Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pourmoghtader.ir
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://pourmoghtader.ir/ | 200 OK Content-Length: 32153 Content-Type: text/html | clean |
http://pourmoghtader.ir/cache/template/js.php?id=471e4ebab507f6a71e2829e86676407a | 200 OK Content-Length: 74305 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var MooTools={version:'1.12'};function $defined(obj){return(obj!=undefined);};function $type(obj){if(!$defined(obj))return false;if(obj.htmlElement)return'element';var type=typeof obj;if(type=='object'&&obj.nodeName){switch(obj.nodeType){case 1:return'element';case 3:return(/\S/).test(obj.nodeValue)?'textnode':'whitespace';}} if(type=='object'||type=='function'){switch(obj.constructor){case Array:return'array';case RegExp:return'regexp';case Class:return'class';} if(typeof obj.le Antivirus reports:
| ||
http://pourmoghtader.ir/cache/template/js.php?id=8196caadb03bdfafdff41148e7c8e9d0 | 200 OK Content-Length: 1072 Content-Type: application/x-javascript | clean |
http://pourmoghtader.ir/components/com_rscomments/assets/js/rscomments.js | 200 OK Content-Length: 13538 Content-Type: application/javascript | clean |
http://pourmoghtader.ir/components/com_rscomments/assets/js/bbcode.js | 200 OK Content-Length: 4228 Content-Type: application/javascript | clean |
http://pourmoghtader.ir/cache/template/js.php?id=09d2e587ebbe7fe8ea0f10fddc49d66d | 200 OK Content-Length: 11529 Content-Type: application/x-javascript | clean |
http://pourmoghtader.ir/plugins/system/pc_includes/ajax_1.5.pack.js | 200 OK Content-Length: 10725 Content-Type: application/javascript | clean |
http://pourmoghtader.ir/index.php/component/jbolo/?view=js&format=raw | 200 OK Content-Length: 2849 Content-Type: text/javascript | clean |
http://pourmoghtader.ir/components/com_jbolo/sound/soundmanager2.js | 200 OK Content-Length: 66528 Content-Type: application/javascript | clean |
http://pourmoghtader.ir/components/com_jbolo/js/jbolo_chat.js | 200 OK Content-Length: 20051 Content-Type: application/javascript | clean |
http://pourmoghtader.ir/modules/mod_PlimunNivoSlider/js/jquery-1.6.1.min.js | 200 OK Content-Length: 91342 Content-Type: application/javascript | clean |
http://pourmoghtader.ir/modules/mod_PlimunNivoSlider/js/jquery.nivo.slider.js | 200 OK Content-Length: 24761 Content-Type: application/javascript | clean |
http://pourmoghtader.ir/support/mibew_1.6.4/client.php?locale=fa | 200 OK Content-Length: 4619 Content-Type: text/html | clean |
http://pourmoghtader.ir/test404page.js | 404 Not Found Content-Length: 1148 Content-Type: text/html | clean |
http://pourmoghtader.ir/index.php/social.html | 200 OK Content-Length: 39022 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: pourmoghtader.ir
Result:
HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0
Connection: close
Date: Fri, 09 Jan 2015 06:30:12 GMT
Pragma: no-cache
Server: LiteSpeed
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Fri, 09 Jan 2015 06:30:12 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8ea23d82d9de274d20320d9a0654c38d=509264ed7ad9d4d85a6452ff23c838cc; path=/
X-Powered-By: PHP/5.3.29
GET / HTTP/1.1
Host: pourmoghtader.ir
Result:
HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0
Connection: close
Date: Fri, 09 Jan 2015 06:30:12 GMT
Pragma: no-cache
Server: LiteSpeed
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Fri, 09 Jan 2015 06:30:12 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8ea23d82d9de274d20320d9a0654c38d=509264ed7ad9d4d85a6452ff23c838cc; path=/
X-Powered-By: PHP/5.3.29
Second query (visit from search engine):
GET / HTTP/1.1
Host: pourmoghtader.ir
Referer: http://www.google.com/search?q=pourmoghtader.ir
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: pourmoghtader.ir
Referer: http://www.google.com/search?q=pourmoghtader.ir
Result:
The result is similar to the first query. There are no suspicious redirects found.