Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=despenza-forex.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://despenza-forex.com/ | 200 OK Content-Length: 37489 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.despenza.com ...[3273 bytes skipped]... ="style2">Privacy Policy</a> :: <a href="terms_of_use.html" class="style2">Terms of Use</a> :: <a href="customer_safeguards.html" class="style2">Customer Safeguards</a> :: <a href="brokerage_clearing.html" class="style2">Brokerage & Clearing</a> :: <a href="http://www.despenza.com/resources/index.html" target="_blank" class="style2">Links</a><br> <span class="style5">Futures and Options trading involves significant risk of loss. <br> Past performance is not necessarily indicative of future results. Privacy policy available upon request </span><br> ...[992 bytes skipped]... | ||
http://despenza-forex.com/titlebar.js | 200 OK Content-Length: 5193 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- function dosearch() { var url; var searchstring; if (document.form1.textfield.value =='') { alert("Please enter a value in the search box"); document.form1.textfield.focus(); return false; } url="http://www.despenza.com/search.cgi?search="; searchstring=document.form1.textfield.value; document.location= url + searchstring; } function popupX(mylink, windowname) { if (! window.focus)return true; var href; if (typeof(mylink) == 'string') href=mylink; else href=mylink.href; window.open(href, windowname, 'width=400,height=375,scrollbars=yes'); return false; } function newImage(arg) { if ...[3715 bytes skipped]... Antivirus reports:
| ||
http://despenza-forex.com/index.html | 200 OK Content-Length: 37489 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.despenza.com ...[3273 bytes skipped]... ="style2">Privacy Policy</a> :: <a href="terms_of_use.html" class="style2">Terms of Use</a> :: <a href="customer_safeguards.html" class="style2">Customer Safeguards</a> :: <a href="brokerage_clearing.html" class="style2">Brokerage & Clearing</a> :: <a href="http://www.despenza.com/resources/index.html" target="_blank" class="style2">Links</a><br> <span class="style5">Futures and Options trading involves significant risk of loss. <br> Past performance is not necessarily indicative of future results. Privacy policy available upon request </span><br> ...[992 bytes skipped]... | ||
http://despenza-forex.com/managed_futures.html | 200 OK Content-Length: 28464 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.despenza.com ...[3352 bytes skipped]... ml" class="style2">Terms of Use</a> :: <a href="customer_safeguards.html" class="style2">Customer Safeguards</a> :: <a href="brokerage_clearing.html" class="style2">Brokerage & Clearing</a><br> <span class="style5">Futures and Options trading involves significant risk of loss<a href="http://www.despenza.com/indextest.htm">.</a> <br> Past performance is not necessarily indicative of future results. Privacy policy available upon request </span></div></td> </tr> </table> <table width="760" height="18" border="0" cellpadding="0" cellspacing="0"> <tr> <td valign="bottom"><table ...[656 bytes skipped]... | ||
http://despenza-forex.com/annuities.html | 200 OK Content-Length: 22427 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: despenza.com ...[3509 bytes skipped]... >Terms of Use</a> :: <a href="customer_safeguards.html" class="style2">Customer Safeguards</a> :: <a href="brokerage_clearing.html" class="style2">Brokerage & Clearing</a><br> <span class="style5">Futures and Options trading involves significant risk of loss<a href="http://www.despenza.com/indextest.htm">.</a> <br> Past performance is not necessarily indicative of future results. Privacy policy available upon request </span></div></td> </tr> </table> <table width="760" height="18" border="0" cellpadding="0" cellspacing="0"> <tr> ...[815 bytes skipped]... | ||
http://despenza-forex.com/life_insurance.html | 200 OK Content-Length: 22327 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: despenza.com ...[4283 bytes skipped]... border="0" cellpadding="0" cellspacing="0"> <tr> <td valign="bottom"> <table width="600" border="0" cellpadding="0" cellspacing="0" class="text"> <tr> <td align="right"><div align="left"><font color="899297"><strong> <font color="800000">Copyright 2005,<u> despenza.com.</u></font></strong></font></div></td> </tr> </table></td> </tr> </table> </td> </tr> </table> </form> </body> </html> | ||
http://despenza-forex.com/forex.html | 200 OK Content-Length: 27229 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.despenza.com ...[3492 bytes skipped]... 2">Terms of Use</a> :: <a href="customer_safeguards.html" class="style2">Customer Safeguards</a> :: <a href="brokerage_clearing.html" class="style2">Brokerage & Clearing</a><br> <span class="style5">Futures and Options trading involves significant risk of loss<a href="http://www.despenza.com/indextest.htm">.</a> <br> Past performance is not necessarily indicative of future results. Privacy policy available upon request </span></div></td> </tr> </table> <table width="760" height="18" border="0" cellpadding="0" cellspacing="0"> <tr> | ||
http://despenza-forex.com/specialized_insurance.html | 200 OK Content-Length: 24735 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.despenza.com ...[3510 bytes skipped]... 2">Terms of Use</a> :: <a href="customer_safeguards.html" class="style2">Customer Safeguards</a> :: <a href="brokerage_clearing.html" class="style2">Brokerage & Clearing</a><br> <span class="style5">Futures and Options trading involves significant risk of loss<a href="http://www.despenza.com/indextest.htm">.</a> <br> Past performance is not necessarily indicative of future results. Privacy policy available upon request </span></div></td> </tr> </table> <table width="760" height="18" border="0" cellpadding="0" cellspacing="0"> <tr> | ||
http://despenza-forex.com/contactus.html | 200 OK Content-Length: 22340 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: despenza.com ...[3523 bytes skipped]... >Terms of Use</a> :: <a href="customer_safeguards.html" class="style2">Customer Safeguards</a> :: <a href="brokerage_clearing.html" class="style2">Brokerage & Clearing</a><br> <span class="style5">Futures and Options trading involves significant risk of loss<a href="http://www.despenza.com/indextest.htm">.</a> <br> Past performance is not necessarily indicative of future results. Privacy policy available upon request </span></div></td> </tr> </table> <table width="760" height="18" border="0" cellpadding="0" cellspacing="0"> <tr> ...[803 bytes skipped]... | ||
http://despenza-forex.com/complimentary_consultation.html | 200 OK Content-Length: 22932 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: despenza.com ...[2129 bytes skipped]... ; <td width="488" align="right"><img src="images/www_top.gif" alt="Asset Advisor" width="252" height="17"></td> </tr> </table></td> </tr> <tr> <td height="45ome</a> :: <a href="managed_futures.html" class="style2">Managed Futures</a> <a href="http://www.despenza.com/managed_futurestest.htm">::</a> <a href="annuities.html" class="style2">Annuities</a> :: <a href="life_insurance.html" class="style2">Life Insurance</a> :: <a href="forex.html" class="style2">Managed Forex</a> ::<a href="specialized_insurance.html" class="style2">(HNWI's) & Corporate Insurance</a> <br> <a href="contactus.html" class="style2 ...[1868 bytes skipped]... | ||
http://despenza-forex.com/registration.html | 200 OK Content-Length: 23449 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: despenza.com ...[4279 bytes skipped]... "18" border="0" cellpadding="0" cellspacing="0"> <tr> <td valign="bottom"><table width="600" border="0" cellpadding="0" cellspacing="0" class="text"> <tr> <td align="right"><div align="left"><font color="899297"><strong> <font color="800000">Copyright 2005,<u> despenza.com.</u></font></strong></font></div></td> </tr> </table></td> </tr> </table> </td> </tr> </table> </form> </body> </html> | ||
http://despenza-forex.com/online_registration.html | 200 OK Content-Length: 70128 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: despenza.com ...[593 bytes skipped]... ont-weight: bold; } .style7 {font-size: 12px} .style9 {font-size: 10} --> </style> <script language="javascript" src="titlebar.js"></script> </head> <body leftmargin="0" topmargin="0" marginwidth="0" marginheight="0" onload="preloadImages();" > <form name="form1" method="post" action="cgi-sys/FormMail.cgi"> <input type="hidden" name=recipient value="adespenza@despenza.com"> <input type="hidden" name=email value="new_registration@despenza.com"> <input type="hidden" name=redirect value="http://www.despenza.com/thankyou_r.html"> <input type="hidden" name=subject value="New Online Registration"> <table width="800" border="0" align="center" cellpadding="0" cellspacing="0"> <tr> <td height="39" bgcolor="#000000"><table width="700" border="0" cellpadding="0" cellspacing="0" cla ...[3540 bytes skipped]... | ||
http://despenza-forex.com/pdf/registration_questionaire.pdf | 200 OK Content-Length: 116315 Content-Type: application/pdf | clean |
http://despenza-forex.com/test404page.js | 404 Not Found Content-Length: 518 Content-Type: text/html | clean |
http://despenza-forex.com/risk_disclosure.html | 200 OK Content-Length: 18656 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.despenza.com ...[3329 bytes skipped]... ref="terms_of_use.html" class="style2">Terms of Use</a> :: <a href="customer_safeguards.html" class="style2">Customer Safeguards</a> :: <a href="brokerage_clearing.html" class="style2">Brokerage & Clearing</a><br> <span class="style5">Futures and Options trading involves significant risk of loss<a href="http://www.despenza.com/indextest.htm">.</a> <br> Past performance is not necessarily indicative of future results. Privacy policy available upon request </span></div></td> </tr> </table> <table width="760" height="18" border="0" cellpadding="0" cellspacing="0"> <tr> <td valign="bottom"><table ...[655 bytes skipped]... | ||
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: despenza-forex.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 26 Sep 2014 08:21:11 GMT
Server: Apache/2.0.64 (Unix) mod_ssl/2.0.64 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.3.26
Content-Type: text/html
X-Powered-By: PHP/5.3.26
GET / HTTP/1.1
Host: despenza-forex.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 26 Sep 2014 08:21:11 GMT
Server: Apache/2.0.64 (Unix) mod_ssl/2.0.64 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.3.26
Content-Type: text/html
X-Powered-By: PHP/5.3.26
Second query (visit from search engine):
GET / HTTP/1.1
Host: despenza-forex.com
Referer: http://www.google.com/search?q=despenza-forex.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: despenza-forex.com
Referer: http://www.google.com/search?q=despenza-forex.com
Result:
The result is similar to the first query. There are no suspicious redirects found.