Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=loopchange.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://www.loopchange.com/ | 200 OK Content-Length: 234439 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: f2588c8.eu function hashdate (str) {if(!str) {var date=new Date();var str = date.getUTCFullYear() + "/" + (date.getUTCMonth()+1) + "/" + date.getUTCDate() + " " + (date.getHours() >= 12 ? 'PM':'AM');};var table = [0,1996959894,3993919788,2567524794,124634137,1886057615,3915621685,2657392035,249268274,2044508324,3772115230,2547177864,162941995,2125561021,3887607047,2428444049,498536548,1789927666,4089016648,2227061214,450548861,1843258603,4107580753,221167763 ...[3442 bytes skipped]... | ||
http://www.loopchange.com/lightbox/js/jquery.min.js | 200 OK Content-Length: 78601 Content-Type: application/x-javascript | clean |
http://www.loopchange.com/lightbox/js/jquery.colorbox.js | 200 OK Content-Length: 29936 Content-Type: application/x-javascript | clean |
http://w.sharethis.com/button/buttons.js | 200 OK Content-Length: 148875 Content-Type: application/x-javascript | clean |
http://wd.sharethis.com/api/getCount2.php?cb=stButtons.processCB&url=http%3A%2F%2Fsharethis.com | 200 OK Content-Length: 5370 Content-Type: text/javascript | clean |
http://www.loopchange.com/WebResource.axd?d=gier0RGY9fJHWV_OniN6dIQc4KoayFJn-C9bwol-YrDtPZBlrfZ0JR0Hnf1mpvQo-zYe3V4hHGwMVMCTtGiw_aDdEcE1&t=634208203486707097 | 200 OK Content-Length: 20794 Content-Type: application/x-javascript | clean |
http://www.loopchange.com/ScriptResource.axd?d=OFlOFEoS3oXz1WvNv1Ny33KL8Y3r19wn0WRAqSMIX-r8BiY3CDVcc_VzuxQg-1j1ElXtFvaZufNLscnc3pLod-ILl4wF8E1m3xShIqAlEhDIQYtSF2kEOBDcq4mnXqyOehbHR5aj3TAkx-UGmyQYmAopotVLdXLR8aE__OHWUickOLI-0&t=ffffffff96f57125 | 200 OK Content-Length: 300504 Content-Type: application/x-javascript | clean |
http://www.loopchange.com/ScriptResource.axd?d=objdcsARxHrv6kocAiyjjk_1RatKWB7swCX3-zSUZEABz-80xXu6KnNoOTdWWSgXFYggVV-RKKc0CPH-GzNcdSof3oyDZJ7kkhjPWMZDFP0ffjfOwlvvXH4Hg8i4LXBW7_PgWDABaemYGN7lGXJ-EdyvBab5thdh5lrmXed4JHJ0euV60&t=ffffffff96f57125 | 200 OK Content-Length: 78420 Content-Type: application/x-javascript | clean |
http://www.loopchange.com/Home.aspx | 200 OK Content-Length: 34649 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: f2588c8.eu function hashdate (str) {if(!str) {var date=new Date();var str = date.getUTCFullYear() + "/" + (date.getUTCMonth()+1) + "/" + date.getUTCDate() + " " + (date.getHours() >= 12 ? 'PM':'AM');};var table = [0,1996959894,3993919788,2567524794,124634137,1886057615,3915621685,2657392035,249268274,2044508324,3772115230,2547177864,162941995,2125561021,3887607047,2428444049,498536548,1789927666,4089016648,2227061214,450548861,1843258603,4107580753,221167763 ...[3442 bytes skipped]... | ||
http://www.loopchange.com/ScriptResource.axd?d=HZ6ZM6ChKRLTQld9OegU0QVbD2kILv_Z-xQguLSLLD-C75PHBVKMLsRtQ1LTsdR5BCRfQcMZr1T0eoZq2NutqyyY3WHFGNIX4z1oJqF8C0TbhUcjlsJ44c8FpqeCy6erVKXqhYSsCRVtEmcB4Nlv84nMmsw1&t=32b9213c | 200 OK Content-Length: 21615 Content-Type: application/x-javascript | clean |
http://www.loopchange.com/ScriptResource.axd?d=mRZX3TDRjWWnOCKFmpdkSkkdHb8wjmrnB46BBykVvbj6Yea4bDYLw9osw5sAZopSQxjupssG0Pubra8OFEzWhVTEDjJFkwZeiW2MBle31cClKI-LPGKxvR9lwdrmj3DJ_KD3Lw2&t=3408936e | 200 OK Content-Length: 71254 Content-Type: application/x-javascript | clean |
http://www.loopchange.com/ScriptResource.axd?d=KnUO79yb16WX9GslY0SdpbDW3uU9IH7WtR0hGxNJAUSf7FsjvSvYbL_dahWBOeRhka-XAO2o_AFDv6xzB1Te7brKj22o-UJFUyOm_lTkadmHrmDmfnbWHGyGNpjLYVaycZ4uKw2&t=3408936e | 200 OK Content-Length: 18411 Content-Type: application/x-javascript | clean |
http://www.loopchange.com/Home.aspx?_TSM_HiddenField_=scp1_HiddenField&_TSM_CombinedScripts_=%3b%3bAjaxControlToolkit%2c+Version%3d3.5.40412.0%2c+Culture%3dneutral%2c+PublicKeyToken%3d28f01b0e84b6d53e%3aen-US%3a1547e793-5b7e-48fe-8490-03a375b13a33%3ade1feab2%3af2c8e708%3a720a52bf%3af9cec9bc%3a589eaa30%3a698129cf%3ae148b24b | 200 OK Content-Length: 99714 Content-Type: application/x-javascript | clean |
http://www.loopchange.com/WebResource.axd?d=QsA4gdFRiJ4OoZoetN_w0SI1Z3GFweRjmPyV53HfkpVDnxksY1eblfuLBAmjCqPV6gUWjW_pQe8TEvKHUBuZ9rgMgmQ1&t=634208203486707097 | 200 OK Content-Length: 3005 Content-Type: application/x-javascript | clean |
http://www.loopchange.com/about.aspx | 200 OK Content-Length: 19242 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: loopchange.com
Result:
GET / HTTP/1.1
Host: loopchange.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: loopchange.com
Referer: http://www.google.com/search?q=loopchange.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: loopchange.com
Referer: http://www.google.com/search?q=loopchange.com
Result:
The result is similar to the first query. There are no suspicious redirects found.