Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://www.phuongnamplc.vn/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.phuongnamplc.vn Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Tue, 16 Sep 2014 09:27:15 GMT Location: http://cooptraiss.com/hezd.html?h=469229 Server: Apache/2 Content-Length: 295 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://www.phuongnamplc.vn/ | 200 OK Content-Length: 31844 Content-Type: text/html | clean |
http://www.phuongnamplc.vn/Scripts/swfobject_modified.js | 404 Not Found Content-Length: 417 Content-Type: text/html | clean |
http://www.phuongnamplc.vn/test404page.js | 404 Not Found Content-Length: 402 Content-Type: text/html | clean |
http://www.phuongnamplc.vn/files/script/jquery.min.js | 200 OK Content-Length: 78435 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(A,w){function ma(){if(!c.isReady){try{s.documentElement.doScroll("left")}catch(a){setTimeout(ma,1);return}c.ready()}}function Qa(a,b){b.src?c.ajax({url:b.src,async:false,dataType:"script"}):c.globalEval(b.text||b.textContent||b.innerHTML||"");b.parentNode&&b.parentNode.removeChild(b)}function X(a,b,d,f,e,j){var i=a.length;if(typeof b==="object"){for(var o in b)X(a,o,b[o],f,e,d);return a}if(d!==w){f=!j&&f&&c.isFunction(d);for(o=0;o<i;o++)e(a[o],b,f?d.call(a[o] 10*/ Antivirus reports:
| ||
http://www.phuongnamplc.vn/files/script/jquery.hoverIntent.minified.js | 200 OK Content-Length: 7863 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($){$.fn.hoverIntent=function(f,g){var cfg={sensitivity:7,interval:100,timeout:0};cfg=$.extend(cfg,g?{over:f,out:g}:f);var cX,cY,pX,pY;var track=function(ev){cX=ev.pageX;cY=ev.pageY;};var compare=function(ev,ob){ob.hoverIntent_t=clearTimeout(ob.hoverIntent_t);if((Math.abs(pX-cX)+Math.abs(pY-cY))<cfg.sensitivity){$(ob).unbind("mousemove",track);ob.hoverIntent_s=1;return cfg.over.apply(ob,[ev]);}else{pX=cX;pY=cY;ob.hoverIntent_t=setTimeout(function(){compare(ev,ob);},cfg.interval);}};v Antivirus reports:
|
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=phuongnamplc.vn
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://phuongnamplc.vn/
Result: phuongnamplc.vn is not infected or malware details are not published yet.
Result: phuongnamplc.vn is not infected or malware details are not published yet.