Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=larsnijman.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://larsnijman.com/ | 200 OK Content-Length: 91850 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- Google Analytics --> var _gaq = _gaq || []; _gaq.push(['_setAccount', 'UA-4411210-1']); _gaq.push(['_trackPageview']); (function() { var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true; ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); Antivirus reports:
| ||
http://www.larsnijman.nl/wp-includes/js/jquery/jquery.js | 200 OK Content-Length: 95807 Content-Type: application/x-javascript | clean |
http://www.larsnijman.nl/wp-includes/js/jquery/jquery-migrate.min.js | 200 OK Content-Length: 7200 Content-Type: application/x-javascript | clean |
http://www.larsnijman.nl/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.plugins.min.js | 200 OK Content-Length: 17331 Content-Type: application/x-javascript | clean |
http://www.larsnijman.nl/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js | 200 OK Content-Length: 56235 Content-Type: application/x-javascript | clean |
http://www.larsnijman.nl/wp-content/plugins/wordpress-social-stream/js/jquery.social.stream.wall.1.3.js | 200 OK Content-Length: 16708 Content-Type: application/x-javascript | clean |
http://www.larsnijman.nl/wp-content/plugins/wordpress-social-stream/js/jquery.social.stream.1.5.min.js | 200 OK Content-Length: 27221 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($){SocialStreamObject=function(el,options){this.create(el,options)};$.extend(SocialStreamObject.prototype,{version:"1.5",create:function(el,options){this.defaults={feeds:{facebook:{id:"",intro:"Posted",out:"intro,thumb,title,text,user,share",text:"content",comments:3,image_width:6,icon:"facebook.png"},twitter:{id:"",intro:"Tweeted",search:"Tweeted",out:"intro,thumb,text,share",retweets:false,replies:false,images:"",url:"twitter.php",icon:"twitter.png"},google:{id:"",intro: jQuery(window).load(function(){jQuery.getScript("//platform.twitter.com/widgets.js",function(){});jQuery(".section-share a").click(function(){var u=jQuery(this).attr("href");window.open(u,"sharer","toolbar=0,status=0,width=626,height=436");return false})}); Antivirus reports:
| ||
http://www.larsnijman.nl/wp-content/themes/soundboard/js/backstretch.min.js | 200 OK Content-Length: 4047 Content-Type: application/x-javascript | clean |
http://www.larsnijman.nl/wp-includes/js/jquery/ui/core.min.js | 200 OK Content-Length: 3998 Content-Type: application/x-javascript | clean |
http://www.larsnijman.nl/wp-includes/js/jquery/ui/widget.min.js | 200 OK Content-Length: 6903 Content-Type: application/x-javascript | clean |
http://www.larsnijman.nl/wp-includes/js/jquery/ui/tabs.min.js | 200 OK Content-Length: 12076 Content-Type: application/x-javascript | clean |
http://www.larsnijman.nl/wp-content/themes/soundboard/js/superfish.min.js | 200 OK Content-Length: 2866 Content-Type: application/x-javascript | clean |
http://www.larsnijman.nl/wp-content/themes/soundboard/js/prettyPhoto.min.js | 200 OK Content-Length: 25215 Content-Type: application/x-javascript | clean |
http://www.larsnijman.nl/wp-includes/js/hoverIntent.min.js | 200 OK Content-Length: 1116 Content-Type: application/x-javascript | clean |
http://www.larsnijman.nl/wp-content/themes/soundboard/js/jquery.selectbox.js | 200 OK Content-Length: 14862 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: larsnijman.com
Result:
HTTP/1.1 200 OK
Cache-Control: private, must-revalidate
Connection: close
Date: Sat, 10 Jan 2015 20:43:20 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Sat, 10 Jan 2015 20:53:20 GMT
X-Pingback: http://www.larsnijman.nl/xmlrpc.php
X-Powered-By: PHP/5.3.5
GET / HTTP/1.1
Host: larsnijman.com
Result:
HTTP/1.1 200 OK
Cache-Control: private, must-revalidate
Connection: close
Date: Sat, 10 Jan 2015 20:43:20 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Sat, 10 Jan 2015 20:53:20 GMT
X-Pingback: http://www.larsnijman.nl/xmlrpc.php
X-Powered-By: PHP/5.3.5
Second query (visit from search engine):
GET / HTTP/1.1
Host: larsnijman.com
Referer: http://www.google.com/search?q=larsnijman.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: larsnijman.com
Referer: http://www.google.com/search?q=larsnijman.com
Result:
The result is similar to the first query. There are no suspicious redirects found.