/v/avxhome.se.22604.js?t="+D.getYear()+D.getMonth()+D.getDate()+D.getHours();c[ac](s);})(); | ||
http://avxhome.se/assets/dtim300x250.ad-c1a182221e1a86354b5b8dddb1ffdee8.js | 200 OK Content-Length: 44 Content-Type: application/x-javascript | clean |
http://avxhome.se/assets/application-5cecbd7d648c91ce534435602e17429f.js | 200 OK Content-Length: 300911 Content-Type: application/x-javascript | clean |
http://connect.facebook.net/en_US/all.js | 200 OK Content-Length: 175662 Content-Type: application/x-javascript | clean |
http://cdn.offersquared.com/152media/tags/xbanner/xbanner.js?ap=1300 | 200 OK Content-Length: 1810 Content-Type: text/plain | clean |
http://cdn.offersquared.com/test404page.js | 200 OK Content-Length: 0 Content-Type: text/plain | clean |
http://pl128193.puhtml.com/20/22/a8/2022a8db95184bd2a167969a866f1f64.js | 200 OK Content-Length: 14366 Content-Type: application/javascript | clean |
http://pl128194.puhtml.com/f7/05/43/f70543b63871a049481a940d793a8576.js | 200 OK Content-Length: 14367 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: avxhome.se
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0, private, must-revalidate
Connection: close
Date: Mon, 23 Nov 2015 14:29:24 GMT
ETag: "3a316a4c919f102108828fee7f72193e"
Server: nginx
Content-Type: text/html; charset=utf-8
Status: 200 OK
X-Rack-Cache: miss
X-Request-Id: 8fbe5361af4ee5c46364f8ca2b3c3302
X-Runtime: 0.010315
X-UA-Compatible: IE=Edge,chrome=1
GET / HTTP/1.1
Host: avxhome.se
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0, private, must-revalidate
Connection: close
Date: Mon, 23 Nov 2015 14:29:24 GMT
ETag: "3a316a4c919f102108828fee7f72193e"
Server: nginx
Content-Type: text/html; charset=utf-8
Status: 200 OK
X-Rack-Cache: miss
X-Request-Id: 8fbe5361af4ee5c46364f8ca2b3c3302
X-Runtime: 0.010315
X-UA-Compatible: IE=Edge,chrome=1
Second query (visit from search engine):
GET / HTTP/1.1
Host: avxhome.se
Referer: http://www.google.com/search?q=avxhome.se
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: avxhome.se
Referer: http://www.google.com/search?q=avxhome.se
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=avxhome.se
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://avxhome.se/
Result: avxhome.se is not infected or malware details are not published yet.
Result: avxhome.se is not infected or malware details are not published yet.