Webshield detection effective...avast! blocks as URL:Mal

Request for htxp://sotat9qg.6b8h69g14i.com IP 188.165.146.73
Returns: HTTP/1.1 400 Bad Request
Server: nginx
Date: Sun, 05 Oct 2014 14:40:06 GMT
Content-Type: text/html
Content-Length: 166
Connection: close

400 Bad Request

Sucuri returms: Scan for: http://sotat9qg.6b8h69g14i.com
Hostname: sotat9qg.6b8h69g14i.com
IP address: 54.200.211.251

System Details:
Running on: nginx
Unable to properly scan your site. Site returning error (40x): HTTP/1.1 403 FORBIDDEN

400 Bad Request


nginx

See recent reports on http://urlquery.net/report.php?id=1412520291711
Blacklisted by Quttera’s.

Site launches or has launched Win32/SoftPulse.O potentially unwanted application.
C-SIRTThis URL hosts a threat identified as: CYSC.URL.ADWARE.GEN
SCUMWARE.orgThis URL is or was distributing a malware variant of Win32/SoftPulse.O potentially unwanted application

See: http://www.malware.pl/report/188.165.146.73 (po polsku) Odnaleziono 10 i więcej reportów powiązaych z tym zapytaniem.

polonus

Another one blocked effectively as HTML:Iframe-BV[Trj]

<IFRAME SRC="version1.htm" NAME="i1" HEIGHT="3000" WIDTH="760" frameborder="0" overflow="no";></IFRAME>

https://www.virustotal.com/nl/url/9f30675af8ab91c133b3762a52476983865263e25b7cf14aac6b32c82529f83c/analysis/1412524635/ http://quttera.com/detailed_report/iheartemily.online.fr - blacklisted = iheartemily.online dot fr/blc.jpg http://sitecheck.sucuri.net/results/iheartemily.online.fr -> http://www.yandex.com/infected?url=iheartemily.online.fr&l10n=en

Warnings: https://asafaweb.com/Scan?Url=iheartemily.online.fr

pol

Yandex blacklisted site is blocked by avast! Webshield as JS:Includer-BCE[Trj]
http://killmalware.com/stefanobrondi.com/#
and https://www.virustotal.com/nl/url/b1a54459ba8dd3a1b4eda14330c0ad89c42ebe5e7aab20815d0b62c04b88fa25/analysis/1412599476/
and ISSUE DETECTED DEFINITION INFECTED URL
Website Malware mwjs-iframe-injected691?v27 htxp://www.stefanobrondi.com/
Website Malware mwjs-iframe-injected691?v27 htxp://www.stefanobrondi.com//pages/en/intro.php
Known javascript malware. Details: htxp://labs.sucuri.net/db/malware/mwjs-iframe-injected691?v27

http://quttera.com/detailed_report/stefanobrondi.com

pol