Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=lxj.endofinternet.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://lxj.endofinternet.net/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://lxj.endofinternet.net/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 17 Apr 2014 03:28:07 GMT Location: http://lxj.endofinternet.net/blog/ Server: nginx/1.0.15 Content-Length: 329 Content-Type: text/html; charset=iso-8859-1 | clean |
http://lxj.endofinternet.net/blog/ | 200 OK Content-Length: 57544 Content-Type: text/html | clean |
http://lxj.endofinternet.net/blog/wp-content/plugins/highlight/highlight.pack.js | 200 OK Content-Length: 40280 Content-Type: application/x-javascript | clean |
http://disqus.com/forums/lxj-blog/recent_comments_widget.js?num_items=5&hide_avatars=0&avatar_size=32&excerpt_length=200 | 200 OK Content-Length: 4008 Content-Type: text/javascript | malicious |
Malicious code found. Script contains blacklisted domain: lxj.endofinternet.net ...[1053 bytes skipped]... -item">\ <a href="http://disqus.com/LXj/"><img class="dsq-widget-avatar" src="//a.disquscdn.com/uploads/users/9/4171/avatar92.jpg?1281549414"></a>\ <a class="dsq-widget-user" href="http://disqus.com/LXj/">LXj</a>\ <span class="dsq-widget-comment"><p>ÐанÑÑÑ Ñвоим ÑÑаÑÑапом.</p></span>\ <p class="dsq-widget-meta"><a href="http://lxj.endofinternet.net/blog/2011/12/django-mediagenerator/">django-mediagenerator</a> · <a href="http://lxj.endofinternet.net/blog/2011/12/django-mediagenerator/#comment-383410768">2 years ago</a></p>\ </li>\ <li class="dsq-widget-item">\ <a href="http://disqus.com/twitter-42373578/"><img class="dsq-widget-avatar" src="//a.disquscdn.com/uploads/users/2001/1346/avatar92.jpg?1323514087"></a>\ & ...[2875 bytes skipped]... Decoded script: ...[748 bytes skipped]... <li class="dsq-widget-item"> <a href="http://disqus.com/LXj/"><img class="dsq-widget-avatar" src="//a.disquscdn.com/uploads/users/9/4171/avatar92.jpg?1281549414"></a> <a class="dsq-widget-user" href="http://disqus.com/LXj/">LXj</a> <span class="dsq-widget-comment"><p>ÐанÑÑÑ Ñвоим ÑÑаÑÑапом.</p></span> <p class="dsq-widget-meta"><a href="http://lxj.endofinternet.net/blog/2011/12/django-mediagenerator/">django-mediagenerator</a> · <a href="http://lxj.endofinternet.net/blog/2011/12/django-mediagenerator/#comment-383410768">2 years ago</a></p> </li> <li class="dsq-widget-item"> <a href="http://disqus.com/twitter-42373578/"><img class="dsq-widget-avatar" src="//a.disquscdn.com/uploads/users/2001/1346/avatar92.jpg?1323514087"></a> <a class="dsq-widget- ...[2716 bytes skipped]... | ||
http://feeds.feedburner.com/~s/LXj?i=http://lxj.endofinternet.net/blog/2011/08/kindle/ | 200 OK Content-Length: 695 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: lxj.endofinternet.net var fStartPost=1;if(window.feedburner_currPost!=null){window.feedburner_currPost++}else{window.feedburner_currPost=1}if(document.body.getAttribute("fStartPost")){fs=parseInt(document.body.getAttribute("fStartPost"));if(!isNaN(fs))fStartPost=fs}if(window.feedburner_startPostOverride!=null){fs=parseInt(window.feedburner_startPostOverride);if(!isNaN(fs))fStartPost=window.feedburner_startPostOverride}else{window.feedburner_startPostOverride=fStartPost}if(window.feedburner_currPost==fStartPost){feedSrc='http://feeds.feedburner.com/~s/LXj?i='+escape("http://lxj.endofinternet.net/blog/2011/08/kindle/")+'&showad=true';document.write('<script src="'+feedSrc+'" type="text/javascript"></script>')} | ||
http://lxj.endofinternet.net/blog | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 17 Apr 2014 03:28:09 GMT Location: http://lxj.endofinternet.net/blog/ Server: nginx/1.0.15 Content-Length: 329 Content-Type: text/html; charset=iso-8859-1 | clean |
http://lxj.endofinternet.net/test404page.js | 404 Not Found Content-Length: 299 Content-Type: text/html | clean |
http://lxj.endofinternet.net/blog/2012/11/blacklistthis/ | 200 OK Content-Length: 24799 Content-Type: text/html | clean |
http://feeds.feedburner.com/~s/LXj?i=http://lxj.endofinternet.net/blog/2012/11/blacklistthis/ | 200 OK Content-Length: 702 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: lxj.endofinternet.net var fStartPost=1;if(window.feedburner_currPost!=null){window.feedburner_currPost++}else{window.feedburner_currPost=1}if(document.body.getAttribute("fStartPost")){fs=parseInt(document.body.getAttribute("fStartPost"));if(!isNaN(fs))fStartPost=fs}if(window.feedburner_startPostOverride!=null){fs=parseInt(window.feedburner_startPostOverride);if(!isNaN(fs))fStartPost=window.feedburner_startPostOverride}else{window.feedburner_startPostOverride=fStartPost}if(window.feedburner_currPost==fStartPost){feedSrc='http://feeds.feedburner.com/~s/LXj?i='+escape("http://lxj.endofinternet.net/blog/2012/11/blacklistthis/")+'&showad=true';document.write('<script src="'+feedSrc+'" type="text/javascript"></script>')} | ||
http://lxj.endofinternet.net/blog/category/politics/ | 200 OK Content-Length: 50077 Content-Type: text/html | clean |
http://feeds.feedburner.com/~s/LXj?i=http://lxj.endofinternet.net/blog/2008/01/o-perevode-filmov/ | 200 OK Content-Length: 706 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: lxj.endofinternet.net var fStartPost=1;if(window.feedburner_currPost!=null){window.feedburner_currPost++}else{window.feedburner_currPost=1}if(document.body.getAttribute("fStartPost")){fs=parseInt(document.body.getAttribute("fStartPost"));if(!isNaN(fs))fStartPost=fs}if(window.feedburner_startPostOverride!=null){fs=parseInt(window.feedburner_startPostOverride);if(!isNaN(fs))fStartPost=window.feedburner_startPostOverride}else{window.feedburner_startPostOverride=fStartPost}if(window.feedburner_currPost==fStartPost){feedSrc='http://feeds.feedburner.com/~s/LXj?i='+escape("http://lxj.endofinternet.net/blog/2008/01/o-perevode-filmov/")+'&showad=true';document.write('<script src="'+feedSrc+'" type="text/javascript"></script>')} | ||
http://lxj.endofinternet.net/blog/2010/09/social-security/ | 200 OK Content-Length: 25836 Content-Type: text/html | clean |
http://feeds.feedburner.com/~s/LXj?i=http://lxj.endofinternet.net/blog/2010/09/social-security/ | 200 OK Content-Length: 704 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: lxj.endofinternet.net var fStartPost=1;if(window.feedburner_currPost!=null){window.feedburner_currPost++}else{window.feedburner_currPost=1}if(document.body.getAttribute("fStartPost")){fs=parseInt(document.body.getAttribute("fStartPost"));if(!isNaN(fs))fStartPost=fs}if(window.feedburner_startPostOverride!=null){fs=parseInt(window.feedburner_startPostOverride);if(!isNaN(fs))fStartPost=window.feedburner_startPostOverride}else{window.feedburner_startPostOverride=fStartPost}if(window.feedburner_currPost==fStartPost){feedSrc='http://feeds.feedburner.com/~s/LXj?i='+escape("http://lxj.endofinternet.net/blog/2010/09/social-security/")+'&showad=true';document.write('<script src="'+feedSrc+'" type="text/javascript"></script>')} | ||
http://lxj.endofinternet.net/blog/category/django/ | 200 OK Content-Length: 46811 Content-Type: text/html | clean |
http://feeds.feedburner.com/~s/LXj?i=http://lxj.endofinternet.net/blog/2011/10/advanced-django-forms-usage/ | 200 OK Content-Length: 716 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: lxj.endofinternet.net var fStartPost=1;if(window.feedburner_currPost!=null){window.feedburner_currPost++}else{window.feedburner_currPost=1}if(document.body.getAttribute("fStartPost")){fs=parseInt(document.body.getAttribute("fStartPost"));if(!isNaN(fs))fStartPost=fs}if(window.feedburner_startPostOverride!=null){fs=parseInt(window.feedburner_startPostOverride);if(!isNaN(fs))fStartPost=window.feedburner_startPostOverride}else{window.feedburner_startPostOverride=fStartPost}if(window.feedburner_currPost==fStartPost){feedSrc='http://feeds.feedburner.com/~s/LXj?i='+escape("http://lxj.endofinternet.net/blog/2011/10/advanced-django-forms-usage/")+'&showad=true';document.write('<script src="'+feedSrc+'" type="text/javascript"></script>')} | ||
http://lxj.endofinternet.net/blog/2012/11/django-and-bootstrap/ | 200 OK Content-Length: 25907 Content-Type: text/html | clean |
http://feeds.feedburner.com/~s/LXj?i=http://lxj.endofinternet.net/blog/2012/11/django-and-bootstrap/ | 200 OK Content-Length: 709 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: lxj.endofinternet.net var fStartPost=1;if(window.feedburner_currPost!=null){window.feedburner_currPost++}else{window.feedburner_currPost=1}if(document.body.getAttribute("fStartPost")){fs=parseInt(document.body.getAttribute("fStartPost"));if(!isNaN(fs))fStartPost=fs}if(window.feedburner_startPostOverride!=null){fs=parseInt(window.feedburner_startPostOverride);if(!isNaN(fs))fStartPost=window.feedburner_startPostOverride}else{window.feedburner_startPostOverride=fStartPost}if(window.feedburner_currPost==fStartPost){feedSrc='http://feeds.feedburner.com/~s/LXj?i='+escape("http://lxj.endofinternet.net/blog/2012/11/django-and-bootstrap/")+'&showad=true';document.write('<script src="'+feedSrc+'" type="text/javascript"></script>')} |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: lxj.endofinternet.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 17 Apr 2014 03:28:07 GMT
Location: http://lxj.endofinternet.net/blog/
Server: nginx/1.0.15
Content-Length: 329
Content-Type: text/html; charset=iso-8859-1
...329 bytes of data.
GET / HTTP/1.1
Host: lxj.endofinternet.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 17 Apr 2014 03:28:07 GMT
Location: http://lxj.endofinternet.net/blog/
Server: nginx/1.0.15
Content-Length: 329
Content-Type: text/html; charset=iso-8859-1
...329 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: lxj.endofinternet.net
Referer: http://www.google.com/search?q=lxj.endofinternet.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: lxj.endofinternet.net
Referer: http://www.google.com/search?q=lxj.endofinternet.net
Result:
The result is similar to the first query. There are no suspicious redirects found.