Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ceprepirineu.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://ceprepirineu.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 12 Oct 2014 22:52:34 GMT Location: http://www.ceprepirineu.com/ Server: Apache Content-Length: 236 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.ceprepirineu.com/ | 200 OK Content-Length: 15084 Content-Type: text/html | clean |
http://www.ceprepirineu.com/Scripts/swfobject_modified.js | 200 OK Content-Length: 28242 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var swfobject = function() { var UNDEF = "undefined", OBJECT = "object", SHOCKWAVE_FLASH = "Shockwave Flash", SHOCKWAVE_FLASH_AX = "ShockwaveFlash.ShockwaveFlash", FLASH_MIME_TYPE = "application/x-shockwave-flash", EXPRESS_INSTALL_ID = "SWFObjectExprInst", win = window, doc = document, nav = navigator, domLoadFnArr = [], regObjArr = [], timer = null, storedAltContent = null, storedAltContentId Antivirus reports:
| ||
http://ceprepirineu.com/Scripts/desplegar.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 12 Oct 2014 22:52:38 GMT Location: http://www.ceprepirineu.com/Scripts/desplegar.js Server: Apache Content-Length: 256 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.ceprepirineu.com/scripts/desplegar.js | HTTP/1.1 302 Found Connection: close Date: Sun, 12 Oct 2014 22:52:38 GMT Location: http://www.ceprepirineu.com/404.php Server: Apache Content-Length: 219 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.ceprepirineu.com/404.php | 404 Not Found Content-Length: 1077 Content-Type: text/html | clean |
http://www.ceprepirineu.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Sun, 12 Oct 2014 22:52:38 GMT Location: http://www.ceprepirineu.com/404.php Server: Apache Content-Length: 219 Content-Type: text/html; charset=iso-8859-1 | clean |
http://ceprepirineu.com/js/scrollmenu.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 12 Oct 2014 22:52:38 GMT Location: http://www.ceprepirineu.com/js/scrollmenu.js Server: Apache Content-Length: 252 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.ceprepirineu.com/js/scrollmenu.js | 200 OK Content-Length: 6984 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) scrollStep=2 timerLeft="" timerRight="" function toLeft(id){ document.getElementById(id).scrollLeft=0 } function scrollDivLeft(id){ clearTimeout(timerRight) document.getElementById(id).scrollLeft =scrollStep timerRight=setTimeout("scrollDivLeft('" id "')",12) } function scrollDivRight(id){ clearTimeout(timerLeft) document.getElementById(id).scrollLeft-=scrollStep timerLeft=setTimeout("scrollDivRight('" id "')",12) } function Antivirus reports:
| ||
http://www.google.com/jsapi | 200 OK Content-Length: 24552 Content-Type: text/javascript | clean |
http://www.google.com/coop/cse/t13n?form=cse-search-box&t13n_langs=ca | 200 OK Content-Length: 2217 Content-Type: text/javascript | clean |
http://www.google.com/coop/cse/brand?form=cse-search-box&lang=ca | 200 OK Content-Length: 2512 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ceprepirineu.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sun, 12 Oct 2014 22:52:34 GMT
Location: http://www.ceprepirineu.com/
Server: Apache
Content-Length: 236
Content-Type: text/html; charset=iso-8859-1
...236 bytes of data.
GET / HTTP/1.1
Host: ceprepirineu.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sun, 12 Oct 2014 22:52:34 GMT
Location: http://www.ceprepirineu.com/
Server: Apache
Content-Length: 236
Content-Type: text/html; charset=iso-8859-1
...236 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: ceprepirineu.com
Referer: http://www.google.com/search?q=ceprepirineu.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ceprepirineu.com
Referer: http://www.google.com/search?q=ceprepirineu.com
Result:
The result is similar to the first query. There are no suspicious redirects found.