New scan:

Malware Scanner report for natasamartic.com

Malicious/Suspicious/Total urls checked
3/0/21
3 pages have malicious code. See details below
Blacklists
OK
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Scanned pages/files

RequestServer responseStatus
http://www.natasamartic.com/
HTTP/1.1 302 Found
Cache-Control: max-age=900
Connection: close
Date: Sat, 19 Jul 2014 22:37:13 GMT
Age: 0
Location: http://www.linkedin.com/in/natasamartic
Server: Microsoft-IIS/7.5
Content-Length: 156
Content-Type: text/html; charset=utf-8
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
clean
http://www.linkedin.com/in/natasamartic
200 OK
Content-Length: 53407
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

LI.Controls.addControl('control-http-12248-17541401-4', 'ToggleClass', { classname: 'view-all-skills', on: '#profile-skills' });

Antivirus reports:

Emsisoft
XF.Sic.Gen (B)

http://static.licdn.com:80/scds/common/u/lib/fizzy/fz-1.3.5-min.js
200 OK
Content-Length: 26523
Content-Type: text/javascript
clean
http://s.c.lnkd.licdn.com/scds/concat/common/js?h=3nuvxgwg15rbghxm1gpzfbya2-35e6ug1j754avohmn1bzmucat-mv3v66b8q0h1hvgvd3yfjv5f-14k913qahq3mh0ac0lh0twk9v-dfoaudjrk6rbf82f45bz5crwi-62og8s54488owngg0s7escdit-c8ha6zrgpgcni7poa5ctye7il-djim7uyllidc9gta745y2wo5m-51dv6schthjydhvcv6rxvospp-d7z5zqt26qe7ht91f8494hqx5-e9rsfv7b5gx0bk0tln31dx3sq-2r5gveucqe4lsolc3n0oljsn1-8v2hz0euzy8m1tk5d6tfrn6j-b88qxy99s08xoe <span>...275 symbols skipped</span>
200 OK
Content-Length: 269668
Content-Type: text/javascript
clean
http://s.c.lnkd.licdn.com/scds/concat/common/js?h=4zslye83akez5s4mf91hrq425-95d8d303rtd0n9wj4dcjbnh2c&fc=2
200 OK
Content-Length: 2254
Content-Type: text/javascript
clean
http://s.c.lnkd.licdn.com/scds/concat/common/js?h=d43qahhuvg0j5mlh4c2m9sipk-ew7wxbzv14lsc4vzkh2xrbzqn-dp1os5pzpoyifn8ljtjpfxrz-e17zy6z51dugr6fy4su92o7de-eq875keqggun9hoxzfhbanjes&fc=2
200 OK
Content-Length: 17345
Content-Type: text/javascript
clean
http://s.c.lnkd.licdn.com/scds/concat/common/js?h=3nuvxgwg15rbghxm1gpzfbya2-35e6ug1j754avohmn1bzmucat-mv3v66b8q0h1hvgvd3yfjv5f-14k913qahq3mh0ac0lh0twk9v&fc=2
200 OK
Content-Length: 2744
Content-Type: text/javascript
clean
http://www.natasamartic.com/home?trk=hb_logo
500 Can't connect to www.natasamartic.com:80 (Нет маршрута до узла)
Content-Length: 208
Content-Type: text/plain
clean
http://www.natasamartic.com/test404page.js
HTTP/1.1 302 Found
Cache-Control: max-age=900
Connection: close
Date: Sat, 19 Jul 2014 22:37:17 GMT
Age: 0
Location: http://www.linkedin.com/in/natasamartic/test404page.js
Server: Microsoft-IIS/7.5
Content-Length: 171
Content-Type: text/html; charset=utf-8
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
clean
http://www.linkedin.com/in/natasamartic/test404page.js
HTTP/1.1 301 Moved Permanently
Cache-Control: no-cache, no-store
Connection: keep-alive
Date: Sat, 19 Jul 2014 22:37:18 GMT
Pragma: no-cache
Location: http://hr.linkedin.com/in/natasamartic
Server: Apache-Coyote/1.1
Vary: Accept-Encoding
Content-Language: en-US
Content-Length: 0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="CAO CUR ADM DEV PSA PSD OUR"
P3P: CP="CAO CUR ADM DEV PSA PSD OUR"
Set-Cookie: _lipt=deleteMe; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: leo_auth_token="GST:UJBW9NcSXjyCaNvFe4YDFs6P7ow-dxP5nUHDzy6D3sP4SEHp0_AoQ4:1405809438:d588f564c83cc337ca9e17d070e0c4f28af53fc6"; Version=1; Max-Age=1799; Expires=Sat, 19-Jul-2014 23:07:17 GMT; Path=/
Set-Cookie: sl="delete me"; Version=1; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: sl="delete me"; Version=1; Domain=.www.linkedin.com; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: s_leo_auth_token="delete me"; Version=1; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: JSESSIONID="ajax:7094199503008624231"; Version=1; Domain=.www.linkedin.com; Path=/
Set-Cookie: visit="v=1&G"; Version=1; Max-Age=63072000; Expires=Mon, 18-Jul-2016 22:37:18 GMT; Path=/
Set-Cookie: lang="v=2&lang=en-us"; Version=1; Domain=linkedin.com; Path=/
Set-Cookie: lang="v=2&lang=en-us"; Version=1; Domain=linkedin.com; Path=/
Set-Cookie: bcookie="v=2&c85745cf-a804-4feb-8e38-17ab024fc242"; domain=.linkedin.com; Path=/; Expires=Tue, 19-Jul-2016 10:14:50 GMT
Set-Cookie: lidc="b=LB38:g=106:u=1:i=1405809438:t=1405895838:s=795734222"; Expires=Sun, 20 Jul 2014 22:37:18 GMT; domain=.linkedin.com; Path=/
X-FS-UUID: 905093803c70821310922c28312b0000
X-Li-Fabric: PROD-ELA4
X-Li-Pop: PROD-ELA4
X-LI-UUID: kFCTgDxwghMQkiwoMSsAAA==
clean
http://hr.linkedin.com/in/natasamartic
200 OK
Content-Length: 52560
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

LI.Controls.addControl('control-http-12248-3346259-4', 'ToggleClass', { classname: 'view-all-skills', on: '#profile-skills' });

Antivirus reports:

Emsisoft
XF.Sic.Gen (B)

https://www.linkedin.com/uas/authping?url=http%3A%2F%2Fhr%2Elinkedin%2Ecom%2Fin%2Fnatasamartic
200 OK
Content-Length: 0
Content-Type: text/javascript
clean
http://www.natasamartic.com/redir/redirect?url=http%3A%2F%2Fwww%2Efotkashop%2Ecom%2F&urlhash=gq3o
HTTP/1.1 302 Found
Cache-Control: max-age=900
Connection: close
Date: Sat, 19 Jul 2014 22:37:20 GMT
Age: 0
Location: http://www.linkedin.com/in/natasamartic/redir/redirect?url=http%3A%2F%2Fwww%2Efotkashop%2Ecom%2F&urlhash=gq3o
Server: Microsoft-IIS/7.5
Content-Length: 230
Content-Type: text/html; charset=utf-8
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
clean
http://www.linkedin.com/in/natasamartic/redir/redirect?url=http%3a%2f%2fwww%2efotkashop%2ecom%2f&urlhash=gq3o
HTTP/1.1 301 Moved Permanently
Cache-Control: no-cache, no-store
Connection: keep-alive
Date: Sat, 19 Jul 2014 22:37:21 GMT
Pragma: no-cache
Location: http://hr.linkedin.com/in/natasamartic
Server: Apache-Coyote/1.1
Vary: Accept-Encoding
Content-Language: en-US
Content-Length: 0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="CAO CUR ADM DEV PSA PSD OUR"
P3P: CP="CAO CUR ADM DEV PSA PSD OUR"
Set-Cookie: _lipt=deleteMe; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: leo_auth_token="GST:ZjdhY1ryu70z9nVEJWjPTKa-O2zsAOpEisIPC5CYq_ksnr-g0HPsH_:1405809442:087008cb6b2456622120d45ef64e53f7085601e7"; Version=1; Max-Age=1799; Expires=Sat, 19-Jul-2014 23:07:21 GMT; Path=/
Set-Cookie: sl="delete me"; Version=1; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: sl="delete me"; Version=1; Domain=.www.linkedin.com; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: s_leo_auth_token="delete me"; Version=1; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: JSESSIONID="ajax:8137019928750345736"; Version=1; Domain=.www.linkedin.com; Path=/
Set-Cookie: visit="v=1&G"; Version=1; Max-Age=63072000; Expires=Mon, 18-Jul-2016 22:37:22 GMT; Path=/
Set-Cookie: lang="v=2&lang=en-us"; Version=1; Domain=linkedin.com; Path=/
Set-Cookie: lang="v=2&lang=en-us"; Version=1; Domain=linkedin.com; Path=/
Set-Cookie: bcookie="v=2&d7addec9-8547-4532-8d51-783ab07b2013"; domain=.linkedin.com; Path=/; Expires=Tue, 19-Jul-2016 10:14:54 GMT
Set-Cookie: lidc="b=LB38:g=106:u=1:i=1405809442:t=1405895842:s=746906092"; Expires=Sun, 20 Jul 2014 22:37:22 GMT; domain=.linkedin.com; Path=/
X-FS-UUID: df2adf423d70821310c61094372b0000
X-Li-Fabric: PROD-ELA4
X-Li-Pop: PROD-ELA4
X-LI-UUID: 3yrfQj1wghMQxhCUNysAAA==
clean
http://hr.linkedin.com/test404page.js
404 Not Found
Content-Length: 30484
Content-Type: text/html
clean
http://hr.linkedin.com/home
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Date: Sat, 19 Jul 2014 22:37:23 GMT
Location: https://hr.linkedin.com
Server: Apache-Coyote/1.1
Vary: Accept-Encoding
Content-Language: en-US
Content-Length: 0
P3P: CP="CAO CUR ADM DEV PSA PSD OUR"
Set-Cookie: _lipt=deleteMe; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: bcookie="v=2&c5117c12-06ef-4f0d-bdfb-7508ca605ac2"; Version=1; Domain=linkedin.com; Max-Age=63072000; Expires=Mon, 18-Jul-2016 22:37:23 GMT; Path=/
Set-Cookie: leo_auth_token="GST:ZsRqqqb_6PudlOXPCBRIDcb0kwuI8rr1ldRAjPJK-WVqliSnzuSAMc:1405809443:b86d83d3fe06143c053c944084aff7eafdea491f"; Version=1; Max-Age=1799; Expires=Sat, 19-Jul-2014 23:07:22 GMT; Path=/
Set-Cookie: sl="delete me"; Version=1; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: sl="delete me"; Version=1; Domain=.hr.linkedin.com; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: s_leo_auth_token="delete me"; Version=1; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: JSESSIONID="ajax:9201835947665738967"; Version=1; Domain=.hr.linkedin.com; Path=/
Set-Cookie: visit="v=1&G"; Version=1; Max-Age=63072000; Expires=Mon, 18-Jul-2016 22:37:23 GMT; Path=/
Set-Cookie: lang="v=2&lang=en-us"; Version=1; Domain=linkedin.com; Path=/
Set-Cookie: lang="v=2&lang=en-us"; Version=1; Domain=linkedin.com; Path=/
Set-Cookie: lidc="b=LB38:g=106:u=1:i=1405809443:t=1405895843:s=795734222"; Expires=Sun, 20 Jul 2014 22:37:23 GMT; domain=.linkedin.com; Path=/
X-FS-UUID: f920698c3d708213104e77a0e42a0000
X-Li-Fabric: PROD-ELA4
X-Li-Pop: PROD-ELA4
X-LI-UUID: +SBpjD1wghMQTneg5CoAAA==
clean
https://hr.linkedin.com/
200 OK
Content-Length: 50655
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

YEvent.on( window, 'load', function() {
(function () {
var protocol = 'https:';
var d = new Image(1, 1);
d.onerror = d.onload = function () { d.onerror = d.onload = null; };
d.src = [
protocol,
"//secure-us.imrworldwide.com/cgi-bin/m?ci=us-603751h&cg=0&cc=1&si=",
escape(window.location.href),
"&ts=compact&rnd=",
(new Date()).getTime()
].join('');
})();
});

Antivirus reports:

Emsisoft
Android.Trojan.FakeInst.GP (B)

https://static.licdn.com:443/scds/common/u/lib/fizzy/fz-1.3.5-min.js
200 OK
Content-Length: 26523
Content-Type: text/javascript
clean
https://static.licdn.com/scds/concat/common/js?h=3nuvxgwg15rbghxm1gpzfbya2-35e6ug1j754avohmn1bzmucat-mv3v66b8q0h1hvgvd3yfjv5f-14k913qahq3mh0ac0lh0twk9v&fc=1
200 OK
Content-Length: 2744
Content-Type: text/javascript
clean
https://static.licdn.com/scds/concat/common/js?h=dfoaudjrk6rbf82f45bz5crwi-e9rsfv7b5gx0bk0tln31dx3sq-b88qxy99s08xoes3weacd08uc-3eh5zbf8m3976frnzqqz8r2md-1l6r5aklcrehj1n7wy2v08xoy-8zc7dy7k0uqxxso1zmcx40mxo-4u94p4bxx04dc4qyt04hi6b7z-6qxi7j04m9bajw0tu0npnkexj-8s85e76fq22lk42rfavbckpvb-6b5tomv24hymqjdn9yh9vdxyg-95d8d303rtd0n9wj4dcjbnh2c&fc=1
200 OK
Content-Length: 187078
Content-Type: text/javascript
clean
https://static.licdn.com/scds/common/u/js/scds-hashes.js
200 OK
Content-Length: 18153
Content-Type: text/javascript
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: natasamartic.com

Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: natasamartic.com
Referer: http://www.google.com/search?q=natasamartic.com

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=natasamartic.com

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://natasamartic.com/

Result: natasamartic.com is not infected or malware details are not published yet.