Scanned pages/files
Request | Server response | Status |
http://mooster.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 15 Jul 2014 06:44:46 GMT Location: http://www.mooster.com/ Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 308 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.mooster.com/ | 200 OK Content-Length: 48652 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var tpj=jQuery; var revapi1; tpj(document).ready(function() { if (tpj.fn.cssOriginal != undefined) tpj.fn.css = tpj.fn.cssOriginal; if(tpj('#rev_slider_1_1').revolution == undefined) revslider_showDoubleJqueryError('#rev_slider_1_1',"joomla"); else revapi1 = tpj('#rev_slider_1_1').show().revolution( { delay:9000, sta navigationType:"none", navigationArrows:"verticalcentered", navigationStyle:"round", touchenabled:"on", onHoverStop:"on", navOffsetHorizontal:0, navOffsetVertical:20, shadow:0, fullWidth:"on", stopLoop:"off", stopAfterLoops:-1, stopAtSlide:-1, shuffle:"off" }); }); Antivirus reports:
| ||
http://www.mooster.com/media/system/js/mootools-core.js | 200 OK Content-Length: 96362 Content-Type: application/javascript | clean |
http://mooster.com/media/system/js/core.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 15 Jul 2014 06:44:50 GMT Location: http://www.mooster.com/media/system/js/core.js Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 331 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.mooster.com/media/system/js/core.js | 200 OK Content-Length: 4784 Content-Type: application/javascript | clean |
http://mooster.com/media/system/js/mootools-more.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 15 Jul 2014 06:44:51 GMT Location: http://www.mooster.com/media/system/js/mootools-more.js Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 340 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.mooster.com/media/system/js/mootools-more.js | 200 OK Content-Length: 238331 Content-Type: application/javascript | clean |
http://mooster.com/media/system/js/caption.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 15 Jul 2014 06:44:52 GMT Location: http://www.mooster.com/media/system/js/caption.js Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 334 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.mooster.com/media/system/js/caption.js | 200 OK Content-Length: 729 Content-Type: application/javascript | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.8/jquery.min.js | 200 OK Content-Length: 93637 Content-Type: text/javascript | clean |
http://mooster.com/plugins/system/jqueryeasy/jquerynoconflict.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 15 Jul 2014 06:44:53 GMT Location: http://www.mooster.com/plugins/system/jqueryeasy/jquerynoconflict.js Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 353 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.mooster.com/plugins/system/jqueryeasy/jquerynoconflict.js | 200 OK Content-Length: 20 Content-Type: application/javascript | clean |
http://mooster.com/components/com_k2/js/k2.js?v2.6.8&sitepath=/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 15 Jul 2014 06:44:54 GMT Location: http://www.mooster.com/components/com_k2/js/k2.js?v2.6.8&sitepath=/ Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 356 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.mooster.com/components/com_k2/js/k2.js?v2.6.8&sitepath=/ | 200 OK Content-Length: 8011 Content-Type: application/javascript | clean |
http://mooster.com/media/plg_system_topofthepage/ScrollSpy-yui-compressed.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 15 Jul 2014 06:44:54 GMT Location: http://www.mooster.com/media/plg_system_topofthepage/ScrollSpy-yui-compressed.js Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 365 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.mooster.com/media/plg_system_topofthepage/scrollspy-yui-compressed.js | 404 Not Found Content-Length: 336 Content-Type: text/html | clean |
http://www.mooster.com/test404page.js | 404 Not Found Content-Length: 293 Content-Type: text/html | clean |
http://mooster.com/media/plg_system_topofthepage/smoothscroll.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 15 Jul 2014 06:44:55 GMT Location: http://www.mooster.com/media/plg_system_topofthepage/smoothscroll.js Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 353 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.mooster.com/media/plg_system_topofthepage/smoothscroll.js | 200 OK Content-Length: 1039 Content-Type: application/javascript | clean |
http://mooster.com/media/plg_system_topofthepage/topofthepage.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 15 Jul 2014 06:44:56 GMT Location: http://www.mooster.com/media/plg_system_topofthepage/topofthepage.js Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 353 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.mooster.com/media/plg_system_topofthepage/topofthepage.js | 200 OK Content-Length: 3074 Content-Type: application/javascript | clean |
http://www.mooster.com/plugins/system/iewarning/js/warning.js | 200 OK Content-Length: 8025 Content-Type: application/javascript | clean |
http://mooster.com/libraries/gantry/js/browser-engines.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 15 Jul 2014 06:44:56 GMT Location: http://www.mooster.com/libraries/gantry/js/browser-engines.js Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 346 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.mooster.com/libraries/gantry/js/browser-engines.js | 200 OK Content-Length: 4026 Content-Type: application/javascript | clean |
http://mooster.com/templates/gantry/js/html5shim.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 15 Jul 2014 06:44:57 GMT Location: http://www.mooster.com/templates/gantry/js/html5shim.js Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 340 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.mooster.com/templates/gantry/js/html5shim.js | 200 OK Content-Length: 2394 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mooster.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 15 Jul 2014 06:44:46 GMT
Location: http://www.mooster.com/
Server: Apache/2.2.22 (Debian)
Vary: Accept-Encoding
Content-Length: 308
Content-Type: text/html; charset=iso-8859-1
...308 bytes of data.
GET / HTTP/1.1
Host: mooster.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 15 Jul 2014 06:44:46 GMT
Location: http://www.mooster.com/
Server: Apache/2.2.22 (Debian)
Vary: Accept-Encoding
Content-Length: 308
Content-Type: text/html; charset=iso-8859-1
...308 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: mooster.com
Referer: http://www.google.com/search?q=mooster.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mooster.com
Referer: http://www.google.com/search?q=mooster.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mooster.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://mooster.com/
Result: mooster.com is not infected or malware details are not published yet.
Result: mooster.com is not infected or malware details are not published yet.