Scanned pages/files
Request | Server response | Status |
http://www.webythebrain.com/ | HTTP/1.1 200 OK Connection: close Date: Sun, 05 Oct 2014 16:24:29 GMT Server: Apache Content-Type: text/html; charset=UTF-8 Set-Cookie: init=5PYu%2Fq4i8gQcHCLo5W3w5VfH6%2Fn1O4h35sQ%2FOD%2Fduh3WrnI9%2FVh%2F7YcxnFTW2fSgxFEkyv%2Fx3rqkHBgvgttjMBzVk8nQTVQ9LHvA993JHnvCKHtOoM%2BnVb6P4VZLwvHSVG4AEuL8qfW05P8PEUKWt2adwKdAKHJcwxaGNXciRYQlUQ65vIUffxaomj6qCnsDszg7hEhojH4ANUhEikBj%2Bcob3WC3w5E1XVeuQmjDP8Qttkl79Jqn28I9kHRePu5%2FLOSEmLKNL6pk6BPp9KKu48aEfcyHt9bYxVAIjJoM8K33sRhM3MzMYeXdym%2B3u8%2F%2FKQX%2BPDBsh8XlFQIiXmTFtki33wPXonJqdlDMmi8O%2BOHqVyd8T74Rosqa0EaOhYTu; expires=Sun, 05-Oct-2014 18:24:29 GMT; path=/ X-Powered-By: PHP/5.4.31 | clean |
http://www.webythebrain.com/main/home | 200 OK Content-Length: 15598 Content-Type: text/html | clean |
http://www.webythebrain.com/include/js/jquery-1.8.3.min.js | 200 OK Content-Length: 93636 Content-Type: application/javascript | clean |
http://www.webythebrain.com/include/js/common.js | 200 OK Content-Length: 1770 Content-Type: application/javascript | clean |
http://www.webythebrain.com/include/js/jquery.colorbox-min.js | 200 OK Content-Length: 27116 Content-Type: application/javascript | clean |
http://w.sharethis.com/button/buttons.js?domready=1 | 200 OK Content-Length: 145774 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) if(typeof(stlib)=="undefined"){var stlib={}}if(!stlib.functions){stlib.functions=[];stlib.functionCount=0}stlib.global={};stlib.global.hash=document.location.href.split("#");stlib.global.hash.shift();stlib.global.hash=stlib.global.hash.join("#");stlib.dynamicOn=true;stlib.debugOn=false;stlib.debug={count:0,messages:[],debug:function(b,a){if(a&&(typeof console)!="undefined"){console.log(b)}stlib.debug.messages.push(b)},show:function(a){for(message in stlib.debug.messages){if((typeof conso Antivirus reports:
| ||
http://www.webythebrain.com/include/js/jquery.cycle.all.min.js | 200 OK Content-Length: 32049 Content-Type: application/javascript | clean |
http://www.webythebrain.com/include/js/jquery.maximage.min.js | 200 OK Content-Length: 7749 Content-Type: application/javascript | clean |
http://www.webythebrain.com/include/js/jquery.jscrollpane.min.js | 200 OK Content-Length: 15136 Content-Type: application/javascript | clean |
http://www.webythebrain.com/include/js/jquery.mousewheel.js | 200 OK Content-Length: 2401 Content-Type: application/javascript | clean |
http://www.webythebrain.com/main/about_we | 200 OK Content-Length: 16500 Content-Type: text/html | clean |
http://www.webythebrain.com/main/course | 200 OK Content-Length: 28325 Content-Type: text/html | clean |
http://www.webythebrain.com/main/we_can | 200 OK Content-Length: 28488 Content-Type: text/html | clean |
http://www.webythebrain.com/main/we_tutor | 200 OK Content-Length: 20723 Content-Type: text/html | clean |
http://www.webythebrain.com/main/we_card | 200 OK Content-Length: 15751 Content-Type: text/html | clean |
http://www.webythebrain.com/main/we_promotion | 200 OK Content-Length: 15667 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: webythebrain.com
Result:
GET / HTTP/1.1
Host: webythebrain.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: webythebrain.com
Referer: http://www.google.com/search?q=webythebrain.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: webythebrain.com
Referer: http://www.google.com/search?q=webythebrain.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=webythebrain.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://webythebrain.com/
Result: webythebrain.com is not infected or malware details are not published yet.
Result: webythebrain.com is not infected or malware details are not published yet.