Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=iamonebrandagency.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://iamonebrandagency.com/ | 200 OK Content-Length: 23396 Content-Type: text/html | clean |
http://iamonebrandagency.com/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93128 Content-Type: application/javascript | clean |
http://iamonebrandagency.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://iamonebrandagency.com/wp-content/plugins/resume-submissions-job-postings/includes/jQuery/jquery.multi-file.js?ver=3.6 | 200 OK Content-Length: 20554 Content-Type: application/javascript | clean |
http://iamonebrandagency.com/wp-content/themes/FactoryWP/javascript/custom.js | 200 OK Content-Length: 49499 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) jQuery(document).ready(function($){ $(".trigger").click(function(){ $(".themes").toggle("fast"); $(this).toggleClass("active"); return false; }); }); var ddsmoothmenu={ arrowimages: {down:[], right:[]}, transition: {overtime:150, outtime:150}, shadow: {enable:true, offsetx:5, offsety:5}, showhidedelay: {showdelay: 150, hidedelay: 150}, detectwebkit: navigator.userAgent.toLowerCase().indexOf("applewebkit")!=-1, detectie6: document.all && !w Antivirus reports:
| ||
http://iamonebrandagency.com/wp-content/themes/FactoryWP/javascript/styleswitch.js | 200 OK Content-Length: 26465 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var manual_or_random="manual" var randomsetting="3 days" function getCookie(Name) { var re=new RegExp(Name+"=[^;]+", "i"); if (document.cookie.match(re)) return document.cookie.match(re)[0].split("=")[1] else chooseStyle('blue-theme', 60); return null } function setCookie(name, value, days) { var expireDate = new Date() var expstring=(typeof days!="undefined")? expireDate.setDate(expireDate.getDate()+parseInt(days)) : expireDate.setDate(expireDate.getDate()-5) d Antivirus reports:
| ||
http://iamonebrandagency.com/wp-content/themes/FactoryWP/javascript/cufon.js | 200 OK Content-Length: 19634 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var Cufon=(function(){var m=function(){return m.replace.apply(null,arguments)};var x=m.DOM={ready:(function(){var C=false,E={loaded:1,complete:1};var B=[],D=function(){if(C){return}C=true;for(var F;F=B.shift();F()){}};if(document.addEventListener){document.addEventListener("DOMContentLoaded",D,false);window.addEventListener("pageshow",D,false)}if(!window.opera&&document.readyState){(function(){E[document.readyState]?D():setTimeout(arguments.callee,10)})()}if(document.readyState&& Antivirus reports:
| ||
http://iamonebrandagency.com/wp-content/themes/FactoryWP/javascript/font.js | 200 OK Content-Length: 35663 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) Cufon.registerFont({"w":162,"face":{"font-family":"Cicle","font-weight":300,"font-stretch":"normal","units-per-em":"360","panose-1":"2 0 0 0 0 0 0 0 0 0","ascent":"288","descent":"-72","x-height":"70","bbox":"-9 -312 366 72","underline-thickness":"18","underline-position":"-18","unicode-range":"U+0020-U+FB02"},"glyphs":{" ":{"w":92},"\u00a0":{"w":92},"e":{"d":"26,-83v-2,58,59,89,107,58r6,13v-15,7,-30,16,-53,15v-50,-3,-76,-41,-76,-93v0,-50,25,-88,72,-93v50,4,72,44,71,100r-127,0xm139,-98v4,-67,-87 Antivirus reports:
| ||
http://iamonebrandagency.com/wp-content/themes/FactoryWP/javascript/dualslider.js | 200 OK Content-Length: 20073 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($) { $.fn.dualSlider = function(options) { var defaults = { auto: true, autoDelay: 10000, easingCarousel: 'swing', easingDetails: 'easeOutBack', durationCarousel: 500, durationDetails: 600 }; var options = $.extend(defaults, options); this.each(function() { var obj = $(this); var carousel; Antivirus reports:
| ||
http://iamonebrandagency.com/wp-content/themes/FactoryWP/javascript/blogger.js | 200 OK Content-Length: 3080 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function twitterCallback2(twitters) { var statusHTML = []; for (var i=0; i<twitters.length; i++){ var username = twitters[i].user.screen_name; var status = twitters[i].text.replace(/((https?|s?ftp|ssh)\:\/\/[^"\s\<\>]*[^.,;'">\:\s\<\>\)\]\!])/g, function(url) { return '<a href="'+url+'">'+url+'</a>'; }).replace(/\B@([_a-z0-9]+)/ig, function(reply) { return reply.charAt(0)+'<a href="http://twitter.com/'+repl Antivirus reports:
| ||
http://twitter.com/statuses/user_timeline/iamonebrandagcy.json?callback=twitterCallback2&count=1 | HTTP/1.1 301 Moved Permanently Date: Tue, 03 Mar 2015 12:19:17 UTC Location: https://twitter.com/statuses/user_timeline/iamonebrandagcy.json?callback=twitterCallback2&count=1 Server: tsa_b Content-Length: 0 Set-Cookie: guest_id=v1%3A142538515709389805; Domain=.twitter.com; Path=/; Expires=Thu, 02-Mar-2017 12:19:17 UTC X-Connection-Hash: ef86eafa710758354b54df628b76ea83 X-Response-Time: 2 | clean |
https://twitter.com/statuses/user_timeline/iamonebrandagcy.json?callback=twittercallback2&count=1 | 404 Not Found Content-Length: 91 Content-Type: application/javascript | clean |
http://iamonebrandagency.com/?page_id=1269 | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 03 Mar 2015 12:19:18 GMT Location: http://iamonebrandagency.com/who-we-are-2 Server: Apache/2.2.22 Vary: User-Agent,Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://iamonebrandagency.com/xmlrpc.php X-Powered-By: PHP/5.3.29 | clean |
http://iamonebrandagency.com/who-we-are-2 | 200 OK Content-Length: 15703 Content-Type: text/html | clean |
http://iamonebrandagency.com/?page_id=1047 | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 03 Mar 2015 12:19:21 GMT Location: http://iamonebrandagency.com/what-we-do Server: Apache/2.2.22 Vary: User-Agent,Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://iamonebrandagency.com/xmlrpc.php X-Powered-By: PHP/5.3.29 | clean |
http://iamonebrandagency.com/what-we-do | 200 OK Content-Length: 15133 Content-Type: text/html | clean |
http://iamonebrandagency.com/portfolio-2-columns-3-2-2 | 200 OK Content-Length: 15823 Content-Type: text/html | clean |
http://iamonebrandagency.com/live-stream | 200 OK Content-Length: 11196 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: iamonebrandagency.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 Mar 2015 12:19:07 GMT
Server: Apache/2.2.22
Vary: User-Agent,Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Pingback: http://iamonebrandagency.com/xmlrpc.php
X-Powered-By: PHP/5.3.29
GET / HTTP/1.1
Host: iamonebrandagency.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 Mar 2015 12:19:07 GMT
Server: Apache/2.2.22
Vary: User-Agent,Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Pingback: http://iamonebrandagency.com/xmlrpc.php
X-Powered-By: PHP/5.3.29
Second query (visit from search engine):
GET / HTTP/1.1
Host: iamonebrandagency.com
Referer: http://www.google.com/search?q=iamonebrandagency.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: iamonebrandagency.com
Referer: http://www.google.com/search?q=iamonebrandagency.com
Result:
The result is similar to the first query. There are no suspicious redirects found.