Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=stephenkhayes.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: angarskcredit.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 28 Jan 2015 18:59:27 GMT
Pragma: no-cache
Server: nginx/1.2.4
Content-Type: text/html; charset=windows-1251
Expires: Thu, 19 Nov 1981 08:52:00 GMT
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
Set-Cookie: PHPSESSID=c3qhtm1hnbnk9j2d6gpk31vii3; path=/; HttpOnly
X-Powered-By: PHP/5.3.3
X-Powered-CMS: Bitrix Site Manager (3b93c10502948b1e3d7b78f193bf6637)
GET / HTTP/1.1
Host: angarskcredit.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 28 Jan 2015 18:59:27 GMT
Pragma: no-cache
Server: nginx/1.2.4
Content-Type: text/html; charset=windows-1251
Expires: Thu, 19 Nov 1981 08:52:00 GMT
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
Set-Cookie: PHPSESSID=c3qhtm1hnbnk9j2d6gpk31vii3; path=/; HttpOnly
X-Powered-By: PHP/5.3.3
X-Powered-CMS: Bitrix Site Manager (3b93c10502948b1e3d7b78f193bf6637)
Second query (visit from search engine):
GET / HTTP/1.1
Host: angarskcredit.ru
Referer: http://www.google.com/search?q=angarskcredit.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: angarskcredit.ru
Referer: http://www.google.com/search?q=angarskcredit.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://stephenkhayes.com/ | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=900 Connection: close Date: Thu, 25 Dec 2014 18:26:29 GMT Age: 1 Location: http://www.skhquest.com Server: Microsoft-IIS/7.5 Content-Length: 0 Content-Type: text/html X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | malicious |
http://www.skhquest.com/ | 200 OK Content-Length: 42819 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.stephenkhayes.com <!DOCTYPE html> <!--[if IE 7 ]> <html lang="en-US" class="isie ie7 oldie no-js"> <![endif]--> <!--[if IE 8 ]> <html lang="en-US" class="isie ie8 oldie no-js"> <![endif]--> <!--[if IE 9 ]> <html lang="en-US" class="isie ie9 no-js"> <![endif]--> <!--[if (gt IE 9)|!(IE)]><!--> <html lang="en-US" class="no-js"> <!--<![endif]--> <head> ...[4089 bytes skipped]... Hidden iFrame found. size: 0x0 src: http://google.com <iframe src="http://google.com" width=0 height=0 style="hidden" frameborder=0 marginheight=0 marginwidth=0 scrolling=no> Hidden iFrame found. size: 0x0 src: http://phoenix-credit.com/wp-content/cache.php <iframe src="http://phoenix-credit.com/wp-content/cache.php" width=0 height=0 style="hidden" frameborder=0 marginheight=0 marginwidth=0 scrolling=no> | ||
http://wms-na.amazon-adsystem.com/20070822/US/js/link-enhancer-common.js?tag=skhquest-20 | 200 OK Content-Length: 17619 Content-Type: application/x-javascript | clean |
http://www.skhquest.com/wp-includes/js/jquery/jquery.js | 200 OK Content-Length: 95807 Content-Type: text/javascript | clean |
http://www.skhquest.com/wp-includes/js/jquery/jquery-migrate.min.js | 200 OK Content-Length: 7200 Content-Type: text/javascript | clean |
http://cdnjs.cloudflare.com/ajax/libs/modernizr/2.6.2/modernizr.min.js | 200 OK Content-Length: 15414 Content-Type: application/javascript | clean |
http://www.skhquest.com/wp-content/plugins/CuteSlider/js/cute.slider.js | 200 OK Content-Length: 42563 Content-Type: text/javascript | clean |
http://www.skhquest.com/wp-content/plugins/CuteSlider/js/cute.transitions.all.js | 200 OK Content-Length: 16781 Content-Type: text/javascript | clean |
http://cdnjs.cloudflare.com/ajax/libs/respond.js/1.1.0/respond.min.js | 200 OK Content-Length: 4069 Content-Type: application/javascript | clean |
http://www.skhquest.com/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.plugins.min.js | 200 OK Content-Length: 17331 Content-Type: text/javascript | clean |
http://www.skhquest.com/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js | 200 OK Content-Length: 56235 Content-Type: text/javascript | clean |
http://maps.google.com/maps/api/js?sensor=false&key=&language=en | 200 OK Content-Length: 4157 Content-Type: text/javascript | clean |
http://www.skhquest.com/wp-content/plugins/google-map-shortcode/google-map-sc-v3.js | 200 OK Content-Length: 1470 Content-Type: text/javascript | clean |
http://www.skhquest.com/wp-includes/js/comment-reply.min.js | 200 OK Content-Length: 757 Content-Type: text/javascript | clean |
http://stephenkhayes.com//www.skhquest.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=900 Connection: close Date: Thu, 25 Dec 2014 18:26:40 GMT Age: 2 Location: http://www.skhquest.com/www.skhquest.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js/ Server: Microsoft-IIS/7.5 Content-Length: 0 Content-Type: text/html X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | malicious |
http://www.skhquest.com/www.skhquest.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js/ | 404 Not Found Content-Length: 15426 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x0 src: http://phoenix-credit.com/wp-content/cache.php <iframe src="http://phoenix-credit.com/wp-content/cache.php" width=0 height=0 style="hidden" frameborder=0 marginheight=0 marginwidth=0 scrolling=no> Hidden iFrame found. size: 0x0 src: http://google.com <iframe src="http://google.com" width=0 height=0 style="hidden" frameborder=0 marginheight=0 marginwidth=0 scrolling=no> | ||
http://www.skhquest.com/about-to-shin-do/ | 200 OK Content-Length: 35687 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x0 src: http://phoenix-credit.com/wp-content/cache.php <iframe src="http://phoenix-credit.com/wp-content/cache.php" width=0 height=0 style="hidden" frameborder=0 marginheight=0 marginwidth=0 scrolling=no> Hidden iFrame found. size: 0x0 src: http://google.com <iframe src="http://google.com" width=0 height=0 style="hidden" frameborder=0 marginheight=0 marginwidth=0 scrolling=no> |