Scanned pages/files
| Request | Server response | Status |
http://europeindexonline.com/ | 200 OK Content-Length: 3314 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by r1p code ...[96 bytes skipped]... t; <title>lulz_ :))</title> <!-- End $0m30n3 --> <!-- Icon --> <link rel="shortcut icon" href="http://2.bp.blogspot.com/-XxW68bmxFrw/T2f0H4sswUI/AAAAAAAAAB0/inQRKe49jlA/s1600/Indonesiaicon_thumb2.png"/> <!-- End Icon --> <!-- Meta --> <meta charset='utf-8'/> <meta content="Just For Fun!" name="subject"/> <meta content="Hacked by r1p code" name="description"/> <meta content="r1p code ,Indonesia ,Hacker ,Defacer ,Attacker ,Security Tester ,Coder" name="keywords"/> <meta content="r1p code" name="owner"/> <meta content="facebook.com/r1pcode" name="fanspage"/> <meta content="Indonesia" name="country"/> <meta content="archive,index,follow" name="robots"/> <meta content="noodp" name="googlebot"/> <meta content="noodp" name="robots"/&g ...[2641 bytes skipped]... | ||
http://europeindexonline.com/test404page.js | 404 Not Found Content-Length: 11812 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.9.1.js | 200 OK Content-Length: 268381 Content-Type: application/javascript | clean |
http://europeindexonline.com/cgi-sys/js/simple-expand.min.js | 200 OK Content-Length: 2782 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: europeindexonline.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Wed, 02 Dec 2015 00:54:30 GMT
Pragma: no-cache
Server: nginx/1.8.0
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 928f637c73cde9821bf7af2ea46f81e1=4f4808387320ba09d72df0082495f236; path=/
GET / HTTP/1.1
Host: europeindexonline.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Wed, 02 Dec 2015 00:54:30 GMT
Pragma: no-cache
Server: nginx/1.8.0
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 928f637c73cde9821bf7af2ea46f81e1=4f4808387320ba09d72df0082495f236; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: europeindexonline.com
Referer: http://www.google.com/search?q=europeindexonline.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: europeindexonline.com
Referer: http://www.google.com/search?q=europeindexonline.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=europeindexonline.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://europeindexonline.com/
Result: europeindexonline.com is not infected or malware details are not published yet.
Result: europeindexonline.com is not infected or malware details are not published yet.