Scanned pages/files
Request | Server response | Status |
http://bijaya.do.am/ | 200 OK Content-Length: 175834 Content-Type: text/html | suspicious |
Suspicious code. Script contains iFrame. ...[218 bytes skipped]... "+c[l]:"",c[e]?"&"+e+"="+c[e]:"","'\"></",i,">"].join("")}var f=window, a=f.Meebo=f.Meebo||function(){(a._=a._||[]).push(arguments)},d=document,i="body", m=d[i],r;if(!m){r=arguments.callee;return setTimeout(function(){r(c)},100)}a.$= {0:+new Date};a.T=function(u){a.$[u]=new Date-a.$[0]};a.v=5;var j="appendChild", h="createElement",k="src",l="lang",q="network",e="domain",n=d[h]("div"),v=n[j](d[h]("m")), b=d[h]("iframe"),g="document",o,s=function(){a.T("load");a("load")};f.addEventListener? f.addEventListener("load",s,false):f.attachEvent("onload",s);n.style.display="none"; m.insertBefore(n,m.firstChild).id="meebo";b.frameBorder="0";b.name=b.id="meebo-iframe"; b.allowTransparency="true";v[j](b);try{b.contentWindow[g].open()}catch(w){c[e]= d[e];o="javascript:var d="+g+".open();d.domain='"+d.domain+"';";b[k]=o+"void(0);"}try{var t= b.contentWindow[g];t.write(p());t.close()}catch(x) ...[107 bytes skipped]... Decoded script: function () { a.T("load"); a("load"); } | ||
http://bijaya.do.am/Lock/js/libs/jquery.min.js | 200 OK Content-Length: 94843 Content-Type: text/javascript | clean |
http://bijaya.do.am/Lock/js/jquery.op.like2unlock.min.js | 200 OK Content-Length: 27600 Content-Type: text/javascript | clean |
http://s30.ucoz.net/src/jquery-1.7.2.js | 200 OK Content-Length: 94840 Content-Type: text/javascript | clean |
http://s30.ucoz.net/src/ulightbox/ulightbox.js | 200 OK Content-Length: 22097 Content-Type: text/javascript | clean |
http://s30.ucoz.net/src/uwnd.js?2 | 200 OK Content-Length: 228554 Content-Type: text/javascript | clean |
http://s30.ucoz.net/src/gstoolbar2/css/ie.css | 200 OK Content-Length: 527 Content-Type: text/css | clean |
http://s30.ucoz.net/test404page.js | 403 Forbidden Content-Length: 695 Content-Type: text/html | clean |
http://s30.ucoz.net/src/gstoolbar2/js/tool.js | 200 OK Content-Length: 36011 Content-Type: text/javascript | clean |
http://www.websnapr.com/js/websnapr.js | 200 OK Content-Length: 857 Content-Type: application/javascript | clean |
http://bijaya.do.am/rtr/3 | 200 OK Content-Length: 244 Content-Type: text/javascript | clean |
http://bijaya.do.am/media/?t=video;w=340;h=125;f=http%3A%2F%2Fbijaya.do.am%2FFlash%2Fweb_directory.swf | 200 OK Content-Length: 327 Content-Type: text/javascript | clean |
http://services.webestools.com/menus-horizon/style-18.js?txt=Home%3Dhttp%253A%252F%252Fwww.bijaya.do.am%0AFree%2520Classifieds%3Dhttp%253A%252F%252Fwww.bijaya.do.am%252Fboard%0AFree%2520Web%2520Directory%3Dhttp%253A%252F%252Fbijaya.do.am%252Fdir%0AOnline%2520Games%3Dhttp%253A%252F%252Fbijaya.do.am%252Fstuff%0AWebmaster's%2520Tools%3Dhttp%253A%252F%252Fbijaya.do.am%252Findex%252Fbest_free_webmaster <span>...1388 symbols skipped</span> | 200 OK Content-Length: 5258 Content-Type: text/html | clean |
http://services.webestools.com/menus-horizon/\"http://www.bijaya.do.am\" | 404 Not Found Content-Length: 306 Content-Type: text/html | clean |
http://services.webestools.com/menus-horizon/\"http://www.bijaya.do.am/board\" | 404 Not Found Content-Length: 306 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bijaya.do.am
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Cache-Control: no-store
Cache-Control: private
Connection: close
Date: Tue, 28 Jul 2015 09:16:13 GMT
Pragma: no-cache
Server: uServ/3.2.2
Content-Type: text/html; charset=UTF-8
Set-Cookie: 8bijayauCoz=; path=/; expires=Sun, 28-Jul-2013 09:16:13 GMT; domain=.bijaya.do.am;
Set-Cookie: 8bijayauzll=1438074973; path=/; expires=Wed, 27-Jul-2016 09:16:13 GMT; domain=.bijaya.do.am;
Set-Cookie: ucvid=i2qVx2HFZM; path=/; expires=Wed, 27-Jul-2016 09:16:13 GMT
GET / HTTP/1.1
Host: bijaya.do.am
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Cache-Control: no-store
Cache-Control: private
Connection: close
Date: Tue, 28 Jul 2015 09:16:13 GMT
Pragma: no-cache
Server: uServ/3.2.2
Content-Type: text/html; charset=UTF-8
Set-Cookie: 8bijayauCoz=; path=/; expires=Sun, 28-Jul-2013 09:16:13 GMT; domain=.bijaya.do.am;
Set-Cookie: 8bijayauzll=1438074973; path=/; expires=Wed, 27-Jul-2016 09:16:13 GMT; domain=.bijaya.do.am;
Set-Cookie: ucvid=i2qVx2HFZM; path=/; expires=Wed, 27-Jul-2016 09:16:13 GMT
Second query (visit from search engine):
GET / HTTP/1.1
Host: bijaya.do.am
Referer: http://www.google.com/search?q=bijaya.do.am
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bijaya.do.am
Referer: http://www.google.com/search?q=bijaya.do.am
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bijaya.do.am
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bijaya.do.am/
Result: bijaya.do.am is not infected or malware details are not published yet.
Result: bijaya.do.am is not infected or malware details are not published yet.