Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=brianmanzella.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://brianmanzella.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.brianmanzella.com/ | HTTP/1.1 301 Moved Permanently Cache-Control: private Connection: close Date: Fri, 13 Jun 2014 23:41:09 GMT Pragma: private Location: http://www.brianmanzella.com/content/ Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=ISO-8859-1 Set-Cookie: bb_lastvisit=1402702870; expires=Sat, 13-Jun-2015 23:41:10 GMT; path=/ Set-Cookie: bb_lastactivity=0; expires=Sat, 13-Jun-2015 23:41:10 GMT; path=/ Set-Cookie: vbseo_loggedin=deleted; expires=Thu, 13-Jun-2013 23:41:09 GMT; path=/ X-Powered-By: PleskLin | clean |
http://www.brianmanzella.com/content/ | 200 OK Content-Length: 34835 Content-Type: text/html | clean |
http://yui.yahooapis.com/combo?2.9.0/build/yuiloader-dom-event/yuiloader-dom-event.js&2.9.0/build/connection/connection-min.js | 200 OK Content-Length: 74876 Content-Type: application/javascript | clean |
http://www.brianmanzella.com/clientscript/vbulletin-core.js?v=416 | 200 OK Content-Length: 50862 Content-Type: text/javascript | clean |
http://www.brianmanzella.com/clientscript/vbulletin_overlay.js?v=416 | 200 OK Content-Length: 14429 Content-Type: text/javascript | clean |
http://www.brianmanzella.com/clientscript/vbulletin_cms.js?v=416 | 200 OK Content-Length: 3662 Content-Type: text/javascript | clean |
http://www.brianmanzella.com/clientscript/vbulletin_ajax_htmlloader.js?v=416 | 200 OK Content-Length: 1913 Content-Type: text/javascript | clean |
http://www.brianmanzella.com/vbseo/resources/scripts/vbseo_ui.js?v=a4 | 200 OK Content-Length: 7254 Content-Type: text/javascript | clean |
http://www.brianmanzella.com/clientscript/vbulletin_md5.js?v=416 | 200 OK Content-Length: 5464 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var hexcase=0;var b64pad="";var chrsz=8;function hex_md5(A){return binl2hex(core_md5(str2binl(A),A.length*chrsz))}function b64_md5(A){return binl2b64(core_md5(str2binl(A),A.length*chrsz))}function str_md5(A){return binl2str(core_md5(str2binl(A),A.length*chrsz))}function hex_hmac_md5(A,B){return binl2hex(core_hmac_md5(A,B))}function b64_hmac_md5(A,B){return binl2b64(core_hmac_md5(A,B))}function str_hmac_md5(A,B){return binl2str(core_hmac_md5(A,B))}function core_md5(K,F){K[F>>5]|=128<< Antivirus reports:
| ||
http://www.brianmanzella.com/clientscript/vbulletin_lightbox.js?v=416 | 200 OK Content-Length: 12216 Content-Type: text/javascript | clean |
http://www.gmodules.com/ig/ifr?url=http://hosting.gmodules.com/ig/gadgets/file/114281111391296844949/driving-directions.xml&up_fromLocation=&up_myLocations=Brian%20Manzella%20Golf%20Academy%20at%20English%20Turn%E2%80%AC%E2%80%8E%2C%20%E2%80%AA1%20Clubhouse%20Drive%E2%80%AC%2C%20%E2%80%AANew%20Orleans%2C%20LA%2070131&up_defaultDirectionsType=&up_autoExpand=&synd=open&w=400&h=55&title=Directions+by <span>...98 symbols skipped</span> | 200 OK Content-Length: 26016 Content-Type: text/javascript | clean |
http://www.brianmanzella.com/clientscript/vbulletin_facebook.js?v=416 | 200 OK Content-Length: 5569 Content-Type: text/javascript | clean |
https://connect.facebook.net/en_US/all.js | 200 OK Content-Length: 166745 Content-Type: application/x-javascript | clean |
http://www.brianmanzella.com/forum.php | 200 OK Content-Length: 28681 Content-Type: text/html | clean |
http://www.brianmanzella.com/clientscript/vbulletin_read_marker.js?v=416 | 200 OK Content-Length: 3427 Content-Type: text/javascript | clean |
http://www.brianmanzella.com/register.php | 200 OK Content-Length: 23194 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: brianmanzella.com
Result:
GET / HTTP/1.1
Host: brianmanzella.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: brianmanzella.com
Referer: http://www.google.com/search?q=brianmanzella.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: brianmanzella.com
Referer: http://www.google.com/search?q=brianmanzella.com
Result:
The result is similar to the first query. There are no suspicious redirects found.