Scanned pages/files
| Request | Server response | Status |
http://www.bucegipark.ro/ | 200 OK Content-Length: 30529 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Iran Security Group ...[13214 bytes skipped]... rteneriat cu Consiliul Judetean Dambovita.<div style="clear:left; border-top:1px #cccccc dotted;"></div> </div> <div style="font-size:13px;"> <img src="gfx/news/news.jpg" alt="Parcul Natural Bucegi" width="60" height="60" class="poza_stiri"/> <strong>26 May 2014</strong> - <br /> <!DOCTYPE html><br /> <title>Hacked By Iran Security Group</title><br /> <body bgcolor='black'><br /> <font face="Iceland" style="color:red;text-shadow:0px 1px 5px #000;font-size:60px">[Hacked by Iran Security Group]</font><br /> <br><br /> <link href='http://fonts.googleapis.com/css?family=Iceland' rel='stylesheet' type='text/css'><br /> <style>body{cursor:url("../www.madleets.com/elhacker.cur"),auto;}html{display:table;height:10 ...[23063 bytes skipped]... | ||
http://www.bucegipark.ro/scripts/jquery-1.7.1.min.js | 200 OK Content-Length: 93868 Content-Type: application/javascript | clean |
http://www.bucegipark.ro/scripts/jquery.nivo.slider.pack.js | 200 OK Content-Length: 11550 Content-Type: application/javascript | clean |
http://jquery-ui.googlecode.com/svn/tags/latest/ui/jquery.effects.core.js | 200 OK Content-Length: 16810 Content-Type: text/javascript | clean |
http://www.bucegipark.ro/scripts/jquery.fancybox.pack.js?v=2.1.4 | 200 OK Content-Length: 22595 Content-Type: application/javascript | clean |
http://www.bucegipark.ro/scripts/HTfeeds.js | 200 OK Content-Length: 4386 Content-Type: application/javascript | clean |
http://www.bucegipark.ro/index.php | 200 OK Content-Length: 30529 Content-Type: text/html | clean |
http://www.bucegipark.ro/pnb.php?show=istoric | 200 OK Content-Length: 15569 Content-Type: text/html | clean |
http://www.bucegipark.ro/pnb.php?show=repere_culturale | 200 OK Content-Length: 16297 Content-Type: text/html | clean |
http://www.bucegipark.ro/pnb.php?show=flora | 200 OK Content-Length: 32515 Content-Type: text/html | clean |
http://www.bucegipark.ro/pnb.php?show=fauna | 200 OK Content-Length: 33115 Content-Type: text/html | clean |
http://www.bucegipark.ro/pnb.php?show=habitate | 200 OK Content-Length: 24010 Content-Type: text/html | clean |
http://www.bucegipark.ro/pnb.php?show=monumente | 200 OK Content-Length: 17172 Content-Type: text/html | clean |
http://www.bucegipark.ro/pnb.php?show=rezervatii | 200 OK Content-Length: 12580 Content-Type: text/html | clean |
http://www.bucegipark.ro/pnb.php?show=administratie | 200 OK Content-Length: 13378 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bucegipark.ro
Result:
GET / HTTP/1.1
Host: bucegipark.ro
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: bucegipark.ro
Referer: http://www.google.com/search?q=bucegipark.ro
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bucegipark.ro
Referer: http://www.google.com/search?q=bucegipark.ro
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bucegipark.ro
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bucegipark.ro/
Result: bucegipark.ro is not infected or malware details are not published yet.
Result: bucegipark.ro is not infected or malware details are not published yet.