Scanned pages/files
Request | Server response | Status |
http://www.silversunrepublic.com/ | HTTP/1.1 303 See Other Connection: close Date: Fri, 11 Jul 2014 08:01:32 GMT Location: http://www.silversunrepublic.com/content.php?s=408f993327de8488be043c0e5194656d Server: cloudflare-nginx Vary: Accept-Encoding Content-Type: text/html CF-RAY: 14837939481f0f93-FRA Set-Cookie: __cfduid=d68e307d2f093a30c894758508b06fe411405065691082; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; domain=.silversunrepublic.com; HttpOnly Set-Cookie: bb_sessionhash=408f993327de8488be043c0e5194656d; path=/; HttpOnly Set-Cookie: bb_lastvisit=1405065691; expires=Sat, 11-Jul-2015 08:01:31 GMT; path=/ Set-Cookie: bb_lastactivity=0; expires=Sat, 11-Jul-2015 08:01:31 GMT; path=/ | clean |
http://www.silversunrepublic.com/content.php?s=408f993327de8488be043c0e5194656d | 200 OK Content-Length: 19147 Content-Type: text/html | clean |
http://www.silversunrepublic.com/clientscript/vbulletin-core.js,qv=422.pagespeed.jm.6vkDUrw9CU.js | 200 OK Content-Length: 51200 Content-Type: application/javascript | clean |
http://www.silversunrepublic.com/clientscript/vbulletin_overlay.js,qv=422.pagespeed.jm.FHEVc3oweC.js | 200 OK Content-Length: 13588 Content-Type: application/javascript | clean |
http://www.silversunrepublic.com/clientscript/vbulletin_cms.js,qv=422.pagespeed.jm.QBzhVW1t22.js | 200 OK Content-Length: 3364 Content-Type: application/javascript | clean |
http://www.silversunrepublic.com/clientscript/vbulletin_md5.js,qv=422.pagespeed.ce.UZfm30t6Ms.js | 200 OK Content-Length: 5464 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var hexcase=0;var b64pad="";var chrsz=8;function hex_md5(A){return binl2hex(core_md5(str2binl(A),A.length*chrsz))}function b64_md5(A){return binl2b64(core_md5(str2binl(A),A.length*chrsz))}function str_md5(A){return binl2str(core_md5(str2binl(A),A.length*chrsz))}function hex_hmac_md5(A,B){return binl2hex(core_hmac_md5(A,B))}function b64_hmac_md5(A,B){return binl2b64(core_hmac_md5(A,B))}function str_hmac_md5(A,B){return binl2str(core_hmac_md5(A,B))}function core_md5(K,F){K[F>>5]|=128<< Antivirus reports:
| ||
http://www.silversunrepublic.com/clientscript/vbulletin_lightbox.js,qv=422.pagespeed.jm.J7wkcaG-rR.js | 200 OK Content-Length: 11647 Content-Type: application/javascript | clean |
http://www.silversunrepublic.com/forum.php?s=408f993327de8488be043c0e5194656d | 200 OK Content-Length: 28014 Content-Type: text/html | clean |
http://www.silversunrepublic.com/clientscript/vbulletin_read_marker.js,qv=422.pagespeed.jm.paCsA40Idv.js | 200 OK Content-Length: 3750 Content-Type: application/javascript | clean |
http://www.silversunrepublic.com/clientscript/vbulletin-sidebar.js,qv=422.pagespeed.jm.bu0Qt2X4x8.js | 200 OK Content-Length: 3534 Content-Type: application/javascript | clean |
http://www.silversunrepublic.com/register.php?s=408f993327de8488be043c0e5194656d | 200 OK Content-Length: 15445 Content-Type: text/html | clean |
http://www.silversunrepublic.com/faq.php?s=408f993327de8488be043c0e5194656d | 200 OK Content-Length: 18257 Content-Type: text/html | clean |
http://www.silversunrepublic.com/activity.php?s=408f993327de8488be043c0e5194656d | 200 OK Content-Length: 17640 Content-Type: text/html | clean |
http://www.silversunrepublic.com/clientscript/vbulletin_activitystream.js,qv=422.pagespeed.jm.5QK-PiO53l.js | 200 OK Content-Length: 9354 Content-Type: application/javascript | clean |
http://www.silversunrepublic.com/search.php?s=408f993327de8488be043c0e5194656d&do=getnew&contenttype=vBForum_Post | 200 OK Content-Length: 14449 Content-Type: text/html | clean |
http://www.silversunrepublic.com/search.php?s=408f993327de8488be043c0e5194656d&do=getnew&contenttype=vBForum_Event | 200 OK Content-Length: 14499 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: silversunrepublic.com
Result:
GET / HTTP/1.1
Host: silversunrepublic.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: silversunrepublic.com
Referer: http://www.google.com/search?q=silversunrepublic.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: silversunrepublic.com
Referer: http://www.google.com/search?q=silversunrepublic.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=silversunrepublic.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://silversunrepublic.com/
Result: silversunrepublic.com is not infected or malware details are not published yet.
Result: silversunrepublic.com is not infected or malware details are not published yet.