Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=webymercadeo.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://www.webymercadeo.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 26 Dec 2014 04:57:29 GMT Location: http://www.webymercadeo.com/webymercadeo Server: nginx/1.6.2 Content-Length: 318 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.webymercadeo.com/webymercadeo | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 26 Dec 2014 04:57:30 GMT Location: http://www.webymercadeo.com/webymercadeo/ Server: nginx/1.6.2 Content-Length: 319 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.webymercadeo.com/webymercadeo/ | 200 OK Content-Length: 24913 Content-Type: text/html | clean |
http://www.webymercadeo.com/webymercadeo/wp-content/themes/webymercadeo3/jquery.js?ver=3.9.3 | 200 OK Content-Length: 92629 Content-Type: application/javascript | clean |
http://www.webymercadeo.com/webymercadeo/wp-content/plugins/leads/shared/assets/global/js/jquery.cookie.js?ver=3.9.3 | 200 OK Content-Length: 1708 Content-Type: application/javascript | clean |
http://www.webymercadeo.com/webymercadeo/wp-content/plugins/leads/shared/assets/global/js/jquery.total-storage.min.js?ver=3.9.3 | 200 OK Content-Length: 2334 Content-Type: application/javascript | clean |
http://www.webymercadeo.com/webymercadeo/wp-content/plugins/leads/shared/assets/frontend/js/page-tracking.js?ver=3.9.3 | 200 OK Content-Length: 24563 Content-Type: application/javascript | clean |
http://www.webymercadeo.com/webymercadeo/wp-content/plugins/leads/shared/assets/frontend/js/store.lead.ajax.js?ver=3.9.3 | 200 OK Content-Length: 24409 Content-Type: application/javascript | clean |
http://www.webymercadeo.com/webymercadeo/wp-content/plugins/landing-pages/js/page_view_track.js?ver=3.9.3 | 200 OK Content-Length: 708 Content-Type: application/javascript | clean |
http://www.webymercadeo.com/webymercadeo/wp-content/plugins/leads//shared/classes/js/wpl.required-fallback.js?ver=1.0.0 | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Fri, 26 Dec 2014 04:57:43 GMT Pragma: no-cache Location: http://www.webymercadeo.com/webymercadeo/wp-content/plugins/leads/shared/classes/js/wpl.required-fallback.js?ver=1.0.0 Server: nginx/1.6.2 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: PHPSESSID=824c2894066d3901286d068e70491e4e; path=/ X-Pingback: http://www.webymercadeo.com/webymercadeo/xmlrpc.php | clean |
http://www.webymercadeo.com/webymercadeo/wp-content/plugins/leads/shared/classes/js/wpl.required-fallback.js?ver=1.0.0 | 404 Not Found Content-Length: 13449 Content-Type: text/html | clean |
http://www.webymercadeo.com/webymercadeo/wp-content/plugins/leads//js/wpl.assign-class.js?ver=3.9.3 | 200 OK Content-Length: 2893 Content-Type: application/javascript | clean |
http://www.webymercadeo.com/webymercadeo/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=3.9.3 | 200 OK Content-Length: 83792 Content-Type: application/javascript | clean |
http://www.webymercadeo.com/webymercadeo/wp-content/plugins/cta/js/cta-load-variation.js?ver=1 | 200 OK Content-Length: 1991 Content-Type: application/javascript | clean |
http://www.webymercadeo.com/webymercadeo/wp-content/themes/webymercadeo3/jquery-migrate-1.1.1.js?ver=3.9.3 | 200 OK Content-Length: 16174 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function( jQuery, window, undefined ) { var warnedAbout = {}; jQuery.migrateWarnings = []; jQuery.migrateMute = true; if ( !jQuery.migrateMute && window.console && console.log ) { console.log("JQMIGRATE: Logging is active"); } if ( jQuery.migrateTrace === undefined ) { jQuery.migrateTrace = true; } jQuery.migrateReset = function() { warnedAbout = {}; jQuery.migrateWarnings.length = 0; }; function migrateWarn( msg) { jQuery.event.add( document, name + "." + jQuery.guid, function() { jQuery.event.trigger( name, null, elem, true ); }); jQuery._data( this, name, jQuery.guid++ ); } return false; }, teardown: function() { if ( this !== document ) { jQuery.event.remove( document, name + "." + jQuery._data( this, name ) ); } return false; } }; } ); })( jQuery, window ); Antivirus reports:
| ||
http://www.webymercadeo.com/webymercadeo/wp-content/themes/webymercadeo3/script.js?ver=3.9.3 | 200 OK Content-Length: 58547 Content-Type: application/javascript | clean |
http://www.webymercadeo.com/webymercadeo/wp-content/themes/webymercadeo3/script.responsive.js?ver=3.9.3 | 200 OK Content-Length: 21099 Content-Type: application/javascript | clean |
http://www.webymercadeo.com/webymercadeo/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.50.0-2014.02.05 | 200 OK Content-Length: 16305 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: webymercadeo.com
Result:
GET / HTTP/1.1
Host: webymercadeo.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: webymercadeo.com
Referer: http://www.google.com/search?q=webymercadeo.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: webymercadeo.com
Referer: http://www.google.com/search?q=webymercadeo.com
Result:
The result is similar to the first query. There are no suspicious redirects found.