Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=keithcronin.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://keithcronin.net/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 04 Mar 2015 01:58:11 GMT Location: http://www.keithcronin.net/ Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 mod_fcgid/2.3.10-dev Vary: Cookie Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://www.keithcronin.net/xmlrpc.php X-Powered-By: PHP/5.5.20 | clean |
http://www.keithcronin.net/ | 200 OK Content-Length: 56528 Content-Type: text/html | malicious |
Page code contains blacklisted domain: symfomob.com <!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" lang="en-US"> <html> <head> <meta charset="UTF-8" /> <meta name="Theme Version" content="3.5.2" /> <meta name="Child Theme" content="false" /> <meta name="viewport" content="width=device-width, initial-scale=1.0, minimum-scale=1.0, maximum-scal ...[4160 bytes skipped]... Hidden iFrame found. size: 0x0 src: http://is.gd/u9kpsg <iframe src="http://is.gd/u9kpsg" width="0" height="0" frameborder="0"> Hidden iFrame found. size: 0x0 src: http://cort.as/o2ak <iframe src="http://cort.as/o2ak" width="0" height="0" frameborder="0"> Malicious iFrame found. size: 0x0 src: http://erreco.com/traffic3.php This URL is marked by Google as suspicious <iframe src="http://erreco.com/traffic3.php" width="0" height="0" frameborder="0"> | ||
http://www.keithcronin.net/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://www.keithcronin.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://symfomob.com/js.php?sid=1783&traffic=all&mts_land=1&beeline_land=37&megafon_land=26 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 04 Mar 2015 01:58:14 GMT Pragma: no-cache Location: http://cdn10.jump-wap.com/?sid=1783&land=26&type=js Server: nginx/1.6.2 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=7ef8f7aec7d68f5cf487f32fc1172c44; path=/ X-Powered-By: PHP/5.3.29 | clean |
http://cdn10.jump-wap.com/?sid=1783&land=26&type=js | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://cdn10.jump-wap.com/test404page.js | 404 Not Found Content-Length: 345 Content-Type: text/html | clean |
http://symfomob.com/js.php?sid=1783&traffic=all&mts_land=76&beeline_land=28&megafon_land=26 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 04 Mar 2015 01:58:15 GMT Pragma: no-cache Location: http://cdn10.jump-wap.com/?sid=1783&land=26&type=js Server: nginx/1.6.2 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=4d4ec05e3876dbdc3fe15cf10fa22b96; path=/ X-Powered-By: PHP/5.3.29 | clean |
http://www.keithcronin.net/wp-content/themes/jupiter/js/ilightbox.packed.js?ver=4.0.1 | 200 OK Content-Length: 51277 Content-Type: application/javascript | clean |
http://www.keithcronin.net/wp-content/themes/jupiter/js/nicescroll.js?ver=4.0.1 | 200 OK Content-Length: 57672 Content-Type: application/javascript | clean |
http://www.keithcronin.net/wp-content/themes/jupiter/js/plugins.js?ver=4.0.1 | 200 OK Content-Length: 219998 Content-Type: application/javascript | clean |
http://www.keithcronin.net/wp-content/themes/jupiter/js/theme-scripts.js?ver=4.0.1 | 200 OK Content-Length: 105685 Content-Type: application/javascript | clean |
http://www.keithcronin.net/wp-includes/js/comment-reply.min.js?ver=4.0.1 | 200 OK Content-Length: 757 Content-Type: application/javascript | clean |
http://www.keithcronin.net/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.50.0-2014.02.05 | 200 OK Content-Length: 16305 Content-Type: application/javascript | clean |
http://www.keithcronin.net/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.8.1 | 200 OK Content-Length: 9630 Content-Type: application/javascript | clean |
http://www.keithcronin.net/wp-includes/js/jquery/ui/jquery.ui.core.min.js?ver=1.10.4 | 200 OK Content-Length: 4289 Content-Type: application/javascript | clean |
http://www.keithcronin.net/wp-includes/js/jquery/ui/jquery.ui.widget.min.js?ver=1.10.4 | 200 OK Content-Length: 6521 Content-Type: application/javascript | clean |
http://www.keithcronin.net/wp-includes/js/jquery/ui/jquery.ui.position.min.js?ver=1.10.4 | 200 OK Content-Length: 6360 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: keithcronin.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 04 Mar 2015 01:58:11 GMT
Location: http://www.keithcronin.net/
Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 mod_fcgid/2.3.10-dev
Vary: Cookie
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.keithcronin.net/xmlrpc.php
X-Powered-By: PHP/5.5.20
...0 bytes of data.
GET / HTTP/1.1
Host: keithcronin.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 04 Mar 2015 01:58:11 GMT
Location: http://www.keithcronin.net/
Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 mod_fcgid/2.3.10-dev
Vary: Cookie
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.keithcronin.net/xmlrpc.php
X-Powered-By: PHP/5.5.20
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: keithcronin.net
Referer: http://www.google.com/search?q=keithcronin.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: keithcronin.net
Referer: http://www.google.com/search?q=keithcronin.net
Result:
The result is similar to the first query. There are no suspicious redirects found.