Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=iniziative.forumpa.it
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://iniziative.forumpa.it/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://iniziative.forumpa.it/ | 200 OK Content-Length: 24795 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: saperi.forumpa.it ...[8326 bytes skipped]... materiali</a> </h2><h2><img width="16" height="16" alt="" src="/sites/all/files/documents/image/puntoelenco_blu.png" /> <a href="http://iniziative.forumpa.it/page/75646/faq-forum-pa-2014">FAQ - tutte le risposte alle tue domande su #FPA14</a> </h2><h2><img width="16" height="16" alt="" src="/sites/all/files/documents/image/puntoelenco_blu.png" /> <a href="http://saperi.forumpa.it/story/75554/apre-forum-pa-2014-la-presentazione-di-carlo-mochi-sismondi">Carlo Mochi Sismondi presenta #FPA14</a></h2> <h2><img width="16" height="16" alt="" src="/sites/all/files/documents/image/puntoelenco_blu.png" /> <a href="http://iniziative.forumpa.it/page/75260/servizi-di-manifestazione">Modulistica e informazioni per i partner e gli espositori</a></h2></div> </div> </div> </div> ...[20049 bytes skipped]... | ||
http://iniziative.forumpa.it/sites/all/files/advagg_js/js_0df042d2b612f3d33de520cc1c4dfaf0_2.js | 200 OK Content-Length: 117461 Content-Type: text/javascript | clean |
http://partner.googleadservices.com/gampad/google_service.js | 200 OK Content-Length: 3878 Content-Type: text/javascript | clean |
http://connect.facebook.net/en_US/all.js | 200 OK Content-Length: 164160 Content-Type: application/x-javascript | clean |
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 11709 Content-Type: application/javascript | clean |
http://disqus.com/forums/forumpa/recent_comments_widget.js?num_items=5&avatar_size=32 | 200 OK Content-Length: 4587 Content-Type: text/javascript | malicious |
Malicious code found. Script contains blacklisted domain: saperi.forumpa.it ...[1089 bytes skipped]... /disqus.com/terreestreme/"><img class="dsq-widget-avatar" src="//a.disquscdn.com/uploads/users/9645/8721/avatar92.jpg?1393424533"></a>\ <a class="dsq-widget-user" href="http://disqus.com/terreestreme/">No limits</a>\ <span class="dsq-widget-comment"><p>bene, brava lelli kelly, questo è il momento di agire</p></span>\ <p class="dsq-widget-meta"><a href="http://saperi.forumpa.it/relazione/verso-la-pa-digitale-0">Verso la pa digitale</a> · <a href="http://saperi.forumpa.it/relazione/verso-la-pa-digitale-0#comment-1384458919">43 minutes ago</a></p>\ </li>\ <li class="dsq-widget-item">\ <a href="http://disqus.com/gianluca_ktre72/"><img class="dsq-widget-avatar" src="//a.disquscdn.com/uploads/users/10446/2054/avatar92.jpg?1400068716"></a>\ <a clas ...[3454 bytes skipped]... Decoded script: ...[784 bytes skipped]... <a href="http://disqus.com/terreestreme/"><img class="dsq-widget-avatar" src="//a.disquscdn.com/uploads/users/9645/8721/avatar92.jpg?1393424533"></a> <a class="dsq-widget-user" href="http://disqus.com/terreestreme/">No limits</a> <span class="dsq-widget-comment"><p>bene, brava lelli kelly, questo è il momento di agire</p></span> <p class="dsq-widget-meta"><a href="http://saperi.forumpa.it/relazione/verso-la-pa-digitale-0">Verso la pa digitale</a> · <a href="http://saperi.forumpa.it/relazione/verso-la-pa-digitale-0#comment-1384458919">43 minutes ago</a></p> </li> <li class="dsq-widget-item"> <a href="http://disqus.com/gianluca_ktre72/"><img class="dsq-widget-avatar" src="//a.disquscdn.com/uploads/users/10446/2054/avatar92.jpg?1400068716"></a> <a class="dsq-widget-user" hre ...[3292 bytes skipped]... | ||
http://profilo.forumpa.it/forumpanet/js.js | 200 OK Content-Length: 998 Content-Type: application/javascript | clean |
http://profilo.forumpa.it/forumpanet/js.php | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://profilo.forumpa.it/test404page.js | 404 Not Found Content-Length: 296 Content-Type: text/html | clean |
http://iniziative.forumpa.it/gapageviews.js?v=3 | 200 OK Content-Length: 1930 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: iniziative.forumpa.it
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 14 May 2014 13:58:05 GMT
Accept-Ranges: bytes
ETag: "60db-4f95c2c3c37b5"
Server: Apache/2.2.14 (Ubuntu)
Vary: Accept-Encoding
Content-Length: 24795
Content-Type: text/html; charset=utf-8
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Wed, 14 May 2014 13:29:41 GMT
X-Header: Boost Citrus 1.8
...24795 bytes of data.
GET / HTTP/1.1
Host: iniziative.forumpa.it
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 14 May 2014 13:58:05 GMT
Accept-Ranges: bytes
ETag: "60db-4f95c2c3c37b5"
Server: Apache/2.2.14 (Ubuntu)
Vary: Accept-Encoding
Content-Length: 24795
Content-Type: text/html; charset=utf-8
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Wed, 14 May 2014 13:29:41 GMT
X-Header: Boost Citrus 1.8
...24795 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: iniziative.forumpa.it
Referer: http://www.google.com/search?q=iniziative.forumpa.it
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: iniziative.forumpa.it
Referer: http://www.google.com/search?q=iniziative.forumpa.it
Result:
The result is similar to the first query. There are no suspicious redirects found.