Scanned pages/files
| Request | Server response | Status |
http://foxandfeatherphotography.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 04 Apr 2014 03:26:47 GMT Location: http://www.foxandfeatherphotography.com/ Server: nginx/1.4.2 Content-Length: 184 Content-Type: text/html | clean |
http://www.foxandfeatherphotography.com/ | 200 OK Content-Length: 10794 Content-Type: text/html | clean |
https://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js | 200 OK Content-Length: 93868 Content-Type: text/javascript | clean |
http://d2c8yne9ot06t4.cloudfront.net/static/jslib/jquery-ui.min.js | 200 OK Content-Length: 210832 Content-Type: application/x-javascript | clean |
http://d2c8yne9ot06t4.cloudfront.net/static/sttc/jquery.form.js | 200 OK Content-Length: 28038 Content-Type: application/x-javascript | clean |
http://d2c8yne9ot06t4.cloudfront.net/static/sttc/contact.js | 200 OK Content-Length: 2531 Content-Type: application/x-javascript | clean |
http://d2c8yne9ot06t4.cloudfront.net/static/js/Skins/Menu/minimalDropdown.js | 200 OK Content-Length: 10758 Content-Type: application/x-javascript | clean |
http://d2c8yne9ot06t4.cloudfront.net/static/js/Skins/Item/itemDesign.js | 200 OK Content-Length: 456 Content-Type: application/x-javascript | clean |
http://d2c8yne9ot06t4.cloudfront.net/static/js/Skins/Item/slideDesign.js | 200 OK Content-Length: 8846 Content-Type: application/x-javascript | clean |
http://d2c8yne9ot06t4.cloudfront.net/static/sttc/slideshow_186.js | 200 OK Content-Length: 37093 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var slideshow = {
rootUrl: "http://d2c8yne9ot06t4.cloudfront.net/static", currentSlideShowBox: "", down_x: 0, up_x: 0, paginatorCheck: false, ScrollToPosition: function (target_to_scroll) { var scrollable = $(window) var container = scrollable var kkk = $("."+target_to_scroll); $.scrollTo( kkk, 800 ); }, vAlign: function(thiss) { child.css("height", heightt); child.find(".inner-visible").css("width", widthh); child.find(".inner-visible").css("height", heightt); var VertCentering = (heightt - newChildHeight) / 2 child.find("img").css("position", "relative"); child.find("img").css("top", VertCentering+"px"); child.find("img").css("left", "0px"); } }) } } Antivirus reports:
| ||
http://d2c8yne9ot06t4.cloudfront.net/static/sttc/jquery.scrollTo-min.js | 200 OK Content-Length: 2262 Content-Type: application/x-javascript | clean |
http://d2c8yne9ot06t4.cloudfront.net/static/sttc/a.js | 200 OK Content-Length: 759 Content-Type: application/x-javascript | clean |
http://foxandfeatherphotography.com/home.html | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 04 Apr 2014 03:26:51 GMT Location: http://www.foxandfeatherphotography.com/home.html Server: nginx/1.4.2 Content-Length: 184 Content-Type: text/html | clean |
http://www.foxandfeatherphotography.com/home.html | 200 OK Content-Length: 10794 Content-Type: text/html | clean |
http://www.foxandfeatherphotography.com/the-artist.html | 200 OK Content-Length: 12620 Content-Type: text/html | clean |
http://www.foxandfeatherphotography.com/portfolio.html | 200 OK Content-Length: 9050 Content-Type: text/html | clean |
http://www.foxandfeatherphotography.com/investment.html | 200 OK Content-Length: 9620 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: foxandfeatherphotography.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Fri, 04 Apr 2014 03:26:47 GMT
Location: http://www.foxandfeatherphotography.com/
Server: nginx/1.4.2
Content-Length: 184
Content-Type: text/html
...184 bytes of data.
GET / HTTP/1.1
Host: foxandfeatherphotography.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Fri, 04 Apr 2014 03:26:47 GMT
Location: http://www.foxandfeatherphotography.com/
Server: nginx/1.4.2
Content-Length: 184
Content-Type: text/html
...184 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: foxandfeatherphotography.com
Referer: http://www.google.com/search?q=foxandfeatherphotography.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: foxandfeatherphotography.com
Referer: http://www.google.com/search?q=foxandfeatherphotography.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=foxandfeatherphotography.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://foxandfeatherphotography.com/
Result: foxandfeatherphotography.com is not infected or malware details are not published yet.
Result: foxandfeatherphotography.com is not infected or malware details are not published yet.