Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=artincorpo.it
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://artincorpo.it/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://artincorpo.it/ | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://artincorpo.it/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 15 Sep 2014 09:50:28 GMT Location: http://www.artincorpo.it/test404page.js Server: Apache Content-Length: 247 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.artincorpo.it/test404page.js | 404 Not Found Content-Length: 8921 Content-Type: text/html | clean |
http://www.artincorpo.it/wp-includes/js/l10n.js?ver=20101110 | 200 OK Content-Length: 735 Content-Type: application/javascript | clean |
http://www.artincorpo.it/wp-includes/js/jquery/jquery.js?ver=1.4.4 | 200 OK Content-Length: 79048 Content-Type: application/javascript | clean |
http://www.artincorpo.it/wp-content/themes/InStyle/epanel/shortcodes/js/et_shortcodes_frontend.js?ver=1.6 | 200 OK Content-Length: 8417 Content-Type: application/javascript | clean |
http://www.artincorpo.it/wp-content/plugins/google-analyticator/external-tracking.min.js?ver=6.1.1 | 200 OK Content-Length: 1354 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) jQuery(document).ready(function(){jQuery('a').each(function(){var a=jQuery(this);var href=a.attr('href');if(href==undefined) return;var url=href.replace('http://','').replace('https://','');var hrefArray=href.split('.').reverse();var extension=hrefArray[0].toLowerCase();var hrefArray=href.split('/').reverse();var domain=hrefArray[2];var downloadTracked=false;if(jQuery.inArray(extension,analyticsFileTypes)!=-1){downloadTracked=true;a.click(function(){if(analyticsEventTracking=='enabled'){_gaq <!-- . --> Antivirus reports:
| ||
http://www.artincorpo.it/wp-content/themes/InStyle/js/cufon-yui.js | 200 OK Content-Length: 18258 Content-Type: application/javascript | clean |
http://www.artincorpo.it/wp-content/themes/InStyle/js/Colaborate-Thin_400-Colaborate-Medium_400.font.js | 200 OK Content-Length: 93145 Content-Type: application/javascript | clean |
http://www.artincorpo.it/wp-content/themes/InStyle/js/Colaborate-Regular_400.font.js | 200 OK Content-Length: 46527 Content-Type: application/javascript | clean |
http://www.artincorpo.it/wp-content/themes/InStyle/js/superfish.js | 200 OK Content-Length: 3714 Content-Type: application/javascript | clean |
http://www.artincorpo.it/wp-content/themes/InStyle/js/custom.js | 200 OK Content-Length: 5840 Content-Type: application/javascript | clean |
http://www.artincorpo.it/wp-content/themes/InStyle/epanel/page_templates/js/fancybox/jquery.fancybox-1.2.6.pack.js?ver=1.3.2 | 200 OK Content-Length: 9522 Content-Type: application/javascript | clean |
http://www.artincorpo.it/wp-content/themes/InStyle/epanel/page_templates/js/et-ptemplates-frontend.js?ver=1.1 | 200 OK Content-Length: 3727 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: artincorpo.it
Result:
HTTP/1.1 500 timeout
Content-Type: text/plain
GET / HTTP/1.1
Host: artincorpo.it
Result:
HTTP/1.1 500 timeout
Content-Type: text/plain
Second query (visit from search engine):
GET / HTTP/1.1
Host: artincorpo.it
Referer: http://www.google.com/search?q=artincorpo.it
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: artincorpo.it
Referer: http://www.google.com/search?q=artincorpo.it
Result:
The result is similar to the first query. There are no suspicious redirects found.