Scanned pages/files
Request | Server response | Status |
http://www.yuksel.az/ | 200 OK Content-Length: 38347 Content-Type: text/html | clean |
http://www.yuksel.az/plugins/system/ice_speed/?f=2d907b480017c1fd3f7850b900222d3c.js&use=gzip | 200 OK Content-Length: 0 Content-Type: text/javascript | clean |
http://www.yuksel.az/plugins/system/ice_speed/?f=1cf1e3404c80c3588cc5819e0ed906bd.js&use=gzip | 200 OK Content-Length: 74306 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var MooTools={version:'1.12'};function $defined(obj){return(obj!=undefined);};function $type(obj){if(!$defined(obj))return false;if(obj.htmlElement)return'element';var type=typeof obj;if(type=='object'&&obj.nodeName){switch(obj.nodeType){case 1:return'element';case 3:return(/\S/).test(obj.nodeValue)?'textnode':'whitespace';}} if(type=='object'||type=='function'){switch(obj.constructor){case Array:return'array';case RegExp:return'regexp';case Class:return'class';} if(typeof obj.le Antivirus reports:
| ||
http://www.yuksel.az/plugins/system/ice_speed/?f=3271280b6b6c9dae38cd8fb7d1c7a31e.js&use=gzip | 200 OK Content-Length: 1073 Content-Type: text/javascript | clean |
http://www.yuksel.az/plugins/system/ice_speed/?f=f8c600b63cdd5419251b860300a59be3.js&use=gzip | 200 OK Content-Length: 7346 Content-Type: text/javascript | clean |
http://www.yuksel.az/plugins/system/ice_speed/?f=09391748e0f24d015fd23f0e588aa13f.js&use=gzip | 200 OK Content-Length: 4251 Content-Type: text/javascript | clean |
http://www.yuksel.az/plugins/system/ice_speed/?f=fc96f305797491470861604692f6d95c.js&use=gzip | 200 OK Content-Length: 5054 Content-Type: text/javascript | clean |
http://gordonblair.com/Backup/backup.js | 404 Not Found Content-Length: 17016 Content-Type: text/html | clean |
http://gordonblair.com/wp-content/themes/classy-2013-v2/js/cufon-yui.js | 200 OK Content-Length: 18258 Content-Type: application/x-javascript | clean |
http://gordonblair.com/wp-content/themes/classy-2013-v2/font/Futura_Std_300.font.js | 200 OK Content-Length: 47383 Content-Type: application/x-javascript | clean |
http://gordonblair.com/wp-content/themes/classy-2013-v2/font/Futura_Std_medium.font.js | 200 OK Content-Length: 47510 Content-Type: application/x-javascript | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js?ver=1.6.2 | 200 OK Content-Length: 91556 Content-Type: text/javascript | clean |
http://gordonblair.com/wp-content/plugins/sociable/js/sociable.js?ver=3.8.1 | 200 OK Content-Length: 1879 Content-Type: application/x-javascript | clean |
http://gordonblair.com/wp-content/plugins/sociable/js/addtofavorites.js?ver=3.8.1 | 200 OK Content-Length: 587 Content-Type: application/x-javascript | clean |
http://gordonblair.com/wp-content/plugins/fancybox-for-wordpress/fancybox/jquery.fancybox.js?ver=1.3.4 | 200 OK Content-Length: 15622 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: yuksel.az
Result:
GET / HTTP/1.1
Host: yuksel.az
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: yuksel.az
Referer: http://www.google.com/search?q=yuksel.az
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: yuksel.az
Referer: http://www.google.com/search?q=yuksel.az
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=yuksel.az
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://yuksel.az/
Result: yuksel.az is not infected or malware details are not published yet.
Result: yuksel.az is not infected or malware details are not published yet.