Scanned pages/files
Request | Server response | Status |
http://www.dolomitenbalc.it/ | 200 OK Content-Length: 38100 Content-Type: text/html | clean |
http://www.dolomitenbalc.it/cache/template/js.php?id=bf09cd416fce480108e2f7972e3e1fdd | 200 OK Content-Length: 78105 Content-Type: application/x-javascript | clean |
http://www.dolomitenbalc.it/cache/template/js.php?id=459260f7df974c30daec2706265a334e | 200 OK Content-Length: 74305 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var MooTools={version:'1.12'};function $defined(obj){return(obj!=undefined);};function $type(obj){if(!$defined(obj))return false;if(obj.htmlElement)return'element';var type=typeof obj;if(type=='object'&&obj.nodeName){switch(obj.nodeType){case 1:return'element';case 3:return(/\S/).test(obj.nodeValue)?'textnode':'whitespace';}} if(type=='object'||type=='function'){switch(obj.constructor){case Array:return'array';case RegExp:return'regexp';case Class:return'class';} if(typeof obj.le Antivirus reports:
| ||
http://www.dolomitenbalc.it/cache/template/js.php?id=f9c17325391702b5e2ca03fb155c04d5 | 200 OK Content-Length: 1072 Content-Type: application/x-javascript | clean |
http://www.dolomitenbalc.it/cache/template/js.php?id=aced6b8627cef1a6742eeea75b195f1f | 200 OK Content-Length: 17641 Content-Type: application/x-javascript | clean |
http://www.dolomitenbalc.it/templates/dolomitenbalc/warp/js/search.js | 200 OK Content-Length: 5461 Content-Type: application/javascript | clean |
http://www.dolomitenbalc.it/media/com_acymailing/js/acymailing_module.js?v=451 | 200 OK Content-Length: 11427 Content-Type: application/javascript | clean |
http://www.dolomitenbalc.it/media/system/js/modal.js | 200 OK Content-Length: 10588 Content-Type: application/javascript | clean |
http://www.dolomitenbalc.it/plugins/system/yoo_effects/yoo_effects.js.php?lb=1&re=1&sl=1 | 200 OK Content-Length: 34737 Content-Type: application/x-javascript | clean |
http://www.dolomitenbalc.it/templates/dolomitenbalc/lightbox-3.0.3w/shadowbox_it.js | 200 OK Content-Length: 66005 Content-Type: application/javascript | clean |
http://www.dolomitenbalc.it/modules/mod_jsn_imageshow_pro/jsn_imageshow_pro/swfobject.js | 200 OK Content-Length: 6880 Content-Type: application/javascript | clean |
http://www.dolomitenbalc.it/modules/mod_jsn_imageshow_pro/jsn_imageshow_pro/swfobject_addon.js | 200 OK Content-Length: 839 Content-Type: application/javascript | clean |
http://www.dolomitenbalc.it//e.issuu.com/embed.js/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Thu, 21 Aug 2014 21:23:25 GMT Location: http://www.dolomitenbalc.it Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" Set-Cookie: 0a63211ab09da2b45e467159f276ecbb=38df342991e5ae91d4520ee612d7f6eb; path=/ Set-Cookie: lang=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/ Set-Cookie: jfcookie=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/ Set-Cookie: jfcookie[lang]=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/ | clean |
http://www.dolomitenbalc.it/test404page.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Thu, 21 Aug 2014 21:23:26 GMT Location: http://www.dolomitenbalc.it Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" Set-Cookie: 0a63211ab09da2b45e467159f276ecbb=755cc168691339f816a390e3a113b7d6; path=/ Set-Cookie: lang=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/ Set-Cookie: jfcookie=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/ Set-Cookie: jfcookie[lang]=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/ | clean |
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 12388 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: dolomitenbalc.it
Result:
GET / HTTP/1.1
Host: dolomitenbalc.it
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: dolomitenbalc.it
Referer: http://www.google.com/search?q=dolomitenbalc.it
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: dolomitenbalc.it
Referer: http://www.google.com/search?q=dolomitenbalc.it
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=dolomitenbalc.it
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://dolomitenbalc.it/
Result: dolomitenbalc.it is not infected or malware details are not published yet.
Result: dolomitenbalc.it is not infected or malware details are not published yet.