Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=osuf.it
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://osuf.it/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 04 Mar 2015 07:57:08 GMT Location: http://www.osuf.it/ Server: Apache Content-Length: 227 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.osuf.it/ | 200 OK Content-Length: 54696 Content-Type: text/html | clean |
http://www.osuf.it/media/system/js/caption.js | 200 OK Content-Length: 1721 Content-Type: application/javascript | clean |
http://www.osuf.it/modules/mod_pd_smoothgallery/tmpl/scripts/mootools.v1.11.js | 200 OK Content-Length: 152148 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var MooTools = { version: '1.11' }; function $defined(obj){ return (obj != undefined); }; function $type(obj){ if (!$defined(obj)) return false; if (obj.htmlElement) return 'element'; var type = typeof obj; if (type == 'object' && obj.nodeName){ switch(obj.nodeType){ case 1: return 'element'; case 3: return (/\S/).test(obj.nodeValue) ? 'textnode' : 'whitespace'; } } if (type == 'object' || type == 'function if ((pos + tip[z] - scroll[z]) > win[z]) pos = event.page[z] - this.options.offsets[z] - tip[z]; this.toolTip.setStyle(prop[z], pos); }; }, show: function(){ if (this.options.timeout) this.timer = this.hide.delay(this.options.timeout, this); this.fireEvent('onShow', [this.toolTip]); }, hide: function(){ this.fireEvent('onHide', [this.toolTip]); } }); Tips.implement(new Events, new Options); Antivirus reports:
| ||
http://www.osuf.it/modules/mod_pd_smoothgallery/tmpl/scripts/jd.gallery.js | 200 OK Content-Length: 26218 Content-Type: application/javascript | clean |
http://www.osuf.it/modules/mod_pd_smoothgallery/tmpl/scripts/jd.gallery.transitions.js | 200 OK Content-Length: 2182 Content-Type: application/javascript | clean |
http://www.osuf.it/modules/mod_pd_smoothgallery/tmpl/scripts/lytebox.js | 200 OK Content-Length: 39113 Content-Type: application/javascript | clean |
http://osuf.it/modules/mod_novarp/js/swfobject21.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 04 Mar 2015 07:57:11 GMT Location: http://www.osuf.it/modules/mod_novarp/js/swfobject21.js Server: Apache Content-Length: 263 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.osuf.it/modules/mod_novarp/js/swfobject21.js | 200 OK Content-Length: 9760 Content-Type: application/javascript | clean |
http://osuf.it/templates/jp_health_care/js/moomenu.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 04 Mar 2015 07:57:12 GMT Location: http://www.osuf.it/templates/jp_health_care/js/moomenu.js Server: Apache Content-Length: 265 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.osuf.it/templates/jp_health_care/js/moomenu.js | 200 OK Content-Length: 4687 Content-Type: application/javascript | clean |
http://osuf.it/templates/jp_health_care/js/tips.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 04 Mar 2015 07:57:11 GMT Location: http://www.osuf.it/templates/jp_health_care/js/tips.js Server: Apache Content-Length: 262 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.osuf.it/templates/jp_health_care/js/tips.js | 200 OK Content-Length: 319 Content-Type: application/javascript | clean |
http://codice.shinystat.com/cgi-bin/getcod.cgi?USER=Osuf2011 | 200 OK Content-Length: 5611 Content-Type: application/x-javascript | clean |
http://osuf.it/index.php?option=com_content&view=article&id=167&Itemid=8 | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 04 Mar 2015 07:57:13 GMT Location: http://www.osuf.it/index.php?option=com_content&view=article&id=167&Itemid=8 Server: Apache Content-Length: 296 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.osuf.it/index.php?option=com_content&view=article&id=167&itemid=8 | 200 OK Content-Length: 33462 Content-Type: text/html | clean |
http://www.osuf.it/index.php?option=com_content&view=article&id=167&Itemid=8 | 200 OK Content-Length: 33667 Content-Type: text/html | clean |
http://www.osuf.it/index.php?option=com_content&view=article&id=132&Itemid=47 | 200 OK Content-Length: 36394 Content-Type: text/html | clean |
http://www.osuf.it/index.php?option=com_content&view=article&id=133&Itemid=48 | 200 OK Content-Length: 36116 Content-Type: text/html | clean |
http://www.osuf.it/index.php?option=com_content&view=section&id=2&Itemid=10 | 200 OK Content-Length: 37358 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: osuf.it
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 04 Mar 2015 07:57:08 GMT
Location: http://www.osuf.it/
Server: Apache
Content-Length: 227
Content-Type: text/html; charset=iso-8859-1
...227 bytes of data.
GET / HTTP/1.1
Host: osuf.it
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 04 Mar 2015 07:57:08 GMT
Location: http://www.osuf.it/
Server: Apache
Content-Length: 227
Content-Type: text/html; charset=iso-8859-1
...227 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: osuf.it
Referer: http://www.google.com/search?q=osuf.it
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: osuf.it
Referer: http://www.google.com/search?q=osuf.it
Result:
The result is similar to the first query. There are no suspicious redirects found.