Scanned pages/files
Request | Server response | Status |
http://www.ecomobile.ro/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 15 Oct 2014 21:27:31 GMT Location: http://ecomobile.ro/ Server: nginx admin Content-Length: 0 Content-Type: text/html; charset=UTF-8 Set-Cookie: qtrans_cookie_test=qTranslate+Cookie+Test; path=/; domain=www.ecomobile.ro X-Cache: HIT from Backend X-Pingback: http://ecomobile.ro/xmlrpc.php X-Powered-By: PHP/5.3.28 | clean |
http://ecomobile.ro/ | 200 OK Content-Length: 2730 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by JingkLong <html><head><meta name="description" content="Hacked by JingkLong"><link rel="SHORTCUT ICON" href="http://www.paper-machinery.com/flags/Indonesia.gif"><link href='http://fonts.googleapis.com/css?family=Pirata+One' rel='stylesheet' type='text/css'><title>Hacked By JingkLong</title><style type="text/css">.style6 {font-family: Courier New; font-size: xx-small; }</style><style type="text/css">body, a:hover {cursor: url(http://cur.cursors-4u.net/ ...[2710 bytes skipped]... | ||
http://ecomobile.ro/test404page.js | 404 Not Found Content-Length: 21267 Content-Type: text/html | clean |
http://ecomobile.ro/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://ecomobile.ro/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://ecomobile.ro/wp-content/plugins/wp-sliding-logindashboard-panel/js/pngfix/supersleight-min.js?ver=4.0 | 200 OK Content-Length: 1446 Content-Type: application/javascript | clean |
http://ecomobile.ro/wp-content/plugins/wp-sliding-logindashboard-panel/js/slide.js?ver=4.0 | 200 OK Content-Length: 417 Content-Type: application/javascript | clean |
http://ecomobile.ro/wp-content/themes/ecobiz/js/jquery.prettyPhoto.js?ver=4.0 | 200 OK Content-Length: 23508 Content-Type: application/javascript | clean |
http://ecomobile.ro/wp-content/themes/ecobiz/js/jquery.nivo.slider.pack.js?ver=4.0 | 200 OK Content-Length: 15838 Content-Type: application/javascript | clean |
http://ecomobile.ro/wp-content/themes/ecobiz/js/jqueryslidemenu.js?ver=4.0 | 200 OK Content-Length: 2511 Content-Type: application/javascript | clean |
http://ecomobile.ro/wp-content/themes/ecobiz/js/jquery.kwicks.min.js?ver=4.0 | 200 OK Content-Length: 4529 Content-Type: application/javascript | clean |
http://ecomobile.ro/wp-content/themes/ecobiz/js/jquery.tools.tabs.min.js?ver=4.0 | 200 OK Content-Length: 2968 Content-Type: application/javascript | clean |
http://ecomobile.ro/wp-content/themes/ecobiz/js/functions.js?ver=4.0 | 200 OK Content-Length: 2991 Content-Type: application/javascript | clean |
http://maps.google.com/maps?file=api&v=2&key=ABQIAAAA7kK-_g3FxgezVAfhmUAnbxQmWWSCZEPWrjoyenizluoc8LBKlBRJSFAgejaxZYjr6YNbWlfbQ7-xaw | 200 OK Content-Length: 5097 Content-Type: text/javascript | clean |
http://ecomobile.ro/wp-content/themes/ecobiz/js/jquery.gmap-1.0.3-min.js?ver=4.0 | 200 OK Content-Length: 2181 Content-Type: application/javascript | clean |
http://ecomobile.ro/wp-content/uploads/shadowbox-js/3a7c52941f850f8b72a84d4c66a78565.js?ver=3.0.3 | 200 OK Content-Length: 42711 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ecomobile.ro
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=3, must-revalidate
Connection: close
Date: Wed, 15 Oct 2014 21:27:31 GMT
Accept-Ranges: bytes
Server: nginx admin
Vary: Accept-Encoding
Content-Length: 2730
Content-Type: text/html; charset=UTF-8
Expires: Wed, 15 Oct 2014 21:27:34 GMT
Last-Modified: Wed, 15 Oct 2014 12:58:29 GMT
X-Cache: HIT from Backend
...2730 bytes of data.
GET / HTTP/1.1
Host: ecomobile.ro
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=3, must-revalidate
Connection: close
Date: Wed, 15 Oct 2014 21:27:31 GMT
Accept-Ranges: bytes
Server: nginx admin
Vary: Accept-Encoding
Content-Length: 2730
Content-Type: text/html; charset=UTF-8
Expires: Wed, 15 Oct 2014 21:27:34 GMT
Last-Modified: Wed, 15 Oct 2014 12:58:29 GMT
X-Cache: HIT from Backend
...2730 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: ecomobile.ro
Referer: http://www.google.com/search?q=ecomobile.ro
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ecomobile.ro
Referer: http://www.google.com/search?q=ecomobile.ro
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ecomobile.ro
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ecomobile.ro/
Result: ecomobile.ro is not infected or malware details are not published yet.
Result: ecomobile.ro is not infected or malware details are not published yet.