Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sybott.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://sybott.com/ | HTTP/1.1 301 Moved Permanently Date: Wed, 25 Feb 2015 12:06:59 GMT Location: http://www.sybott.com/ Server: Microsoft-IIS/8.0 Content-Length: 145 Content-Type: text/html; charset=UTF-8 X-Pingback: http://www.sybott.com/xmlrpc.php X-Powered-By: PHP/5.4.24 X-Powered-By: ASP.NET | clean |
http://www.sybott.com/ | 200 OK Content-Length: 119176 Content-Type: text/html | malicious |
Page code contains blacklisted domain: symfomob.com <!DOCTYPE html> <html xmlns="http://www.w3.org/1999/xhtml" lang="en-US" xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml"> <head> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <meta http-equiv="Content-Type" content="text/html; charset=utf-8"/> <title> Sybott </title> <!--[if lte IE 8]> <script ...[3965 bytes skipped]... Hidden iFrame found. size: 0x0 src: http://cort.as/o2ak <iframe src="http://cort.as/o2ak" width="0" height="0" frameborder="0"> Malicious iFrame found. size: 0x0 src: http://erreco.com/traffic3.php This URL is marked by Google as suspicious <iframe src="http://erreco.com/traffic3.php" width="0" height="0" frameborder="0"> Hidden iFrame found. size: 0x0 src: http://is.gd/u9kpsg <iframe src="http://is.gd/u9kpsg" width="0" height="0" frameborder="0"> | ||
http://www.sybott.com/wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8 | 200 OK Content-Length: 53010 Content-Type: application/javascript | clean |
http://www.sybott.com/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://www.sybott.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.sybott.com/wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.3.1 | 200 OK Content-Length: 56423 Content-Type: application/javascript | clean |
http://www.sybott.com/wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.3.1 | 200 OK Content-Length: 21095 Content-Type: application/javascript | clean |
http://www.sybott.com/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.tools.min.js?rev=4.6.0&ver=4.0.1 | 200 OK Content-Length: 94880 Content-Type: application/javascript | clean |
http://www.sybott.com/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?rev=4.6.0&ver=4.0.1 | 200 OK Content-Length: 112533 Content-Type: application/javascript | clean |
http://symfomob.com/js.php?sid=1783&traffic=all&mts_land=1&beeline_land=37&megafon_land=26 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 25 Feb 2015 12:07:22 GMT Pragma: no-cache Location: http://cdn10.jump-wap.com/?sid=1783&land=26&type=js Server: nginx/1.6.2 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=819b0e2c653ec80c84ab506c25580e50; path=/ X-Powered-By: PHP/5.3.29 | clean |
http://cdn10.jump-wap.com/?sid=1783&land=26&type=js | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://cdn10.jump-wap.com/test404page.js | 404 Not Found Content-Length: 345 Content-Type: text/html | clean |
http://symfomob.com/js.php?sid=1783&traffic=all&mts_land=76&beeline_land=28&megafon_land=26 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 25 Feb 2015 12:07:23 GMT Pragma: no-cache Location: http://cdn10.jump-wap.com/?sid=1783&land=26&type=js Server: nginx/1.6.2 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=12058156c61886fd399043ef9c8ae727; path=/ X-Powered-By: PHP/5.3.29 | clean |
http://www.sybott.com/wp-includes/js/comment-reply.min.js?ver=4.0.1 | 200 OK Content-Length: 757 Content-Type: application/javascript | clean |
http://www.sybott.com/wp-content/themes/Avada/js/modernizr-min.js?ver=3.6.2 | 200 OK Content-Length: 13133 Content-Type: application/javascript | clean |
http://www.sybott.com/wp-content/themes/Avada/js/jquery.carouFredSel-6.2.1-min.js?ver=3.6.2 | 200 OK Content-Length: 55187 Content-Type: application/javascript | clean |
http://www.sybott.com/wp-content/themes/Avada/js/jquery.prettyPhoto-min.js?ver=3.6.2 | 200 OK Content-Length: 21225 Content-Type: application/javascript | clean |
http://www.sybott.com/wp-content/themes/Avada/js/jquery.flexslider-min.js?ver=3.6.2 | 200 OK Content-Length: 23078 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sybott.com
Result:
HTTP/1.1 301 Moved Permanently
Date: Wed, 25 Feb 2015 12:06:59 GMT
Location: http://www.sybott.com/
Server: Microsoft-IIS/8.0
Content-Length: 145
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.sybott.com/xmlrpc.php
X-Powered-By: PHP/5.4.24
X-Powered-By: ASP.NET
...145 bytes of data.
GET / HTTP/1.1
Host: sybott.com
Result:
HTTP/1.1 301 Moved Permanently
Date: Wed, 25 Feb 2015 12:06:59 GMT
Location: http://www.sybott.com/
Server: Microsoft-IIS/8.0
Content-Length: 145
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.sybott.com/xmlrpc.php
X-Powered-By: PHP/5.4.24
X-Powered-By: ASP.NET
...145 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: sybott.com
Referer: http://www.google.com/search?q=sybott.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sybott.com
Referer: http://www.google.com/search?q=sybott.com
Result:
The result is similar to the first query. There are no suspicious redirects found.