Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=exaservices.fr
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://exaservices.fr/ | 200 OK Content-Length: 41115 Content-Type: text/html | clean |
http://exaservices.fr/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/javascript | clean |
http://exaservices.fr/plugins/content/avreloaded/silverlight.js | 200 OK Content-Length: 8093 Content-Type: application/javascript | clean |
http://exaservices.fr/plugins/content/avreloaded/wmvplayer.js | 200 OK Content-Length: 16476 Content-Type: application/javascript | clean |
http://exaservices.fr/plugins/content/avreloaded/swfobject.js | 200 OK Content-Length: 12254 Content-Type: application/javascript | clean |
http://exaservices.fr/plugins/content/avreloaded/avreloaded.js | 200 OK Content-Length: 2359 Content-Type: application/javascript | clean |
http://exaservices.fr/media/system/js/modal.js | 200 OK Content-Length: 10588 Content-Type: application/javascript | clean |
http://platform.twitter.com/widgets.js | 200 OK Content-Length: 97628 Content-Type: application/javascript | clean |
http://www.carbonpub.com/eval/pastille.php?id=1&site=exaservices.net | 200 OK Content-Length: 902 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: exaservices.net if(document.getElementById('newpastille')){ var divpastille = document.getElementById("newpastille"); divpastille.innerHTML += "<a href='#' oncontextmenu='return false;' onclick=window.open('http://carbonpub.com/eval/as.php\',\'_blank\',\'width=640,height=480,location=no,menubar=no,titlebar=no,status=no,toolbar=no');return(false); border='0'> <img src='http://carbonpub.com/eval/imagedyn.php?id=1&bool=0&site=exaservices.net' border='1' alt='pastille' id='cpusual' /></a>"; }else{ document.open(); document.write('<a href="#" oncontextmenu="return false;" onclick=window.open("http://carbonpub.com/eval/as.php","_blank","width=640,height=480,location=no,menubar=no,titlebar=no,status=no,toolbar=no");return(false); border="0"> <img src=\'http://carbonpub.com/eval/imagedyn.php?id=1&bool=0&site=exaservices.net\' border=\'1\' alt=\' ...[63 bytes skipped]... | ||
http://www.carbonpub.com/eval/ | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://www.carbonpub.com/test404page.js | 404 Not Found Content-Length: 12014 Content-Type: text/html | clean |
http://www.carbonpub.com/wp-content/themes/cp20100901/script.js | 200 OK Content-Length: 13576 Content-Type: application/javascript | clean |
http://ajax.googleapis.com/ajax/libs/swfobject/2.2/swfobject.js?ver=2.9.2 | 200 OK Content-Length: 10220 Content-Type: text/javascript | clean |
http://www.carbonpub.com/wp-includes/js/jquery/jquery.js?ver=1.3.2 | 200 OK Content-Length: 57276 Content-Type: application/javascript | clean |
http://www.carbonpub.com/wp-content/plugins/forum-server/js/script.js | 200 OK Content-Length: 4306 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: exaservices.fr
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 24 Apr 2014 21:58:10 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Thu, 24 Apr 2014 21:58:10 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 90planBAK=R698931959; path=/; expires=Thu, 24-Apr-2014 23:12:45 GMT
Set-Cookie: 90plan=R3243040552; path=/; expires=Thu, 24-Apr-2014 22:57:31 GMT
Set-Cookie: 44a6d9b7aa046ddbc73773301df4ef63=b4aee51de60689c06796ee1e6e1c75f3; path=/
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: exaservices.fr
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 24 Apr 2014 21:58:10 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Thu, 24 Apr 2014 21:58:10 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 90planBAK=R698931959; path=/; expires=Thu, 24-Apr-2014 23:12:45 GMT
Set-Cookie: 90plan=R3243040552; path=/; expires=Thu, 24-Apr-2014 22:57:31 GMT
Set-Cookie: 44a6d9b7aa046ddbc73773301df4ef63=b4aee51de60689c06796ee1e6e1c75f3; path=/
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: exaservices.fr
Referer: http://www.google.com/search?q=exaservices.fr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: exaservices.fr
Referer: http://www.google.com/search?q=exaservices.fr
Result:
The result is similar to the first query. There are no suspicious redirects found.