Alex’s Blog

What is


Malware’s connexion point
There is a JS that run within the browser and share your information with all the possible social sites.

Scanned with McAfee Security Centre, Malwarebytes, and Spybot Search and Destroy. None identify any form of virus or trojan. The performance of FF has considerably slowed, taking many seconds (10-30) to load a page or switch between tabs), and on the processes tab of Task Manager FF is using 261Mb of memory (plugin container is typically around 9Mb). – Unkown

Google listed websites that hosted malicious software, suspicious sites, sites that acted as an intermediary resulting in further distribution of malware. Google’s diagnostic page for

What is use the code to track the users that visit website and after that sell the information to 3rd party AD networks.
Sites like make money by collecting information about you and sending important data to AD & Tracking networks that will use these data to spam your email, later, or send you ADS in some way. is a domain used by AppNexus which is an advertising company that is part of a network of sites, cookies, and other technologies used to track you, what you do and what you click on, as you go from site to site, surfing the Web. Over time, sites like can help make an online profile of you usually including the sites you visit, your searches, purchases, and other behavior. Your profile can then be exchanged and sold between various companies like as well as being sold to other advertisers and marketers

Server Analysis

IP Address :
Latitude : 42.6105
Longitude : -71.2306
Region : Tewksbury, Massachusetts
Country : United States
Server Location:
Tewksbury, Massachusetts
United States
Map DataMap data ©2012 GoogleTerms of Use
Map Data
Map data ©2012 Google
Map data ©2012 Google


var marker;
var myLatlng;
var map;
function loadMap(){
myLatlng = new google.maps.LatLng(parseFloat(‘42.6105’),parseFloat(‘-71.2306’));
var myOptions = {
zoom: 9,
scrollwheel: false,
center: myLatlng,
mapTypeId: google.maps.MapTypeId.ROADMAP

map = new google.maps.Map(document.getElementById(“map”), myOptions);

var contentString = ‘

Server Location:
Tewksbury, Massachusetts
United States


/*var infowindow = new google.maps.InfoWindow({
content: contentString

var myOptions = {
content: contentString
,disableAutoPan: false
,maxWidth: “”
,pixelOffset: new google.maps.Size(-90, -110)
,zIndex: null
,boxStyle: {
background: “#fff”
,opacity: 1
,width: “180px”
,maxWidth: “300px”
,closeBoxMargin: “4px”
,infoBoxClearance: new google.maps.Size(1, 1)
,isHidden: false
,pane: “floatPane”
,enableEventPropagation: false

var infowindow = new InfoBox(myOptions);

marker = new google.maps.Marker({
position: myLatlng,
map: map

google.maps.event.addListener(marker, ‘click’, function() {,marker);


HTTP Header Analysis

HTTP Header reponses of is the information we get when HTTP request sent to a server from connecting clients(e.g. chrome, firefox). When you input an address into your browser it sends a request to the server hosting the domain and the server responds. HTTP Header information is not directly displayed by normal web browsers like chrome, firefox etc.
HTTP/1.1 200 OK
Date: Mon, 03 Dec 2012 08:37:31 GMT
Server: Jetty(6.1.22)
Set-Cookie: wfivefivec=84ed17e8-0db7-4d99-a6d3-55aa02de138f;Path=/;;Expires=Wed, 03-Dec-14 08:37:31 GMT
Cache-Control: no-store
pragma: no-cache
Content-Type: text/html;charset=ISO-8859-1
Via: 1.1 ttn061006 (MII-APC/2.3)
Transfer-Encoding: chunked

DNS Record Analysis

There are total 7 records in domain name system (DNS) of , which includes 2 Addess(A) records, 1 Canonical Name(CNAME) record and 4 Name Server(NS) records.
Host Type IP/Target TTL Extra Info A 10 A 10 CNAME 86400 NS 10 NS 10 NS 10 NS 10

Leave a Reply

You must be logged in to post a comment.