Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=duoflame.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://duoflame.com/ | 200 OK Content-Length: 8945 Content-Type: text/html | malicious |
Page code contains blacklisted domain: capemadefieldguide.org <!DOCTYPE html><!-- HTML5, for the win! -->
<html lang="ru-RU"> <head> <meta charset="UTF-8" /> <title>Duo Flame</title> <link rel="profile" href="http://gmpg.org/xfn/11" /> <link rel="pingback" href="http://duoflame.com/xmlrpc.php" /> <style type="text/css"> #fancybox-close{:-15px;:-15px} div#fancybox-outer{background-color:} < ...[4198 bytes skipped]... Malicious iFrame found. size: 443x66 src: http://capemadefieldguide.org/ram.html This URL is marked by Yandex as suspicious <iframe src="http://capemadefieldguide.org/ram.html" width="443" height="66" style="position:absolute;left:-77721px;"> | ||
http://duoflame.com/wp-includes/js/jquery/jquery.js?ver=1.8.3 | 200 OK Content-Length: 93658 Content-Type: application/javascript | clean |
http://duoflame.com/wp-content/plugins/fancybox-for-wordpress/fancybox/jquery.fancybox.js?ver=1.3.4 | 200 OK Content-Length: 15667 Content-Type: application/javascript | clean |
http://duoflame.com/wp-content/themes/minimatica/scripts/html5.js?ver=1.5.1 | 200 OK Content-Length: 1540 Content-Type: application/javascript | clean |
http://duoflame.com/wp-content/themes/minimatica/scripts/kwicks.js?ver=1.5.1 | 200 OK Content-Length: 5359 Content-Type: application/javascript | clean |
http://duoflame.com/wp-includes/js/comment-reply.min.js?ver=3.5.1 | 200 OK Content-Length: 786 Content-Type: application/javascript | clean |
http://duoflame.com/wp-content/themes/minimatica/scripts/minimatica.js?ver=1.0 | 200 OK Content-Length: 1070 Content-Type: application/javascript | clean |
http://duoflame.com/wp-content/plugins/wp-lightbox-2/wp-lightbox-2.min.js?ver=1.3.4.1 | 200 OK Content-Length: 10630 Content-Type: application/javascript | clean |
http://duoflame.com/about/ | 200 OK Content-Length: 10673 Content-Type: text/html | malicious |
Page code contains blacklisted domain: capemadefieldguide.org <!DOCTYPE html><!-- HTML5, for the win! -->
<html lang="ru-RU"> <head> <meta charset="UTF-8" /> <title> About | Duo Flame</title> <link rel="profile" href="http://gmpg.org/xfn/11" /> <link rel="pingback" href="http://duoflame.com/xmlrpc.php" /> <style type="text/css"> #fancybox-close{:-15px;:-15px} div#fancybox-outer{background- ...[4202 bytes skipped]... Malicious iFrame found. size: 443x66 src: http://capemadefieldguide.org/ram.html This URL is marked by Yandex as suspicious <iframe src="http://capemadefieldguide.org/ram.html" width="443" height="66" style="position:absolute;left:-77721px;"> | ||
http://duoflame.com/wp-content/uploads/2013/03/IMG_0281-e1397473761226.png | 200 OK Content-Length: 303521 Content-Type: image/png | clean |
http://duoflame.com/test404page.js | 404 Not Found Content-Length: 6363 Content-Type: text/html | malicious |
Page code contains blacklisted domain: capemadefieldguide.org <!DOCTYPE html><!-- HTML5, for the win! -->
<html lang="ru-RU"> <head> <meta charset="UTF-8" /> <title> СÑÑаниÑа не найдена</title> <link rel="profile" href="http://gmpg.org/xfn/11" /> <link rel="pingback" href="http://duoflame.com/xmlrpc.php" /> <style type="text/css"> #fancybox-close{:-15px;:-15px} div#fancybox-outer{b ...[4402 bytes skipped]... Malicious iFrame found. size: 443x66 src: http://capemadefieldguide.org/ram.html This URL is marked by Yandex as suspicious <iframe src="http://capemadefieldguide.org/ram.html" width="443" height="66" style="position:absolute;left:-77721px;"> | ||
http://duoflame.com/contact/ | 200 OK Content-Length: 8776 Content-Type: text/html | malicious |
Page code contains blacklisted domain: capemadefieldguide.org <!DOCTYPE html><!-- HTML5, for the win! -->
<html lang="ru-RU"> <head> <meta charset="UTF-8" /> <title> Contact | Duo Flame</title> <link rel="profile" href="http://gmpg.org/xfn/11" /> <link rel="pingback" href="http://duoflame.com/xmlrpc.php" /> <style type="text/css"> #fancybox-close{:-15px;:-15px} div#fancybox-outer{backgroun ...[4202 bytes skipped]... Malicious iFrame found. size: 443x66 src: http://capemadefieldguide.org/ram.html This URL is marked by Yandex as suspicious <iframe src="http://capemadefieldguide.org/ram.html" width="443" height="66" style="position:absolute;left:-77721px;"> | ||
http://duoflame.com/experience/ | 200 OK Content-Length: 10707 Content-Type: text/html | malicious |
Page code contains blacklisted domain: capemadefieldguide.org <!DOCTYPE html><!-- HTML5, for the win! -->
<html lang="ru-RU"> <head> <meta charset="UTF-8" /> <title> Experience | Duo Flame</title> <link rel="profile" href="http://gmpg.org/xfn/11" /> <link rel="pingback" href="http://duoflame.com/xmlrpc.php" /> <style type="text/css"> #fancybox-close{:-15px;:-15px} div#fancybox-outer{backgr ...[4202 bytes skipped]... Malicious iFrame found. size: 443x66 src: http://capemadefieldguide.org/ram.html This URL is marked by Yandex as suspicious <iframe src="http://capemadefieldguide.org/ram.html" width="443" height="66" style="position:absolute;left:-77721px;"> | ||
http://duoflame.com/photo/ | 200 OK Content-Length: 15173 Content-Type: text/html | malicious |
Page code contains blacklisted domain: capemadefieldguide.org <!DOCTYPE html><!-- HTML5, for the win! -->
<html lang="ru-RU"> <head> <meta charset="UTF-8" /> <title> Photo | Duo Flame</title> <link rel="profile" href="http://gmpg.org/xfn/11" /> <link rel="pingback" href="http://duoflame.com/xmlrpc.php" /> <style type="text/css"> #fancybox-close{:-15px;:-15px} div#fancybox-outer{background- ...[4202 bytes skipped]... Malicious iFrame found. size: 443x66 src: http://capemadefieldguide.org/ram.html This URL is marked by Yandex as suspicious <iframe src="http://capemadefieldguide.org/ram.html" width="443" height="66" style="position:absolute;left:-77721px;"> | ||
http://duoflame.com/wp-content/uploads/2014/04/8j7b3JpvWeQ.jpg | 200 OK Content-Length: 62155 Content-Type: image/jpeg | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: duoflame.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 06 Mar 2015 22:57:15 GMT
Server: nginx admin
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Cache: HIT from Backend
X-Pingback: http://duoflame.com/xmlrpc.php
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: duoflame.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 06 Mar 2015 22:57:15 GMT
Server: nginx admin
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Cache: HIT from Backend
X-Pingback: http://duoflame.com/xmlrpc.php
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: duoflame.com
Referer: http://www.google.com/search?q=duoflame.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: duoflame.com
Referer: http://www.google.com/search?q=duoflame.com
Result:
The result is similar to the first query. There are no suspicious redirects found.