Scanned pages/files
Request | Server response | Status |
http://www.codefire.in/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 03:52:20 GMT Location: http://codefire.org Server: LiteSpeed Content-Length: 1172 Content-Type: text/html | clean |
http://codefire.org/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 03:52:23 GMT Location: http://www.codefire.org/ Server: cloudflare-nginx Content-Type: text/html; charset=iso-8859-1 CF-RAY: 13edbb88fa980f45-FRA Set-Cookie: __cfduid=d3af8ca66068ea5fc5b3f0a763b9a0d411403495543198; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; domain=.codefire.org; HttpOnly | clean |
http://www.codefire.org/ | 200 OK Content-Length: 34673 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var _awsq = _awsq || []; _awsq.push('_aws_setAccount', '43a57a70eb59dd2868428098edf888e0'); _awsq.push('_aws_setTrackerMode', '2'); _awsq.push('_aws_tracker'); (function() { var aws = document.createElement('script'); aws.type = 'text/javascript'; aws.async = true; aws.src = ('https:' == document.location.protocol ? 'https:' : 'http:') + '//www.caphyon-analytics.com/aws.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(aws, s); })(); Antivirus reports:
| ||
http://code.jquery.com/jquery-1.10.2.min.js | 200 OK Content-Length: 93107 Content-Type: application/x-javascript | clean |
http://www.codefire.in/media/system/js/mootools-core.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 03:52:26 GMT Location: http://codefire.org Server: LiteSpeed Content-Length: 1172 Content-Type: text/html | clean |
http://codefire.org/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: public, max-age=14400 Connection: close Date: Mon, 23 Jun 2014 03:52:29 GMT Location: http://www.codefire.org/test404page.js Server: cloudflare-nginx Content-Type: text/html; charset=iso-8859-1 Expires: Mon, 23 Jun 2014 07:52:29 GMT CF-Cache-Status: MISS CF-RAY: 13edbbaa9e7a0f45-FRA Set-Cookie: __cfduid=d5f7a14a1d630f81935c6f1678b7d9afe1403495548574; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; domain=.codefire.org; HttpOnly | clean |
http://www.codefire.org/test404page.js | 404 Not Found Content-Length: 516 Content-Type: text/html | clean |
http://www.codefire.in/media/system/js/core.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 03:52:28 GMT Location: http://codefire.org Server: LiteSpeed Content-Length: 1172 Content-Type: text/html | clean |
http://www.codefire.in/media/system/js/modal.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 03:52:28 GMT Location: http://codefire.org Server: LiteSpeed Content-Length: 1172 Content-Type: text/html | clean |
http://www.codefire.in//ajax.googleapis.com/ajax/libs/jquery/1.8/jquery.min.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 03:52:28 GMT Location: http://codefire.org Server: LiteSpeed Content-Length: 1172 Content-Type: text/html | clean |
http://www.codefire.in/media/k2/assets/js/k2.noconflict.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 03:52:29 GMT Location: http://codefire.org Server: LiteSpeed Content-Length: 1172 Content-Type: text/html | clean |
http://www.codefire.in/components/com_k2/js/k2.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 03:52:29 GMT Location: http://codefire.org Server: LiteSpeed Content-Length: 1172 Content-Type: text/html | clean |
http://www.codefire.in/media/system/js/caption.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 03:52:29 GMT Location: http://codefire.org Server: LiteSpeed Content-Length: 1172 Content-Type: text/html | clean |
http://www.codefire.in/media/widgetkit/js/jquery.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 03:52:30 GMT Location: http://codefire.org Server: LiteSpeed Content-Length: 1172 Content-Type: text/html | clean |
http://www.codefire.in/cache/widgetkit/widgetkit-80af68a1.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 03:52:30 GMT Location: http://codefire.org Server: LiteSpeed Content-Length: 1172 Content-Type: text/html | clean |
http://www.codefire.in/media/system/js/mootools-more.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 03:52:30 GMT Location: http://codefire.org Server: LiteSpeed Content-Length: 1172 Content-Type: text/html | clean |
http://www.codefire.in/templates/vantage_j25/warp/js/warp.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 03:52:31 GMT Location: http://codefire.org Server: LiteSpeed Content-Length: 1172 Content-Type: text/html | clean |
http://www.codefire.in/templates/vantage_j25/warp/js/responsive.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 03:52:31 GMT Location: http://codefire.org Server: LiteSpeed Content-Length: 1172 Content-Type: text/html | clean |
http://www.codefire.in/templates/vantage_j25/warp/js/accordionmenu.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 03:52:32 GMT Location: http://codefire.org Server: LiteSpeed Content-Length: 1172 Content-Type: text/html | clean |
http://www.codefire.in/templates/vantage_j25/warp/js/dropdownmenu.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 03:52:32 GMT Location: http://codefire.org Server: LiteSpeed Content-Length: 1172 Content-Type: text/html | clean |
http://www.codefire.in/templates/vantage_j25/js/template.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 03:52:32 GMT Location: http://codefire.org Server: LiteSpeed Content-Length: 1172 Content-Type: text/html | clean |
http://www.codefire.in/templates/vantage_j25/js/script.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 03:52:33 GMT Location: http://codefire.org Server: LiteSpeed Content-Length: 1172 Content-Type: text/html | clean |
http://www.codefire.in/templates/vantage_j25/warp/js/search.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 03:52:33 GMT Location: http://codefire.org Server: LiteSpeed Content-Length: 1172 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: codefire.in
Result:
GET / HTTP/1.1
Host: codefire.in
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: codefire.in
Referer: http://www.google.com/search?q=codefire.in
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: codefire.in
Referer: http://www.google.com/search?q=codefire.in
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=codefire.in
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://codefire.in/
Result: codefire.in is not infected or malware details are not published yet.
Result: codefire.in is not infected or malware details are not published yet.