Scanned pages/files
Request | Server response | Status |
http://www.xrumerschool.com/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Fri, 10 Oct 2014 07:51:35 GMT Pragma: no-cache Location: http://xrumerschool.com/ Server: nginx Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=2f54874b2f3ea42b19659671f51f6697; path=/ X-Pingback: http://xrumerschool.com/xmlrpc.php X-Powered-By: PHP/5.2.17 | clean |
http://xrumerschool.com/ | 200 OK Content-Length: 42856 Content-Type: text/html | clean |
http://xrumerschool.com/wp-includes/js/l10n.js?ver=20101110 | 200 OK Content-Length: 308 Content-Type: application/javascript | clean |
http://html5shim.googlecode.com/svn/trunk/html5.js?ver=3.2.1 | 200 OK Content-Length: 2429 Content-Type: text/javascript | clean |
http://xrumerschool.com/wp-includes/js/jquery/jquery.js?ver=1.6.1 | 200 OK Content-Length: 91363 Content-Type: application/javascript | clean |
http://xrumerschool.com/wp-content/plugins/mailchimp/js/scrollTo.js?ver=1.2.13 | 200 OK Content-Length: 2262 Content-Type: application/javascript | clean |
http://xrumerschool.com/wp-content/plugins/contact-form-7/jquery.form.js?ver=3.08 | 200 OK Content-Length: 37156 Content-Type: application/javascript | clean |
http://xrumerschool.com/wp-content/plugins/mailchimp/js/mailchimp.js?ver=1.2.13 | 200 OK Content-Length: 994 Content-Type: application/javascript | clean |
http://xrumerschool.com/wp-includes/js/jquery/ui.core.js?ver=1.8.12 | 200 OK Content-Length: 4326 Content-Type: application/javascript | clean |
http://xrumerschool.com/wp-content/plugins/mailchimp//js/datepicker.js?ver=3.2.1 | 200 OK Content-Length: 75876 Content-Type: application/javascript | clean |
http://xrumerschool.com/wp-content/plugins/import-users-to-mailchimp/mailchimp-ajax.js?ver=3.2.1 | 200 OK Content-Length: 1049 Content-Type: application/javascript | clean |
http://xrumerschool.com/wp-content/plugins/image-zoom/core/load-scripts.php?c=0&load=a7337631f958ac73e54cd855f7f55b08&ver=20141010 | 200 OK Content-Length: 10339 Content-Type: application/x-javascript | clean |
http://xrumerschool.com/wp-content/plugins/user-access-manager/js/jquery.tools.min.js?ver=3.2.1 | 200 OK Content-Length: 5724 Content-Type: application/javascript | clean |
http://xrumerschool.com/wp-content/plugins/user-access-manager/js/functions.js?ver=3.2.1 | 200 OK Content-Length: 1324 Content-Type: application/javascript | clean |
http://w.sharethis.com/button/buttons.js | 200 OK Content-Length: 145804 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) if(typeof(stlib)=="undefined"){var stlib={}}if(!stlib.functions){stlib.functions=[];stlib.functionCount=0}stlib.global={};stlib.global.hash=document.location.href.split("#");stlib.global.hash.shift();stlib.global.hash=stlib.global.hash.join("#");stlib.dynamicOn=true;stlib.debugOn=false;stlib.debug={count:0,messages:[],debug:function(b,a){if(a&&(typeof console)!="undefined"){console.log(b)}stlib.debug.messages.push(b)},show:function(a){for(message in stlib.debug.messages){if((typeof conso Antivirus reports:
| ||
http://xrumerschool.com/wp-content/plugins/contact-form-7/scripts.js?ver=3.1.2 | 200 OK Content-Length: 6208 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: xrumerschool.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 10 Oct 2014 07:51:36 GMT
Pragma: no-cache
Server: nginx
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=be3611601945e618012d9698440bf880; path=/
X-Pingback: http://xrumerschool.com/xmlrpc.php
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: xrumerschool.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 10 Oct 2014 07:51:36 GMT
Pragma: no-cache
Server: nginx
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=be3611601945e618012d9698440bf880; path=/
X-Pingback: http://xrumerschool.com/xmlrpc.php
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: xrumerschool.com
Referer: http://www.google.com/search?q=xrumerschool.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: xrumerschool.com
Referer: http://www.google.com/search?q=xrumerschool.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=xrumerschool.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://xrumerschool.com/
Result: xrumerschool.com is not infected or malware details are not published yet.
Result: xrumerschool.com is not infected or malware details are not published yet.