Scanned pages/files
Request | Server response | Status |
http://www.cuteziecreations.com/ | 200 OK Content-Length: 20379 Content-Type: text/html | clean |
http://www.cuteziecreations.com/randomBG.js | 200 OK Content-Length: 1063 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function bkgrnd() {} ; bg = new bkgrnd () ; n = 0
bg[n++] = "images/bgAqua.png" bg[n++] = "images/bgTaupe.png" bg[n++] = "images/bgDijon.png" bg[n++] = "images/bgViolet.png" bg[n++] = "images/bgTurquoise.png" bg[n++] = "images/bgGreen.png" bg[n++] = "images/bgBrown.png" bg[n++] = "images/bgRed.png" bg[n++] = "images/bgBlue.png" rnd = Math.floor(Math.random() * n) ; tmp = '<BODY BACKGROUND="' +bg[rnd]+ '"' +' BG Antivirus reports:
| ||
http://www.cuteziecreations.com/../ScriptLibrary/jquery-latest.pack.js | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.cuteziecreations.com/test404page.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
http://www.cuteziecreations.com/../dmx/dmx.core.js | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.cuteziecreations.com/../dmx/widgets/Lightbox/dmx.lightbox.js | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: cuteziecreations.com
Result:
GET / HTTP/1.1
Host: cuteziecreations.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: cuteziecreations.com
Referer: http://www.google.com/search?q=cuteziecreations.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: cuteziecreations.com
Referer: http://www.google.com/search?q=cuteziecreations.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=cuteziecreations.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://cuteziecreations.com/
Result: cuteziecreations.com is not infected or malware details are not published yet.
Result: cuteziecreations.com is not infected or malware details are not published yet.