Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sicurtransport.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.sicurtransport.com/ | 200 OK Content-Length: 43453 Content-Type: text/html | clean |
http://www.sicurtransport.com/media/system/js/caption.js | 200 OK Content-Length: 2150 Content-Type: application/javascript | clean |
http://www.sicurtransport.com/sicurtransport/media/system/js/jquery.min.js | 200 OK Content-Length: 57254 Content-Type: application/javascript | clean |
http://www.sicurtransport.com/sicurtransport/media/system/js/ddimgtooltip.js | 200 OK Content-Length: 3559 Content-Type: application/javascript | clean |
http://skihh.de/templates/rhuk_milkyway/t2ckxzvb.php?id=61130664 | 404 Not Found Content-Length: 2383 Content-Type: text/html | clean |
http://skihh.de/test404page.js | 404 Not Found Content-Length: 2383 Content-Type: text/html | clean |
http://codicepro.shinystat.com/cgi-bin/getcod.cgi?USER=sicurtransport&P=1 | 200 OK Content-Length: 4183 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- function cCk(nm,vl,mn){var ex=cdm="";var _sscdom="";if (_sscdom && _sscdom!="") { cdm=" domain="+_sscdom; if (mn) {document.cookie=nm+"=; expires=Thu, 01-Jan-70 00:00:01 GMT; path=/;";}}if (mn) {var d=new Date();d.setTime(d.getTime()+(mn*6*1000)); ex="; expires="+d.toGMTString();} document.cookie=nm+"="+vl+ex+"; path=/;"+cdm+"";} function rCk(nm){var nEQ=nm+"=";var ca=document.cookie.split(';');for(var i=0;i<ca.length;i++){var c=ca[i]; while(c.charAt(0)==' ') c=c.subst if (ssqS_.indexOf("NODW=yes")>-1){var ig_=new Image(1,1);ig_.src=ssqS_+"&RM="+Math.round(Math.random()*2147483647);ig_.onload=function(){_ssvoid();}} else{document.write("<a href=\"http://s9.shinystat.com/cgi-bin/shinystatv.cgi?USER="+us_+"&NH=1\" Target=\"_new\"><img src=\""+ssqS_+"\" border=\"0\"/></a>"); } Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sicurtransport.com
Result:
GET / HTTP/1.1
Host: sicurtransport.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: sicurtransport.com
Referer: http://www.google.com/search?q=sicurtransport.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sicurtransport.com
Referer: http://www.google.com/search?q=sicurtransport.com
Result:
The result is similar to the first query. There are no suspicious redirects found.