Scanned pages/files
Request | Server response | Status |
http://pspshare.org/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 28 May 2014 14:19:37 GMT Location: http://www.pspshare.org/ Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://www.pspshare.org/xmlrpc.php X-Powered-By: PHP/5.4.26 | clean |
http://www.pspshare.org/ | 200 OK Content-Length: 29948 Content-Type: text/html | clean |
http://www.pspshare.org/wp-includes/js/jquery/jquery.js | 200 OK Content-Length: 96402 Content-Type: application/javascript | clean |
http://www.pspshare.org/wp-includes/js/jquery/jquery-migrate.min.js | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.pspshare.org/wp-content/themes/wp-clear_basicv2.0/js/jquery.cycle.js | 200 OK Content-Length: 27880 Content-Type: application/javascript | clean |
http://www.pspshare.org/wp-content/themes/wp-clear_basicv2.0/js/slideshow.js | 200 OK Content-Length: 13652 Content-Type: application/javascript | clean |
http://www.pspshare.org/wp-content/themes/wp-clear_basicv2.0/js/external.js | 200 OK Content-Length: 344 Content-Type: application/javascript | clean |
http://www.pspshare.org/wp-content/themes/wp-clear_basicv2.0/js/suckerfish.js | 200 OK Content-Length: 386 Content-Type: application/javascript | clean |
http://www.pspshare.org/wp-content/themes/wp-clear_basicv2.0/js/suckerfish-cat.js | 200 OK Content-Length: 386 Content-Type: application/javascript | clean |
http://pspshare.org//ads.cpxcenter.com/cpxcenter/showAd.php?nid=4&zone=21170&type=banner&sid=8770&pid=9787&subid=/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Wed, 28 May 2014 14:19:43 GMT Pragma: no-cache Location: http://www.pspshare.org/ads.cpxcenter.com/cpxcenter/showAd.php?nid=4&zone=21170&type=banner&sid=8770&pid=9787&subid=/ Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://www.pspshare.org/xmlrpc.php X-Powered-By: PHP/5.4.26 | clean |
http://www.pspshare.org/ads.cpxcenter.com/cpxcenter/showad.php?nid=4&zone=21170&type=banner&sid=8770&pid=9787&subid=/ | 404 Not Found Content-Length: 27601 Content-Type: text/html | clean |
http://www.pspshare.org//ads.cpxcenter.com/cpxcenter/showAd.php?nid=4&zone=21170&type=banner&sid=8770&pid=9787&subid=/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Wed, 28 May 2014 14:19:46 GMT Pragma: no-cache Location: http://www.pspshare.org/ads.cpxcenter.com/cpxcenter/showAd.php?nid=4&zone=21170&type=banner&sid=8770&pid=9787&subid=/ Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://www.pspshare.org/xmlrpc.php X-Powered-By: PHP/5.4.26 | clean |
http://www.pspshare.org/test404page.js | 404 Not Found Content-Length: 27394 Content-Type: text/html | clean |
http://ads.cpxcenter.com/cpxcenter/showAd.php?nid=4&zone=9215&type=banner&sid=8770&pid=9787&subid= | 200 OK Content-Length: 685 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write("<img src=\"http://tr4.myroitracking.com/newServing/tracking_id.php?d=ads.cpxcenter.com&r=http%3A%2F%2Fads.cpxcenter.com%2FnewServing%2Ftracking_id.php%3Fb%3D1%26>ruid=1\" width=\"1\" height=\"1\" />"); private_label_prefix = "cpxcenter"; cpxcenter_service = "ads.cpxcenter.com"; cpxcenter_nid = 4; cpxcenter_pid = 9787; cpxcenter_sid = 8770; cpxcenter_zone = 9215; cpxcenter_type = "banner"; if ( typeof(CpxCenter) == "undefined" ) { document.write('<script type="text/javascript" src="http://static.hatid.com/newServing/js/cpxcenter.js"></script>'); } else { CpxCenter.bootstrap(false); } Antivirus reports:
| ||
http://resources.infolinks.com/js/infolinks_main.js | 200 OK Content-Length: 2227 Content-Type: application/x-javascript | clean |
http://platform.twitter.com/widgets.js | 200 OK Content-Length: 98265 Content-Type: application/javascript | clean |
http://apis.google.com/js/plusone.js | 200 OK Content-Length: 11663 Content-Type: application/javascript | clean |
http://s0.wp.com/wp-content/js/devicepx-jetpack.js | 200 OK Content-Length: 9301 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: pspshare.org
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 28 May 2014 14:19:37 GMT
Location: http://www.pspshare.org/
Server: Apache
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.pspshare.org/xmlrpc.php
X-Powered-By: PHP/5.4.26
...0 bytes of data.
GET / HTTP/1.1
Host: pspshare.org
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 28 May 2014 14:19:37 GMT
Location: http://www.pspshare.org/
Server: Apache
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.pspshare.org/xmlrpc.php
X-Powered-By: PHP/5.4.26
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: pspshare.org
Referer: http://www.google.com/search?q=pspshare.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: pspshare.org
Referer: http://www.google.com/search?q=pspshare.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pspshare.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://pspshare.org/
Result: pspshare.org is not infected or malware details are not published yet.
Result: pspshare.org is not infected or malware details are not published yet.