Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://www.marble-box.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.marble-box.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Wed, 10 Sep 2014 18:00:24 GMT Location: http://hecodat.de/zwmd.html?h=1620318 Server: Apache Content-Length: 289 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://www.marble-box.com/ | 200 OK Content-Length: 59928 Content-Type: text/html | clean |
http://www.marble-box.com/js/modernizr.js | 200 OK Content-Length: 9313 Content-Type: application/javascript | clean |
http://www.marble-box.com/js/jquery_013.js | 200 OK Content-Length: 93682 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('');
(function(e,t){function _(e){var t=M[e]={};return v.each(e.split(y),function(e,n){t[n]=!0}),t}function H(e,n,r){if(r===t&&e.nodeType===1){var i="data-"+n.replace(P,"-$1").toLowerCase();r=e.getAttribute(i);if(typeof r=="string"){try{r=r==="true"?!0:r==="false"?!1:r==="null"?null:+r+""===r?+r:D.test(r)?v.parseJSON(r):r}catch(s){}v.data(e,n,r)}else r=t}return r}function B(e){var t;for(t in e){if(t==="data"&&v.isEmptyObject(e[t]))continue;if(t!==" Antivirus reports:
| ||
http://www.marble-box.com/js/jquery-ui.js | 200 OK Content-Length: 237738 Content-Type: application/javascript | clean |
http://www.marble-box.com/js/jquery_011.js | 200 OK Content-Length: 200933 Content-Type: application/javascript | clean |
http://www.marble-box.com/js/jquery_012.js | 200 OK Content-Length: 17149 Content-Type: application/javascript | clean |
http://www.marble-box.com/js/jquery_015.js | 200 OK Content-Length: 53946 Content-Type: application/javascript | clean |
http://www.marble-box.com/js/jquery_002.js | 200 OK Content-Length: 5469 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('');
jQuery.easing['jswing']=jQuery.easing['swing'];jQuery.extend(jQuery.easing,{def:'easeOutQuad',swing:function(x,t,b,c,d){return jQuery.easing[jQuery.easing.def](x,t,b,c,d);},easeInQuad:function(x,t,b,c,d){return c*(t/=d)*t+b;},easeOutQuad:function(x,t,b,c,d){return-c*(t/=d)*(t-2)+b;},easeInOutQuad:function(x,t,b,c,d){if((t/=d/2)<1)return c/2*t*t+b;return-c/2*((--t)*(t-2)-1)+b;},easeInCubic:function(x,t,b,c,d){return c*(t/=d)*t*t+b;},easeOutCubic:function(x, Antivirus reports:
| ||
http://www.marble-box.com/js/jquery_004.js | 200 OK Content-Length: 5643 Content-Type: application/javascript | clean |
http://www.marble-box.com/js/App.js | 404 Not Found Content-Length: 404 Content-Type: text/html | clean |
http://www.marble-box.com/test404page.js | 404 Not Found Content-Length: 404 Content-Type: text/html | clean |
http://www.marble-box.com/js/foundation.js | 200 OK Content-Length: 218662 Content-Type: application/javascript | clean |
http://www.marble-box.com/js/app.js | 200 OK Content-Length: 23175 Content-Type: application/javascript | clean |
http://www.marble-box.com/js/jquery_010.js | 200 OK Content-Length: 17149 Content-Type: application/javascript | clean |
http://www.marble-box.com/js/jquery_014.js | 200 OK Content-Length: 53946 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=marble-box.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://marble-box.com/
Result: marble-box.com is not infected or malware details are not published yet.
Result: marble-box.com is not infected or malware details are not published yet.