Scanned pages/files
Request | Server response | Status |
http://www.eprocord.ro/ | 200 OK Content-Length: 9982 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x0 src: http://www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/fallagahofficiel&width=0&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=0 <iframe scrolling="no" frameborder="0" style="border: medium none; overflow: hidden; height: 0px; width: 0px;background:#fff;" src="http://www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/fallagahofficiel&width=0&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=0"> Hidden iFrame found. size: 0x0 src: http://www.facebook.com/plugins/like.php?href=https://www.facebook.com/fallagahofficiel&send=false&layout=standard&width=0&show_faces=true&action=like&colorscheme=dark&font=verdana&height=0 <iframe src="http://www.facebook.com/plugins/like.php?href=https://www.facebook.com/fallagahofficiel&send=false&layout=standard&width=0&show_faces=true&action=like&colorscheme=dark&font=verdana&height=0" scrolling="no" frameborder="0" style="border:none; overflow:hidden; width:0px; height:0px;" allowtransparency="true"> Deface/Content modification. The following signature was found: Hacked BY Anonyme XTn ...[915 bytes skipped]... t; <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <title>Anonyme XTn....</title> <meta http-equiv="content-type" content="text/html; charset=" utf-8""=""> <title>Fallaga-Team </title> <meta name="keywords" content="Hacked BY Anonyme XTn"> <meta content="Hacked by Fallag Anonyme " name="subject"> <meta content="Hacked by Fallag Anonyme" name="Abstract"> <meta content="Hacked by Fallag Anonyme" name="description"> <script language="JavaScript"><!-- Beginvar scrl = " Free Palestine ";function scrlsts() { scrl = scrl.substring(1, scrl.length) + scrl.substring(0, 1); document.title = scrl; setTimeout("scrlsts()", 300); }// End --></script&g ...[11753 bytes skipped]... | ||
https://ajax.googleapis.com/ajax/libs/jquery/1.6.1/jquery.min.js | 200 OK Content-Length: 91342 Content-Type: text/javascript | clean |
http://www.eprocord.ro/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: eprocord.ro
Result:
GET / HTTP/1.1
Host: eprocord.ro
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: eprocord.ro
Referer: http://www.google.com/search?q=eprocord.ro
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: eprocord.ro
Referer: http://www.google.com/search?q=eprocord.ro
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=eprocord.ro
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://eprocord.ro/
Result: eprocord.ro is not infected or malware details are not published yet.
Result: eprocord.ro is not infected or malware details are not published yet.