Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=rebuildyourcommunity.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://rebuildyourcommunity.com/ | 200 OK Content-Length: 35136 Content-Type: text/html | suspicious |
Suspicious code. Script contains iFrame. var SiteID = 1;var ZoneID = 2;var browDateTime = (new Date()).getTime();document.write('<ifr'+'ame src="http://rycbanmanpro.rebuildyourcommunity.com/a.aspx?ZoneID=' + ZoneID + '&Task=Get&SiteID=1&PageID=6439&X=' + browDateTime + '" width=300 height=250 Marginwidth=0 Marginheight=0 Hspace=0 Vspace=0 Frameborder=0 Scrolling=No></ifr'+'ame>'); Decoded script: <iframe src="http://rycbanmanpro.rebuildyourcommunity.com/a.aspx?ZoneID=2&Task=Get&SiteID=1&PageID=6439&X=1418877745871" width=300 height=250 Marginwidth=0 Marginheight=0 Hspace=0 Vspace=0 Frameborder=0 Scrolling=No></iframe> | ||
http://rebuildyourcommunity.com/Resources/Shared/Scripts/jquery/jquery.min.js?1.6.1 | 200 OK Content-Length: 91358 Content-Type: application/x-javascript | clean |
http://rebuildyourcommunity.com/Resources/Shared/Scripts/jquery/jquery-ui.min.js?1.8.13 | 200 OK Content-Length: 200509 Content-Type: application/x-javascript | clean |
http://rebuildyourcommunity.com/WebResource.axd?d=cC_vVU6BAMYJV3tJ9LXHmeKzAx8GyeKaTwXvOhqQQh9Va5mQi_eSCSkUmYjymaTg8xFzHFMnMrq5W_Sx0&t=635460745270896484 | 200 OK Content-Length: 21823 Content-Type: application/x-javascript | clean |
http://rebuildyourcommunity.com/js/dnncore.js | 200 OK Content-Length: 9428 Content-Type: application/x-javascript | clean |
http://rebuildyourcommunity.com/js/dnn.jquery.js | 200 OK Content-Length: 7790 Content-Type: application/x-javascript | clean |
http://rebuildyourcommunity.com/Telerik.Web.UI.WebResource.axd?_TSM_HiddenField_=ScriptManager_TSM&compress=1&_TSM_CombinedScripts_=%3b%3bSystem.Web.Extensions%2c+Version%3d4.0.0.0%2c+Culture%3dneutral%2c+PublicKeyToken%3d31bf3856ad364e35%3aen-US%3a9214a1c3-8738-493c-985f-e961f0344b70%3aea597d4b%3ab25378d2 | 200 OK Content-Length: 142986 Content-Type: application/x-javascript | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.5/jquery.min.js?ver=1.5 | 200 OK Content-Length: 85925 Content-Type: text/javascript | clean |
http://rebuildyourcommunity.com/Portals/_default/Skins/RYC/JS/featuredcontentglider.js | 200 OK Content-Length: 9476 Content-Type: application/x-javascript | clean |
http://rebuildyourcommunity.com/Portals/_default/Skins/RYC/JS/Master.js | 200 OK Content-Length: 36433 Content-Type: application/x-javascript | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 19470 Content-Type: text/javascript | clean |
http://rebuildyourcommunity.com/Resources/Shared/scripts/initWidgets.js | 200 OK Content-Length: 1308 Content-Type: application/x-javascript | clean |
http://rebuildyourcommunity.com/Home.aspx | 200 OK Content-Length: 35163 Content-Type: text/html | suspicious |
Suspicious code. Script contains iFrame. var SiteID = 1;var ZoneID = 2;var browDateTime = (new Date()).getTime();document.write('<ifr'+'ame src="http://rycbanmanpro.rebuildyourcommunity.com/a.aspx?ZoneID=' + ZoneID + '&Task=Get&SiteID=1&PageID=6439&X=' + browDateTime + '" width=300 height=250 Marginwidth=0 Marginheight=0 Hspace=0 Vspace=0 Frameborder=0 Scrolling=No></ifr'+'ame>'); Decoded script: <iframe src="http://rycbanmanpro.rebuildyourcommunity.com/a.aspx?ZoneID=2&Task=Get&SiteID=1&PageID=6439&X=1418877757007" width=300 height=250 Marginwidth=0 Marginheight=0 Hspace=0 Vspace=0 Frameborder=0 Scrolling=No></iframe> | ||
http://rebuildyourcommunity.com/login.aspx?ReturnUrl=%2fIssueSubmit.aspx | 200 OK Content-Length: 29177 Content-Type: text/html | clean |
http://rebuildyourcommunity.com/Telerik.Web.UI.WebResource.axd?_TSM_HiddenField_=ScriptManager_TSM&compress=1&_TSM_CombinedScripts_=%3b%3bSystem.Web.Extensions%2c+Version%3d4.0.0.0%2c+Culture%3dneutral%2c+PublicKeyToken%3d31bf3856ad364e35%3aen-US%3a9214a1c3-8738-493c-985f-e961f0344b70%3aea597d4b%3ab25378d2%3bTelerik.Web.UI%2c+Version%3d2011.1.519.35%2c+Culture%3dneutral%2c+PublicKeyToken%3d121fae7 <span>...89 symbols skipped</span> | 200 OK Content-Length: 300701 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: rebuildyourcommunity.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Thu, 18 Dec 2014 04:42:28 GMT
Server: Microsoft-IIS/6.0
Content-Length: 35136
Content-Type: text/html; charset=utf-8
Set-Cookie: .ASPXANONYMOUS=_uXy3Q5R0AEkAAAAODk0MzY3MGUtYzQ1My00ZWYwLWJmNzQtZjczYTJjMDk4MzIx0; expires=Wed, 25-Feb-2015 15:22:28 GMT; path=/; HttpOnly
Set-Cookie: language=en-US; path=/; HttpOnly
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
...35136 bytes of data.
GET / HTTP/1.1
Host: rebuildyourcommunity.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Thu, 18 Dec 2014 04:42:28 GMT
Server: Microsoft-IIS/6.0
Content-Length: 35136
Content-Type: text/html; charset=utf-8
Set-Cookie: .ASPXANONYMOUS=_uXy3Q5R0AEkAAAAODk0MzY3MGUtYzQ1My00ZWYwLWJmNzQtZjczYTJjMDk4MzIx0; expires=Wed, 25-Feb-2015 15:22:28 GMT; path=/; HttpOnly
Set-Cookie: language=en-US; path=/; HttpOnly
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
...35136 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: rebuildyourcommunity.com
Referer: http://www.google.com/search?q=rebuildyourcommunity.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: rebuildyourcommunity.com
Referer: http://www.google.com/search?q=rebuildyourcommunity.com
Result:
The result is similar to the first query. There are no suspicious redirects found.