New scan:

Malware Scanner report for its-recruit.com

Malicious/Suspicious/Total urls checked
0/0/15
Blacklists
OK
Malicious redirects
Found
The website redirects visitors from search engines to the 3rd-party URL. The chain of malicious redirects found:
->http://82.118.18.238/?80&source=its-recruit.com
5 websites infected.
->http://myfreedownloadsnow.com/download_direct8080.php?id=2803&name=flash player update

->http://www.geranium-download.com/pdownload.php?version=1.1.5.26&campid=3687&instid[appname]=flash%20player%20update%20downloader&instid[appsetupurl]=http%3a%2f%2ffastmediadownloads.com%2fdownload%2fprompt-downloader-1432223059.exe&instid[cmdline]=&instid[appimageurl]=http%3a%2f%2fpromptdownloader.com%2flogo.png&prefix=flash%20player%20update%20downloader&instid[interrupted]=http%3a%2f%2fpromptdownloader.com%2f%3fcancel&ti1=1432223059&instid[thankyoupage]=http%3a%2f%2fpromptdownloader.com%2f%3fsuccess

->http://www.april2-dmdd-download.com/tdownload.php?s1=8f4432a350df2f3b9d4055f0ffcbf84f3b0599ef&t1=1422534027&version=1.1.5.26&campid=3687&instid[appname]=flash%20player%20update%20downloader&instid[appsetupurl]=http%3a%2f%2ffastmediadownloads.com%2fdownload%2fprompt-downloader-1432223059.exe&instid[cmdline]=&instid[appimageurl]=http%3a%2f%2fpromptdownloader.com%2flogo.png&prefix=flash%20player%20update%20downloader&instid[interrupted]=http%3a%2f%2fpromptdownloader.com%2f%3fcancel&ti1=1432223059&instid[thankyoupage]=http%3a%2f%2fpromptdownloader.com%2f%3fsuccess


The website "its-recruit.com" is most probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues. Here is our redirects fixing guide.
Malicious/Hidden/Total iFrames
0/0/2
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Malicious/Suspicious Redirects

RequestServer responseStatus
URL: http://its-recruit.com/
(imitation of visitor from search engine)

GET / HTTP/1.1
Host: its-recruit.com
Referer: http://www.google.com/search?q=redirect+check1
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Thu, 29 Jan 2015 12:17:26 GMT
Location: http://82.118.18.238/?80&source=its-recruit.com
Server: Apache/2.4.10 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 mod_fcgid/2.3.10-dev
Content-Length: 0
Content-Type: text/html
X-Powered-By: PHP/5.4.34
malicious
URL: http://82.118.18.238/?80&source=its-recruit.com
(imitation of visitor from search engine)

GET /?80&source=its-recruit.com HTTP/1.1
Host: 82.118.18.238
Referer: http://www.google.com/search?q=redirect+check2
HTTP/1.1 302 Moved Temporarily
Cache-Control: max-age=0
Connection: close
Date: Thu, 29 Jan 2015 12:16:30 GMT
Pragma: no-cache
Location: http://myfreedownloadsnow.com/download_direct8080.php?id=2803&name=Flash Player Update
Server: nginx
Content-Length: 0
Content-Type: text/html; charset=utf-8
Expires: Thu, 21 Jul 1977 07:30:00 GMT
Last-Modified: Thu, 29 Jan 2015 12:16:30 GMT
X-Powered-By: PHP/5.3.3
suspicious
URL: http://myfreedownloadsnow.com/download_direct8080.php?id=2803&name=Flash Player Update
(imitation of visitor from search engine)

GET /download_direct8080.php?id=2803&name=Flash Player Update HTTP/1.1
Host: myfreedownloadsnow.com
Referer: http://www.google.com/search?q=redirect+check3
HTTP/1.1 302 Found
Connection: close
Date: Thu, 29 Jan 2015 09:11:52 GMT
Location: http://www.geranium-download.com/pdownload.php?version=1.1.5.26&campid=3687&instid[appname]=Flash%20Player%20Update%20Downloader&instid[appsetupurl]=http%3A%2F%2Ffastmediadownloads.com%2Fdownload%2FPrompt-Downloader-1432223059.exe&instid[cmdline]=&instid[appimageurl]=http%3A%2F%2Fpromptdownloader.com%2Flogo.png&prefix=Flash%20Player%20Update%20Downloader&instid[interrupted]=http%3A%2F%2Fpromptdownloader.com%2F%3Fcancel&ti1=1432223059&instid[thankyoupage]=http%3A%2F%2Fpromptdownloader.com%2F%3Fsuccess
Server: nginx/1.0.15
Content-Length: 0
Content-Type: text/html; charset=utf-8
Set-Cookie: affid=2803; expires=Fri, 29-Jan-2016 09:11:52 GMT; path=/
Set-Cookie: httpref=http%3A%2F%2Fwww.google.com%2Furl%3Fsa%3Dt%26rct%3Dj%26q%3Dits-recruit.com%26source%3Dweb%26cd%3D1%26ved%3D0CDEQFjAG%26url%3Dhttp%3A%252F%252Fits-recruit.com%252F%26ei%3DwC7yT5qCJbCCkQKtnwE%26usg%3DAFQjCNGEeYp3D7uuNLAJxMIVliLyQ9O_Pg; expires=Fri, 29-Jan-2016 09:11:52 GMT; path=/
Set-Cookie: trackaffid=2803; expires=Fri, 29-Jan-2016 09:11:52 GMT; path=/
Set-Cookie: trackhttpref=http%3A%2F%2Fwww.google.com%2Furl%3Fsa%3Dt%26rct%3Dj%26q%3Dits-recruit.com%26source%3Dweb%26cd%3D1%26ved%3D0CDEQFjAG%26url%3Dhttp%3A%252F%252Fits-recruit.com%252F%26ei%3DwC7yT5qCJbCCkQKtnwE%26usg%3DAFQjCNGEeYp3D7uuNLAJxMIVliLyQ9O_Pg; expires=Fri, 29-Jan-2016 09:11:52 GMT; path=/
X-Powered-By: PHP/5.3.3
suspicious
URL: http://www.geranium-download.com/pdownload.php?version=1.1.5.26&campid=3687&instid[appname]=Flash%20Player%20Update%20Downloader&instid[appsetupurl]=http%3A%2F%2Ffastmediadownloads.com%2Fdownload%2FPrompt-Downloader-1432223059.exe&instid[cmdline]=&instid[appimageurl]=http%3A%2F%2Fpromptdownloader.com%2Flogo.png&prefix=Flash%20Player%20Update%20Downloader&instid[interrupted]=http%3A%2F%2Fpromptdownloader.com%2F%3Fcancel&ti1=1432223059&instid[thankyoupage]=http%3A%2F%2Fpromptdownloader.com%2F%3Fsuccess
(imitation of visitor from search engine)

GET /pdownload.php?version=1.1.5.26&campid=3687&instid[appname]=Flash%20Player%20Update%20Downloader&instid[appsetupurl]=http%3A%2F%2Ffastmediadownloads.com%2Fdownload%2FPrompt-Downloader-1432223059.exe&instid[cmdline]=&instid[appimageurl]=http%3A%2F%2Fpromptdownloader.com%2Flogo.png&prefix=Flash%20Player%20Update%20Downloader&instid[interrupted]=http%3A%2F%2Fpromptdownloader.com%2F%3Fcancel&ti1=1432223059&instid[thankyoupage]=http%3A%2F%2Fpromptdownloader.com%2F%3Fsuccess HTTP/1.1
Host: www.geranium-download.com
Referer: http://www.google.com/search?q=redirect+check4
HTTP/1.1 302 Found
Connection: Close
Date: Thu, 29 Jan 2015 12:17:27 GMT
Location: http://www.april2-dmdd-download.com/tdownload.php?s1=8f4432a350df2f3b9d4055f0ffcbf84f3b0599ef&t1=1422534027&version=1.1.5.26&campid=3687&instid[appname]=Flash%20Player%20Update%20Downloader&instid[appsetupurl]=http%3A%2F%2Ffastmediadownloads.com%2Fdownload%2FPrompt-Downloader-1432223059.exe&instid[cmdline]=&instid[appimageurl]=http%3A%2F%2Fpromptdownloader.com%2Flogo.png&prefix=Flash%20Player%20Update%20Downloader&instid[interrupted]=http%3A%2F%2Fpromptdownloader.com%2F%3Fcancel&ti1=1432223059&instid[thankyoupage]=http%3A%2F%2Fpromptdownloader.com%2F%3Fsuccess
Server: Apache/2.2.15 (Red Hat)
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.3.3
suspicious

Scanned pages/files

RequestServer responseStatus
http://its-recruit.com/
200 OK
Content-Length: 38984
Content-Type: text/html
clean
http://www.its-recruit.com/wp/wp-includes/js/jquery/jquery.js?ver=1.10.2
200 OK
Content-Length: 95807
Content-Type: application/javascript
clean
http://www.its-recruit.com/wp/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
200 OK
Content-Length: 7200
Content-Type: application/javascript
clean
http://www.its-recruit.com/wp/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?rev=4.3.1&ver=3.8.3
200 OK
Content-Length: 93132
Content-Type: application/javascript
clean
http://www.its-recruit.com/wp/wp-content/plugins/showbiz/showbiz-plugin/fancybox/jquery.fancybox.pack.js?rev=1.6.1&ver=3.8.3
200 OK
Content-Length: 22639
Content-Type: application/javascript
clean
http://www.its-recruit.com/wp/wp-content/plugins/showbiz/showbiz-plugin/js/jquery.themepunch.showbizpro.min.js?rev=1.6.1&ver=3.8.3
200 OK
Content-Length: 20152
Content-Type: application/javascript
clean
http://www.its-recruit.com/wp/wp-content/themes/velocity/js/jquery.backstretch.min.js
200 OK
Content-Length: 4233
Content-Type: application/javascript
clean
http://www.its-recruit.com/wp/wp-includes/js/comment-reply.min.js?ver=3.8.3
200 OK
Content-Length: 757
Content-Type: application/javascript
clean
http://www.its-recruit.com/wp/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.50.0-2014.02.05
200 OK
Content-Length: 15248
Content-Type: application/javascript
clean
http://www.its-recruit.com/wp/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.7.2
200 OK
Content-Length: 11145
Content-Type: application/javascript
clean
http://www.its-recruit.com/wp/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.plugins.min.js?rev=4.3.1&ver=3.8.3
200 OK
Content-Length: 85185
Content-Type: application/javascript
clean
http://www.its-recruit.com/wp/wp-content/themes/velocity/js/jquery.modernizr.min.js
200 OK
Content-Length: 9135
Content-Type: application/javascript
clean
http://www.its-recruit.com/wp/wp-content/themes/velocity/js/jquery.isotope.min.js
200 OK
Content-Length: 43069
Content-Type: application/javascript
clean
http://www.its-recruit.com/wp/wp-content/themes/velocity/js/waypoints.min.js
200 OK
Content-Length: 16878
Content-Type: application/javascript
clean
http://www.its-recruit.com/wp/wp-content/themes/velocity/js/jquery.fitvid.js
200 OK
Content-Length: 2780
Content-Type: application/javascript
clean

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=its-recruit.com

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://its-recruit.com/

Result: its-recruit.com is not infected or malware details are not published yet.