Scanned pages/files
| Request | Server response | Status |
http://golfcremaresort.com/ | HTTP/1.1 303 See other Connection: close Date: Mon, 30 Jun 2014 19:48:10 GMT Location: http://www.golfcremaresort.com/index.php/it/ Server: Apache/2.2.3 (CentOS) Content-Type: text/html; charset=utf-8 Set-Cookie: bfa4ebef066197aefbec46514933a89a=q16crb2o04mrsic1uvos03dip7; path=/ X-Powered-By: PHP/5.2.17 | clean |
http://www.golfcremaresort.com/index.php/it/ | 200 OK Content-Length: 72141 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: !--Hacked by -- <!--Hacked by -->
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd"> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="it-it" lang="it-it"> <head> <script type="text/javascript"> var siteurl='/'; var tmplurl='/templates/ ...[85685 bytes skipped]... | ||
http://www.golfcremaresort.com/media/system/js/mootools-core.js | 200 OK Content-Length: 96362 Content-Type: application/x-javascript | clean |
http://golfcremaresort.com/media/system/js/core.js | 200 OK Content-Length: 4784 Content-Type: application/x-javascript | clean |
http://golfcremaresort.com/media/system/js/mootools-more.js | 200 OK Content-Length: 238331 Content-Type: application/x-javascript | clean |
http://golfcremaresort.com/plugins/system/jat3/jat3/base-themes/default/js/core.js | 200 OK Content-Length: 5782 Content-Type: application/x-javascript | clean |
http://golfcremaresort.com/templates/sasu_black/js/ja.more.js | 200 OK Content-Length: 585 Content-Type: application/x-javascript | clean |
http://golfcremaresort.com/plugins/system/jat3/jat3/base-themes/default/js/menu/split.js | 200 OK Content-Length: 1164 Content-Type: application/x-javascript | clean |
http://golfcremaresort.com/media/system/js/modal.js | 200 OK Content-Length: 9732 Content-Type: application/x-javascript | clean |
http://golfcremaresort.com//ajax.googleapis.com/ajax/libs/jquery/1.7/jquery.min.js/ | HTTP/1.1 303 See other Connection: close Date: Mon, 30 Jun 2014 19:48:17 GMT Location: http://www.golfcremaresort.com/index.php/it/ajax.googleapis.com/ajax/libs/jquery/1.7/jquery.min.js Server: Apache/2.2.3 (CentOS) Content-Type: text/html; charset=utf-8 Set-Cookie: bfa4ebef066197aefbec46514933a89a=pcpml5akj5flhsuc79tuhvron0; path=/ X-Powered-By: PHP/5.2.17 | clean |
http://www.golfcremaresort.com/index.php/it/ajax.googleapis.com/ajax/libs/jquery/1.7/jquery.min.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://www.golfcremaresort.com/test404page.js | 404 Not Found Content-Length: 300 Content-Type: text/html | clean |
http://golfcremaresort.com/components/com_k2/js/k2.js | 200 OK Content-Length: 6820 Content-Type: application/x-javascript | clean |
http://www.golfcremaresort.com/components/com_k2store/js/k2store.js | 200 OK Content-Length: 7544 Content-Type: application/x-javascript | clean |
http://golfcremaresort.com/media/system/js/caption.js | 200 OK Content-Length: 729 Content-Type: application/x-javascript | clean |
http://www.golfcremaresort.com/plugins/system/jatypo/jatypo/assets/script.js | 200 OK Content-Length: 5273 Content-Type: application/x-javascript | clean |
http://www.golfcremaresort.com/modules/mod_news_pro_gk4/interface/scripts/engine.js | 200 OK Content-Length: 8034 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: golfcremaresort.com
Result:
HTTP/1.1 303 See other
Connection: close
Date: Mon, 30 Jun 2014 19:48:10 GMT
Location: http://www.golfcremaresort.com/index.php/it/
Server: Apache/2.2.3 (CentOS)
Content-Type: text/html; charset=utf-8
Set-Cookie: bfa4ebef066197aefbec46514933a89a=q16crb2o04mrsic1uvos03dip7; path=/
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: golfcremaresort.com
Result:
HTTP/1.1 303 See other
Connection: close
Date: Mon, 30 Jun 2014 19:48:10 GMT
Location: http://www.golfcremaresort.com/index.php/it/
Server: Apache/2.2.3 (CentOS)
Content-Type: text/html; charset=utf-8
Set-Cookie: bfa4ebef066197aefbec46514933a89a=q16crb2o04mrsic1uvos03dip7; path=/
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: golfcremaresort.com
Referer: http://www.google.com/search?q=golfcremaresort.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: golfcremaresort.com
Referer: http://www.google.com/search?q=golfcremaresort.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=golfcremaresort.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://golfcremaresort.com/
Result: golfcremaresort.com is not infected or malware details are not published yet.
Result: golfcremaresort.com is not infected or malware details are not published yet.