Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=royalmauianresort.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.royalmauianresort.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 08 Jan 2015 13:08:24 GMT Location: http://marketwaveproductions.com Server: Apache/1.3.37 (Unix) mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 PHP/4.4.4 FrontPage/5.0.2.2635.SR1.2 mod_ssl/2.8.28 OpenSSL/0.9.7a Content-Type: text/html; charset=iso-8859-1 | clean |
http://marketwaveproductions.com/ | 200 OK Content-Length: 36290 Content-Type: text/html | clean |
http://marketwaveproductions.com/wp-content/plugins/photoMosaic/js/jquery.photoMosaic.js?ver=4.1 | 200 OK Content-Length: 182872 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function (window) { if (!window.PhotoMosaic) { window.PhotoMosaic = {}; } }(window)); (function(e,t){var n,r,i=typeof t,o=e.document,a=e.location,s=e.jQuery,u=e.$,l={},c=[],p="1.9.1",f=c.concat,d=c.push,h=c.slice,g=c.indexOf,m=l.toString,y=l.hasOwnProperty,v=p.trim,b=function(e,t){return new b.fn.init(e,t,r)},x=/[+-]?(?:\d*\.|)\d+(?:[eE][+-]?\d+|)/.source,w=/\S+/g,T=/^[\s\uFEFF\xA0]+|[\s\uFEFF\xA0]+$/g,N=/^(?:(<[\w\W]+>)[^>]*|#([\w-]*))$/,C=/^<(\w $.fn[pluginName] = function (options) { options = options || {}; return this.each(function () { if (!$.data(this, pluginName)) { $.data(this, pluginName, new Plugin(this, options)); window.PhotoMosaic.mosaics.push({ 'el' : this, 'opts' : options }); } }); }; }(window.JQPM||jQuery)); Antivirus reports:
| ||
http://marketwaveproductions.com/wp-content/plugins/wp-lightbox/js/jquery-1.8.3.min.js?ver=1.8.3 | 200 OK Content-Length: 93637 Content-Type: application/javascript | clean |
http://marketwaveproductions.com/wp-content/plugins/iphorm-form-builder/js/iphorm.js?ver=1.4.6 | 200 OK Content-Length: 527 Content-Type: application/javascript | clean |
http://marketwaveproductions.com/wp-includes/js/swfupload/swfupload.js?ver=2201-20110113 | 200 OK Content-Length: 37691 Content-Type: application/javascript | clean |
http://marketwaveproductions.com/wp-includes/js/swfobject.js?ver=2.2-20120417 | 200 OK Content-Length: 10231 Content-Type: application/javascript | clean |
http://marketwaveproductions.com/wp-includes/js/swfupload/plugins/swfupload.swfobject.js?ver=2201a | 200 OK Content-Length: 3926 Content-Type: application/javascript | clean |
http://marketwaveproductions.com/wp-includes/js/swfupload/plugins/swfupload.queue.js?ver=2201 | 200 OK Content-Length: 3383 Content-Type: application/javascript | clean |
http://marketwaveproductions.com/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.plugins.min.js?ver=4.1 | 200 OK Content-Length: 17331 Content-Type: application/javascript | clean |
http://marketwaveproductions.com/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=4.1 | 200 OK Content-Length: 56235 Content-Type: application/javascript | clean |
http://marketwaveproductions.com/wp-content/themes/mvp/js/html5.js?ver=4.1 | 200 OK Content-Length: 2001 Content-Type: application/javascript | clean |
http://marketwaveproductions.com/wp-content/plugins/wp-lightbox/js/lightbox/jquery.lightbox.min.js | 200 OK Content-Length: 16897 Content-Type: application/javascript | clean |
http://marketwaveproductions.com/wp-content/plugins/iphorm-form-builder/js/jquery.iphorm.js?ver=1.4.6 | 200 OK Content-Length: 25650 Content-Type: application/javascript | clean |
http://marketwaveproductions.com/wp-content/plugins/iphorm-form-builder/js/jquery.form.min.js?ver=v20130616 | 200 OK Content-Length: 14510 Content-Type: application/javascript | clean |
http://marketwaveproductions.com/wp-content/plugins/iphorm-form-builder/js/jquery.smooth-scroll.min.js?ver=1.4.9 | 200 OK Content-Length: 2681 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: royalmauianresort.com
Result:
GET / HTTP/1.1
Host: royalmauianresort.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: royalmauianresort.com
Referer: http://www.google.com/search?q=royalmauianresort.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: royalmauianresort.com
Referer: http://www.google.com/search?q=royalmauianresort.com
Result:
The result is similar to the first query. There are no suspicious redirects found.