Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://www.sentix.de/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.sentix.de Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Moved Temporarily Date: Fri, 18 Jul 2014 19:39:06 GMT Location: http://www.caribsoft-online.biz/templates/rhuk_solarflare_ii/images/index.php Server: Microsoft-IIS/8.5 Content-Length: 200 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.2.17 X-Powered-By: ASP.NET | malicious |
URL: http://www.caribsoft-online.biz/templates/rhuk_solarflare_ii/images/index.php (imitation of visitor from search engine) GET /templates/rhuk_solarflare_ii/images/index.php HTTP/1.1 Host: www.caribsoft-online.biz Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 18 Jul 2014 19:39:14 GMT Location: http://avicennahealth.org/templates/beez/html/mod_poll/1/all.php Server: nginx/1.6.0 Content-Length: 0 Content-Type: text/html | suspicious |
Scanned pages/files
Request | Server response | Status |
http://www.sentix.de/ | 200 OK Content-Length: 54596 Content-Type: text/html | clean |
http://www.sentix.de/cache/template/js-8d0252324780e5a9f0090945147a990c.js | 200 OK Content-Length: 74305 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var MooTools={version:'1.12'};function $defined(obj){return(obj!=undefined);};function $type(obj){if(!$defined(obj))return false;if(obj.htmlElement)return'element';var type=typeof obj;if(type=='object'&&obj.nodeName){switch(obj.nodeType){case 1:return'element';case 3:return(/\S/).test(obj.nodeValue)?'textnode':'whitespace';}} if(type=='object'||type=='function'){switch(obj.constructor){case Array:return'array';case RegExp:return'regexp';case Class:return'class';} if(typeof obj.le Antivirus reports:
| ||
http://www.sentix.de/cache/template/js-f0e696457ad44b4a417dd953de5b0cc8.js | 200 OK Content-Length: 1072 Content-Type: application/javascript | clean |
http://www.sentix.de/cache/template/js-17e6db1294eeabef50729ffc22825965.js | 200 OK Content-Length: 5797 Content-Type: application/javascript | clean |
http://www.sentix.de/cache/template/js-c2784b064ca583b47903e006023c8611.js | 200 OK Content-Length: 6487 Content-Type: application/javascript | clean |
http://www.sentix.de/components/com_jfbconnect/includes/jfbconnect.js?v=433 | 200 OK Content-Length: 15046 Content-Type: application/javascript | clean |
http://www.sentix.de/cache/template/js-d98966b393f52df2e10cd21e5a6111e9.js | 200 OK Content-Length: 93037 Content-Type: application/javascript | clean |
http://www.sentix.de/cache/template/js-a4c5ca485272f77aa46917f0710cfc87.js | 200 OK Content-Length: 19913 Content-Type: application/javascript | clean |
http://www.sentix.de/modules/mod_yoo_search/mod_yoo_search.js | 200 OK Content-Length: 3572 Content-Type: application/javascript | clean |
http://www.sentix.de/modules/mod_fpss/includes/js/jquery.fpss.js | 200 OK Content-Length: 4982 Content-Type: application/javascript | clean |
http://www.sentix.de/plugins/system/yoo_effects/yoo_effects.js.php?lb=1&re=1&sl=1 | 200 OK Content-Length: 34847 Content-Type: application/x-javascript | clean |
http://www.sentix.de/cache/template/js-ef0d90d3e24d24ab65fb5d411448fb5b.js | 200 OK Content-Length: 14899 Content-Type: application/javascript | clean |
http://www.sentix.de/plugins/system/EUCookieDirectiveLite/EUCookieDirective.js | 200 OK Content-Length: 419 Content-Type: application/javascript | clean |
http://www.sentix.de/index.php/Terms/faq.html | 200 OK Content-Length: 38442 Content-Type: text/html | clean |
http://www.sentix.de/index.php/en/Terms/faq.html | 200 OK Content-Length: 37421 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sentix.de
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sentix.de/
Result: sentix.de is not infected or malware details are not published yet.
Result: sentix.de is not infected or malware details are not published yet.