Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=submityoursite.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://submityoursite.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://submityoursite.com/ | 200 OK Content-Length: 31626 Content-Type: text/html | clean |
http://www.submityoursite.com/js/jquery-1.4.2.min.js | 200 OK Content-Length: 72174 Content-Type: application/javascript | clean |
http://www.submityoursite.com/js/jquery.BubblePopup-1.1.min.js | 200 OK Content-Length: 6228 Content-Type: application/javascript | clean |
http://www.submityoursite.com/js/form_validation.js | 200 OK Content-Length: 6303 Content-Type: application/javascript | clean |
http://www.submityoursite.com/js/common.js | 200 OK Content-Length: 22764 Content-Type: application/javascript | clean |
http://www.submityoursite.com/calendar/lang/jquery.dynDateTime.js | 200 OK Content-Length: 54492 Content-Type: application/javascript | clean |
http://www.submityoursite.com/calendar/lang/calendar-en.js | 200 OK Content-Length: 3596 Content-Type: application/javascript | clean |
http://w.sharethis.com/button/buttons.js | 200 OK Content-Length: 146249 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) if(typeof(stlib)=="undefined"){var stlib={}}if(!stlib.functions){stlib.functions=[];stlib.functionCount=0}stlib.global={};stlib.global.hash=document.location.href.split("#");stlib.global.hash.shift();stlib.global.hash=stlib.global.hash.join("#");stlib.dynamicOn=true;stlib.debugOn=false;stlib.debug={count:0,messages:[],debug:function(b,a){if(a&&(typeof console)!="undefined"){console.log(b)}stlib.debug.messages.push(b)},show:function(a){for(message in stlib.debug.messages){if((typeof conso Antivirus reports:
| ||
http://www.google.com/cse/brand?form=cse-search-box&lang=en | 200 OK Content-Length: 2504 Content-Type: text/javascript | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 19471 Content-Type: text/javascript | clean |
http://ad.z5x.net/st?ad_type=ad&ad_size=728x90§ion=2913002&pub_url=${PUB_URL} | HTTP/1.1 302 Found Cache-Control: no-cache, no-store, must-revalidate, max-age=0 Connection: close Date: Sun, 12 Oct 2014 16:14:46 GMT Pragma: no-cache Age: 0 Location: http://ads.yahoo.com/st?ad_type=ad&ad_size=728x90§ion=2913002&pub_url=$%7BPUB_URL%7D&_msd=1&rmxbkn=0&_hnam=ad.z5x.net Server: ATS Vary: * Content-Length: 0 Expires: Sun, 12 Oct 2014 16:14:46 GMT Last-Modified: Sun, 12 Oct 2014 16:14:46 GMT P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA" X-RightMedia-Hostname: raptor0640.rm.ch1.yahoo.com | clean |
http://ads.yahoo.com/st?ad_type=ad&ad_size=728x90§ion=2913002&pub_url=$%7bpub_url%7d&_msd=1&rmxbkn=0&_hnam=ad.z5x.net | 200 OK Content-Length: 5225 | clean |
http://ads.yahoo.com/'+rm_ck_mp_cu+' | 404 Not Found Content-Length: 9 Content-Type: text/plain | clean |
http://ads.yahoo.com/test404page.js | 404 Not Found Content-Length: 9 Content-Type: text/plain | clean |
http://ad.z5x.net/'+rm_url+' | 404 Not Found Content-Length: 9 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: submityoursite.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 12 Oct 2014 16:14:36 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.3.18 mod_jk/1.2.37 mod_perl/2.0.6 Perl/v5.8.8
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: PHPSESSID=f58ac09399ef229a5869f266191ae12b; path=/
X-Powered-By: PHP/5.3.18
GET / HTTP/1.1
Host: submityoursite.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 12 Oct 2014 16:14:36 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.3.18 mod_jk/1.2.37 mod_perl/2.0.6 Perl/v5.8.8
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: PHPSESSID=f58ac09399ef229a5869f266191ae12b; path=/
X-Powered-By: PHP/5.3.18
Second query (visit from search engine):
GET / HTTP/1.1
Host: submityoursite.com
Referer: http://www.google.com/search?q=submityoursite.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: submityoursite.com
Referer: http://www.google.com/search?q=submityoursite.com
Result:
The result is similar to the first query. There are no suspicious redirects found.