Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=athousandarms.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://athousandarms.com/ | 200 OK Content-Length: 24011 Content-Type: text/html | malicious |
Page code contains blacklisted domain: capemadefieldguide.org <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en-US"> <head profile="http://gmpg.org/xfn/11"> <link rel="shortcut icon" href="http://athousandarms.com/wp-content/themes/filtered/favicon.ico" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <tit ...[4177 bytes skipped]... Malicious iFrame found. size: 443x66 src: http://capemadefieldguide.org/ram.html This URL is marked by Yandex as suspicious <iframe src="http://capemadefieldguide.org/ram.html" width="443" height="66" style="position:absolute;left:-77721px;"> | ||
http://athousandarms.com/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/x-javascript | clean |
http://athousandarms.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/x-javascript | clean |
http://athousandarms.com/wp-content/plugins/fancybox-for-wordpress/fancybox/jquery.fancybox.js?ver=1.3.4 | 200 OK Content-Length: 15667 Content-Type: application/x-javascript | clean |
http://athousandarms.com/wp-content/themes/filtered/scripts/superfish/superfish.js?ver=1.4.8 | 200 OK Content-Length: 4428 Content-Type: application/x-javascript | clean |
http://athousandarms.com/wp-content/themes/filtered/scripts/superfish/supersubs.js?ver=1.4.8 | 200 OK Content-Length: 893 Content-Type: application/x-javascript | clean |
http://athousandarms.com/wp-content/themes/filtered/scripts/slideshow/jquery.nivo.slider.pack.js?ver=2.4 | 200 OK Content-Length: 15919 Content-Type: application/x-javascript | clean |
http://athousandarms.com/wp-content/themes/filtered/scripts/quicksand.js?ver=1.2.2 | 200 OK Content-Length: 14697 Content-Type: application/x-javascript | clean |
http://athousandarms.com/wp-content/themes/filtered/scripts/project_filter.js?ver=1.0 | 200 OK Content-Length: 2980 Content-Type: application/x-javascript | clean |
http://athousandarms.com/wp-content/themes/filtered/scripts/theme_trust.js?ver=1.0 | 200 OK Content-Length: 629 Content-Type: application/x-javascript | clean |
http://athousandarms.com/?page_id=8 | 200 OK Content-Length: 11668 Content-Type: text/html | malicious |
Page code contains blacklisted domain: capemadefieldguide.org <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en-US"> <head profile="http://gmpg.org/xfn/11"> <link rel="shortcut icon" href="http://athousandarms.com/wp-content/themes/filtered/favicon.ico" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <tit ...[4314 bytes skipped]... Malicious iFrame found. size: 443x66 src: http://capemadefieldguide.org/ram.html This URL is marked by Yandex as suspicious <iframe src="http://capemadefieldguide.org/ram.html" width="443" height="66" style="position:absolute;left:-77721px;"> | ||
http://athousandarms.com/wp-includes/js/comment-reply.min.js?ver=4.1 | 200 OK Content-Length: 757 Content-Type: application/x-javascript | clean |
http://athousandarms.com/wp-admin/widgets.php | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, must-revalidate, max-age=0 Date: Sat, 07 Mar 2015 12:20:23 GMT Pragma: no-cache Location: http://athousandarms.com/wp-login.php?redirect_to=http%3A%2F%2Fathousandarms.com%2Fwp-admin%2Fwidgets.php&reauth=1 Server: Microsoft-IIS/7.0 Content-Length: 241 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Powered-By: ASP.NET | clean |
http://athousandarms.com/wp-login.php?redirect_to=http%3a%2f%2fathousandarms.com%2fwp-admin%2fwidgets.php&reauth=1 | 200 OK Content-Length: 2668 Content-Type: text/html | clean |
http://athousandarms.com/wp-login.php?action=lostpassword | 200 OK Content-Length: 2304 Content-Type: text/html | clean |
http://athousandarms.com/wp-login.php | 200 OK Content-Length: 2657 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: athousandarms.com
Result:
HTTP/1.1 200 OK
Date: Sat, 07 Mar 2015 12:20:12 GMT
Server: Microsoft-IIS/7.0
Content-Length: 24011
Content-Type: text/html; charset=UTF-8
X-Pingback: http://athousandarms.com/xmlrpc.php
X-Powered-By: ASP.NET
...24011 bytes of data.
GET / HTTP/1.1
Host: athousandarms.com
Result:
HTTP/1.1 200 OK
Date: Sat, 07 Mar 2015 12:20:12 GMT
Server: Microsoft-IIS/7.0
Content-Length: 24011
Content-Type: text/html; charset=UTF-8
X-Pingback: http://athousandarms.com/xmlrpc.php
X-Powered-By: ASP.NET
...24011 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: athousandarms.com
Referer: http://www.google.com/search?q=athousandarms.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: athousandarms.com
Referer: http://www.google.com/search?q=athousandarms.com
Result:
The result is similar to the first query. There are no suspicious redirects found.