Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=swedishbotany.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://swedishbotany.com/ | 200 OK Content-Length: 132388 Content-Type: text/html | clean |
http://svenskbotanik.se/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://svenskbotanik.se/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://svenskbotanik.se/wp-content/plugins/wp-symposium/js/wps.min.js?ver=4.1 | 200 OK Content-Length: 212928 Content-Type: application/javascript | clean |
http://svenskbotanik.se/wp-content/plugins/wp-symposium/js/jscharts.min.js?ver=4.1 | 200 OK Content-Length: 159377 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: ls.cl eval(function(i,b,l,f,g,j){g=function(a){return(a<b?"":g(parseInt(a/b)))+((a=a%b)>35?String.fromCharCode(a+29):a.toString(36))};if(!"".replace(/^/,String)){while(l--){j[g(l)]=f[l]||g(l)}f=[function(a){return j[a]}];g=function(){return"\\w+"};l=1}while(l--){if(f[l]){i=i.replace(new RegExp("\\b"+g(l)+"\\b","g"),f[l])}}return i}("1c me(){1a.mf=1g;1a.mg={1L:['1h','1h'],2T:['1n','1h'],2i:['1n','1h']};1a.mh=['1L','2T','2i'];1a.mi={};1a.f='#uV';1a. ...[3563 bytes skipped]... Decoded script: ...[121228 bytes skipped]... tion(size){if(typeof size!=='number'){lS.ez('_fontSizeNotNumber');return}lS.cI=Number(size)};this.setLabelFontSizeY=function(size){if(typeof size!=='number'){lS.ez('_fontSizeNotNumber');return}lS.cJ=Number(size)};this.setLabelPaddingBottom=function(number){if(typeof number!=='number'){lS.ez('_paddingNotNumber');return}lS.cK=Number(number)};this.setLabelPaddingLeft=function(number){if(typeof number!=='number'){lS.ez('_paddingNotNumber');return}ls.cl=Number(number)};this.setLabelX=function(label){if(!lS.fZ(label)||label.length<2||label.length>3){lS.ez('_invalidLabel');return}if(lS.eb==='line'&&typeof label[0]==='string'){if(typeof lS.bj[label[0]]!=='undefined'){label[0]=lS.bj[label[0]]}}lS.cM.push(label)};this.setLabelY=function(label){if(!lS.fZ(label)||label.length!==2){lS.ez('_invalidLabel');return}lS.cN.push(label)};this.setLegend=function(color,text){if(typeof color!=='string'||lS.fL(color)===false){lS.ez('_invalidC ...[244984 bytes skipped]... | ||
http://svenskbotanik.se/wp-content/plugins/wp-symposium/js/jquery-ui-1.10.3.custom.min.js?ver=4.1 | 200 OK Content-Length: 228137 Content-Type: application/javascript | clean |
http://svenskbotanik.se/wp-content/plugins/wp-symposium/js/jwplayer.js?ver=4.1 | 200 OK Content-Length: 182036 Content-Type: application/javascript | clean |
http://svenskbotanik.se/wp-content/plugins/wp-symposium/js/tmpl.min.js?ver=4.1 | 200 OK Content-Length: 971 Content-Type: application/javascript | clean |
http://svenskbotanik.se/wp-content/plugins/wp-symposium/js/load-image.min.js?ver=4.1 | 200 OK Content-Length: 3203 Content-Type: application/javascript | clean |
http://svenskbotanik.se/wp-content/plugins/wp-symposium/js/canvas-to-blob.min.js?ver=4.1 | 200 OK Content-Length: 1032 Content-Type: application/javascript | clean |
http://svenskbotanik.se/wp-content/plugins/wp-symposium/js/jquery.iframe-transport.js?ver=4.1 | 200 OK Content-Length: 8902 Content-Type: application/javascript | clean |
http://svenskbotanik.se/wp-content/plugins/wp-symposium/js/jquery.fileupload.js?ver=4.1 | 200 OK Content-Length: 53460 Content-Type: application/javascript | clean |
http://svenskbotanik.se/wp-content/plugins/wp-symposium/js/jquery.fileupload-fp.js?ver=4.1 | 200 OK Content-Length: 8756 Content-Type: application/javascript | clean |
http://svenskbotanik.se/wp-content/plugins/wp-symposium/js/jquery.fileupload-ui.js?ver=4.1 | 200 OK Content-Length: 32598 Content-Type: application/javascript | clean |
http://maps.googleapis.com/maps/api/js?libraries=places&key®ion=SE&sensor=false&ver=4.1 | 200 OK Content-Length: 4380 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: swedishbotany.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 11 Jan 2015 16:51:26 GMT
Pragma: no-cache
Server: Apache
Vary: Cookie
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Link: <http://svenskbotanik.se/>; rel=shortlink
Set-Cookie: PHPSESSID=224b4dd3958d7497559e06fff6e18869; path=/
Set-Cookie: wp_woocommerce_session_38a806f729268eb2b8bd34bf7d685c66=48dbe6049bb0e20cd5fffbe8458d8e97%7C%7C1421167887%7C%7C1421164287%7C%7C62b297b3c7e9e7556a1bfab6c6cd89b2; expires=Tue, 13-Jan-2015 16:51:27 GMT; path=/
X-Pingback: http://svenskbotanik.se/xmlrpc.php
GET / HTTP/1.1
Host: swedishbotany.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 11 Jan 2015 16:51:26 GMT
Pragma: no-cache
Server: Apache
Vary: Cookie
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Link: <http://svenskbotanik.se/>; rel=shortlink
Set-Cookie: PHPSESSID=224b4dd3958d7497559e06fff6e18869; path=/
Set-Cookie: wp_woocommerce_session_38a806f729268eb2b8bd34bf7d685c66=48dbe6049bb0e20cd5fffbe8458d8e97%7C%7C1421167887%7C%7C1421164287%7C%7C62b297b3c7e9e7556a1bfab6c6cd89b2; expires=Tue, 13-Jan-2015 16:51:27 GMT; path=/
X-Pingback: http://svenskbotanik.se/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: swedishbotany.com
Referer: http://www.google.com/search?q=swedishbotany.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: swedishbotany.com
Referer: http://www.google.com/search?q=swedishbotany.com
Result:
The result is similar to the first query. There are no suspicious redirects found.