Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=evictorynews.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://evictorynews.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.evictorynews.com/ | 200 OK Content-Length: 58180 Content-Type: text/html | clean |
http://www.evictorynews.com/wp-content/plugins/powerpress/player.min.js?ver=4.0 | 200 OK Content-Length: 13522 Content-Type: application/javascript | clean |
http://www.evictorynews.com/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://www.evictorynews.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.evictorynews.com/wp-content/plugins/powerpress/powerpress-mejs.js?ver=4.0 | 200 OK Content-Length: 951 Content-Type: application/javascript | clean |
http://ajax.googleapis.com/ajax/libs/swfobject/2.2/swfobject.js?ver=2.2 | 200 OK Content-Length: 10220 Content-Type: text/javascript | clean |
http://www.evictorynews.com/?optinrev-popup-vars=optinrevolution/optin2&t=44ac448361e16d88ad235dff50e95056 | 200 OK Content-Length: 7487 Content-Type: text/javascript | clean |
http://www.evictorynews.com/wp-content/plugins/optin-revolution-pro/js/optinrev-showonload.js?t=44ac448361e16d88ad235dff50e95056 | 200 OK Content-Length: 22886 Content-Type: application/javascript | clean |
http://www.evictorynews.com/wp-content/plugins/optin-revolution-pro/js/jquery.simplemodal.js?t=44ac448361e16d88ad235dff50e95056 | 200 OK Content-Length: 9327 Content-Type: application/javascript | clean |
http://www.evictorynews.com/wp-content/plugins/optin-revolution-pro/js/optinrev-utils.js?t=44ac448361e16d88ad235dff50e95056 | 200 OK Content-Length: 3268 Content-Type: application/javascript | clean |
http://www.evictorynews.com/wp-content/plugins/optin-revolution-pro/js/jquery.backstretch.min.js?t=44ac448361e16d88ad235dff50e95056 | 200 OK Content-Length: 4233 Content-Type: application/javascript | clean |
http://www.evictorynews.com//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sat, 11 Oct 2014 03:56:25 GMT Pragma: no-cache Location: http://www.evictorynews.com/translate.google.com/translate_a/element.js?cb=googleTranslateElementInit/ Server: Apache Vary: User-Agent,Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: PHPSESSID=7d95837f55232d5287420c6bf87e8787; path=/ Set-Cookie: optinrev_visited_ip=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/ Set-Cookie: optinrev_visited_once=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/ Set-Cookie: optinrev_dpageviews=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/ Set-Cookie: optinrev_inline_optin_session=optinrevolution%2Finline_optin1; path=/ X-Pingback: http://www.evictorynews.com/xmlrpc.php | clean |
http://www.evictorynews.com/translate.google.com/translate_a/element.js?cb=googletranslateelementinit/ | 404 Not Found Content-Length: 44771 Content-Type: text/html | clean |
http://forms.aweber.com/form/91/737777091.js | 200 OK Content-Length: 18969 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: www.evictorynews.com (function() { var r; try { r = document.querySelectorAll('.AW-Form-737777091'); } catch (exception) { // do nothing, the try catch is if the doctype is left as just HTML } if (r.length > 0) { for(var i=0; i < r.length; i++){ var s = document.createElement('div'); s.innerHTML = "<body> <style type=\"text/css\">#af-form-737777091 .af-body .af- ...[3752 bytes skipped]... | ||
http://disqus.com/forums/evictorynews/recent_comments_widget.js?num_items=5&hide_avatars=0&avatar_size=32&excerpt_length=200 | 200 OK Content-Length: 4056 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: www.evictorynews.com ...[1065 bytes skipped]... br/> <a href="http://disqus.com/jamespeni/"><img class="dsq-widget-avatar" src="//a.disquscdn.com/uploads/users/12375/7198/avatar92.jpg?1411991354"></a>\ <a class="dsq-widget-user" href="http://disqus.com/jamespeni/">James Peni</a>\ <span class="dsq-widget-comment"><p>Thank you very much Mr. Morand :)</p></span>\ <p class="dsq-widget-meta"><a href="http://www.evictorynews.com/og-videos-watch-and-learn-from-shane-morand/">OG and Network Marketing Training Videos</a> · <a href="http://www.evictorynews.com/og-videos-watch-and-learn-from-shane-morand/#comment-1610682797">1 week ago</a></p>\ </li>\ <li class="dsq-widget-item">\ <a href="http://disqus.com/teresiahnjoki/"><img class="dsq-widget-avatar" src="//a.disquscdn.com/uploads/users/12313/9642/avatar92.jpg?1 ...[2942 bytes skipped]... Decoded script: ...[760 bytes skipped]... ="dsq-widget-item"> <a href="http://disqus.com/jamespeni/"><img class="dsq-widget-avatar" src="//a.disquscdn.com/uploads/users/12375/7198/avatar92.jpg?1411991354"></a> <a class="dsq-widget-user" href="http://disqus.com/jamespeni/">James Peni</a> <span class="dsq-widget-comment"><p>Thank you very much Mr. Morand :)</p></span> <p class="dsq-widget-meta"><a href="http://www.evictorynews.com/og-videos-watch-and-learn-from-shane-morand/">OG and Network Marketing Training Videos</a> · <a href="http://www.evictorynews.com/og-videos-watch-and-learn-from-shane-morand/#comment-1610682797">1 week ago</a></p> </li> <li class="dsq-widget-item"> <a href="http://disqus.com/teresiahnjoki/"><img class="dsq-widget-avatar" src="//a.disquscdn.com/uploads/users/12313/9642/avatar92.jpg?1411553006">< ...[2783 bytes skipped]... | ||
http://www.evictorynews.com/wp-content/themes/TheSource/js/superfish.js | 200 OK Content-Length: 3714 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: evictorynews.com
Result:
GET / HTTP/1.1
Host: evictorynews.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: evictorynews.com
Referer: http://www.google.com/search?q=evictorynews.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: evictorynews.com
Referer: http://www.google.com/search?q=evictorynews.com
Result:
The result is similar to the first query. There are no suspicious redirects found.