Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=021taxi.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.021taxi.com/ | 200 OK Content-Length: 16310 Content-Type: text/html | clean |
http://www.021taxi.com/wp-content/themes/WProducts/js/jquery.js | 200 OK Content-Length: 31033 Content-Type: application/javascript | clean |
http://www.021taxi.com/wp-content/themes/WProducts/js/wpyou.js | 200 OK Content-Length: 2438 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) $(function() {
$(".navi li").hover(function(){ $(this).find('ul:first').show("fast").css({visibility: "visible",display: "block"}); },function(){ $(this).find('ul:first').hide("fast").css({visibility: "hidden"}); }); }); $(function(){ var $title = $(".news h2 span"); var $content = $(".news ul"); $title.mousemove(function(){ var index = $title.index($(this)); $(this).addClass("mon").siblings().removeClass("m }); var MyTime = setInterval(function(){ showImg(index) index++; if(index==5){index=0;} } , 6000); }) function showImg(i){ $("#showimg img") .eq(i).stop(true,true).fadeIn(1000) .parent().siblings().find("img").hide(); $("#msg li") .eq(i).stop(true,true).fadeIn(1000) .siblings().hide(); $("#operate span") .eq(i).addClass("hov") .siblings().removeClass("hov"); } Antivirus reports:
| ||
http://sexfromindia.com/linkex/jquery-1.6.5.min.js | 500 Can't connect to sexfromindia.com:80 Content-Length: 191 Content-Type: text/plain | clean |
http://sexfromindia.com/test404page.js | 500 Can't connect to sexfromindia.com:80 Content-Length: 191 Content-Type: text/plain | clean |
http://stummann.net/steffen/google-analytics/jquery-1.6.5.min.js | 404 Not Found Content-Length: 571 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 021taxi.com
Result:
GET / HTTP/1.1
Host: 021taxi.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: 021taxi.com
Referer: http://www.google.com/search?q=021taxi.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 021taxi.com
Referer: http://www.google.com/search?q=021taxi.com
Result:
The result is similar to the first query. There are no suspicious redirects found.