Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mangotreemotel.com.au
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://mangotreemotel.com.au/ | 200 OK Content-Length: 19660 Content-Type: text/html | clean |
http://mangotreemotel.com.au/wp-includes/js/comment-reply.min.js?ver=3.8.4 | 200 OK Content-Length: 757 Content-Type: application/javascript | clean |
http://mangotreemotel.com.au/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 12697 Content-Type: application/javascript | clean |
http://mangotreemotel.com.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://mangotreemotel.com.au/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=3.8.4 | 200 OK Content-Length: 83792 Content-Type: application/javascript | clean |
http://mangotreemotel.com.au/wp-content/plugins/share-social/assets/js/tweetable.jquery.min.js?ver=2.0.0 | 200 OK Content-Length: 6073 Content-Type: application/javascript | clean |
http://www.jscache.com/wejs?wtype=rated&uniq=666&locationId=1383387&lang=en_AU | 200 OK Content-Length: 132 Content-Type: application/x-javascript | clean |
http://cunjo.com/!Share_test/js/cunjo.load.js?oneimage=http://mangotreemotel.com.au/wp-content/uploads/2013/11/agnesbeach1.jpg&pinimage=http://mangotreemotel.com.au/wp-content/uploads/2013/11/agnesbeach1.jpg&post_url=http://mangotreemotel.com.au/&title=Mango Tree Motel at Agnes Water â 1770 Queensland Australia&id=cunjo_widget_inline_buttons&layout=inline_buttons&settings_category=Social channel <span>...150 symbols skipped</span> | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Thu, 09 Oct 2014 17:03:09 GMT Pragma: no-cache Location: http://www.cunjo.com/!Share_test/js/cunjo.load.js?oneimage=http://mangotreemotel.com.au/wp-content/uploads/2013/11/agnesbeach1.jpg&pinimage=http://mangotreemotel.com.au/wp-content/uploads/2013/11/agnesbeach1.jpg&post_url=http://mangotreemotel.com.au/&title=Mango%20Tree%20Motel%20at%20Agnes%20Water%20%E2%80%93%201770%20Queensland%20Australia&id=cunjo_widget_inline_buttons&layout=inline_buttons&settings_category=Social%20channels&socials=Facebook,Email&socials_target=window&settings_category=Buttons%20layout%20design&icons=round&message=share&message_pos=cunjo_pos_left&textcolor= Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://www.cunjo.com/xmlrpc.php X-Powered-By: PHP/5.4.30 | clean |
http://www.cunjo.com/!share_test/js/cunjo.load.js?oneimage=http://mangotreemotel.com.au/wp-content/uploads/2013/11/agnesbeach1.jpg&pinimage=http://mangotreemotel.com.au/wp-content/uploads/2013/11/agnesbeach1.jpg&post_url=http://mangotreemotel.com.au/&title=mango%20tree%20motel%20at%20agnes%20water%20%e2%80%93%201770%20queensland%20australia&id=cunjo_widget_inline_buttons&layout=inline_buttons&sett <span>...184 symbols skipped</span> | 404 Not Found Content-Length: 68158 Content-Type: text/html | clean |
http://www.cunjo.com/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://www.cunjo.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://cunjo.com//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Thu, 09 Oct 2014 17:03:17 GMT Pragma: no-cache Location: http://www.cunjo.com/pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://www.cunjo.com/xmlrpc.php X-Powered-By: PHP/5.4.30 | clean |
http://www.cunjo.com/pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | 404 Not Found Content-Length: 68158 Content-Type: text/html | clean |
http://www.cunjo.com//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Thu, 09 Oct 2014 17:03:19 GMT Pragma: no-cache Location: http://www.cunjo.com/pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://www.cunjo.com/xmlrpc.php X-Powered-By: PHP/5.4.30 | clean |
http://www.cunjo.com/test404page.js | 404 Not Found Content-Length: 68158 Content-Type: text/html | clean |
http://w.sharethis.com/button/buttons.js?ver=4.0 | 200 OK Content-Length: 145804 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) if(typeof(stlib)=="undefined"){var stlib={}}if(!stlib.functions){stlib.functions=[];stlib.functionCount=0}stlib.global={};stlib.global.hash=document.location.href.split("#");stlib.global.hash.shift();stlib.global.hash=stlib.global.hash.join("#");stlib.dynamicOn=true;stlib.debugOn=false;stlib.debug={count:0,messages:[],debug:function(b,a){if(a&&(typeof console)!="undefined"){console.log(b)}stlib.debug.messages.push(b)},show:function(a){for(message in stlib.debug.messages){if((typeof conso Antivirus reports:
| ||
http://www.cunjo.com/wp-content/themes/storm/js/jquery.flexslider.js?ver=4.0 | 200 OK Content-Length: 41144 Content-Type: application/javascript | clean |
http://www.cunjo.com/wp-content/themes/storm/js/masonry.pkgd.min.js?ver=4.0 | 200 OK Content-Length: 24682 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mangotreemotel.com.au
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 09 Oct 2014 17:02:48 GMT
Server: LiteSpeed
Content-Type: text/html; charset=UTF-8
Link: <http://mangotreemotel.com.au/?p=67>; rel=shortlink
X-Pingback: http://mangotreemotel.com.au/xmlrpc.php
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: mangotreemotel.com.au
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 09 Oct 2014 17:02:48 GMT
Server: LiteSpeed
Content-Type: text/html; charset=UTF-8
Link: <http://mangotreemotel.com.au/?p=67>; rel=shortlink
X-Pingback: http://mangotreemotel.com.au/xmlrpc.php
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: mangotreemotel.com.au
Referer: http://www.google.com/search?q=mangotreemotel.com.au
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mangotreemotel.com.au
Referer: http://www.google.com/search?q=mangotreemotel.com.au
Result:
The result is similar to the first query. There are no suspicious redirects found.