Scanned pages/files
Request | Server response | Status |
http://cronacaqui.it/ | 200 OK Content-Length: 89623 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Islamic State ...[11944 bytes skipped]... o'><a href="torino/30910_hackerato-sito-web-azienda-pinerolese-con-scritta-dellisis.html" class="titolo">Hackerato sito web azienda pinerolese con scritta dell'Isis</a></H2> <p class=sintx><a href="torino/30910_hackerato-sito-web-azienda-pinerolese-con-scritta-dellisis.html" class="linkbox"><b class='datacateg'>12:55</b> | <b class='evid'>Torino</b> | "Hacked by Islamic State": È la scritta comparsa sul sito web di Acea Pinerolese Industriale Spa, azienda che opera nella raccolta rifiuti e nel settore energetico con importanti commesse nei Paesi dell'ex Unione Sovietica. Il presidente, Francesco Carciofo, è anche a capo di un [...]</a></p><div class=correlati></div> <div class="hr"></div><H2 class='titolo'><a href="torino/30907_tredicenne-stuprata-alla-falchera-spuntano-le ...[91774 bytes skipped]... | ||
http://cronacaqui.it/include/media.js | 200 OK Content-Length: 56949 Content-Type: application/javascript | clean |
http://cronacaqui.it/include/jquery.js | 200 OK Content-Length: 190363 Content-Type: application/javascript | clean |
http://cronacaqui.it/include/newsticker/newsticker.js | 200 OK Content-Length: 1261 Content-Type: application/javascript | clean |
http://cronacaqui.it/include/azioni.html?act=ban&id=195 | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://cronacaqui.it/test404page.js | 403 Forbidden Content-Length: 216 Content-Type: text/html | clean |
http://cronacaqui.it/edizione.html | 200 OK Content-Length: 20266 Content-Type: text/html | clean |
http://cronacaqui.it/include/jquery/ui/jquery.ui.core.js | 200 OK Content-Length: 8561 Content-Type: application/javascript | clean |
http://cronacaqui.it/include/jquery/ui/jquery.ui.widget.js | 200 OK Content-Length: 7282 Content-Type: application/javascript | clean |
http://cronacaqui.it/include/jquery/ui/jquery.ui.datepicker.js | 200 OK Content-Length: 78155 Content-Type: application/javascript | clean |
http://cronacaqui.it/include/jquery/ui/i18n/jquery.ui.datepicker-it.js | 200 OK Content-Length: 950 Content-Type: application/javascript | clean |
http://cronacaqui.it/redazione.html | 200 OK Content-Length: 46601 Content-Type: text/html | clean |
http://cronacaqui.it/registrazione.html | 200 OK Content-Length: 15277 Content-Type: text/html | clean |
http://cronacaqui.it/login.html | 200 OK Content-Length: 10183 Content-Type: text/html | clean |
http://cronacaqui.it/meteo.html | 200 OK Content-Length: 18398 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: cronacaqui.it
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Connection: close
Date: Sat, 14 Mar 2015 12:17:12 GMT
Pragma: no-cache
Via: 1.1 proxy.okclub.it (squid/3.2.5)
Server: Apache
Content-Type: text/html; charset=ISO-8859-1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=g92d7hko00dbl86k1hc3ktofg1; path=/
X-Cache: MISS from proxy.okclub.it
X-Cache-Lookup: MISS from proxy.okclub.it:3128
X-Powered-By: PHP/5.4.23
GET / HTTP/1.1
Host: cronacaqui.it
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Connection: close
Date: Sat, 14 Mar 2015 12:17:12 GMT
Pragma: no-cache
Via: 1.1 proxy.okclub.it (squid/3.2.5)
Server: Apache
Content-Type: text/html; charset=ISO-8859-1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=g92d7hko00dbl86k1hc3ktofg1; path=/
X-Cache: MISS from proxy.okclub.it
X-Cache-Lookup: MISS from proxy.okclub.it:3128
X-Powered-By: PHP/5.4.23
Second query (visit from search engine):
GET / HTTP/1.1
Host: cronacaqui.it
Referer: http://www.google.com/search?q=cronacaqui.it
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: cronacaqui.it
Referer: http://www.google.com/search?q=cronacaqui.it
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=cronacaqui.it
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://cronacaqui.it/
Result: cronacaqui.it is not infected or malware details are not published yet.
Result: cronacaqui.it is not infected or malware details are not published yet.