Scanned pages/files
| Request | Server response | Status |
http://helisgalonia.net/ | 200 OK Content-Length: 83858 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: hacked by el moujahidin ...[76935 bytes skipped]... ass="views-row views-row-1 views-row-odd views-row-first clearfix"> <a href="/%C3%A9tiquettes/guild-wars2"><span class="icon tag"> </span>Guild Wars 2</a> </li> <li class="views-row views-row-2 views-row-even clearfix"> <a href="/%C3%A9tiquettes/hacked-el-moujahidin"><span class="icon tag"> </span>hacked by el moujahidin</a> </li> <li class="views-row views-row-3 views-row-odd clearfix"> <a href="/%C3%A9tiquettes/starmade"><span class="icon tag"> </span>Starmade</a> </li> <li class="views-row views-row-4 views-row-even clearfix"> <a href="/%C3%A9tiquettes/wildstar"><span class="icon tag"> </span>Wildstar</a> </li> ...[20666 bytes skipped]... | ||
http://helisgalonia.net/sites/default/files/js/js_xAPl0qIk9eowy_iS9tNkCWXLUVoat94SQT48UBCFkyQ.js | 200 OK Content-Length: 96126 Content-Type: text/javascript | clean |
http://helisgalonia.net/sites/default/files/js/js_Zc7hbJu5dL-2E_9Gp_AMpb79lkTifZGMpXgU-1B44tU.js | 200 OK Content-Length: 12485 Content-Type: text/javascript | clean |
http://helisgalonia.net/sites/default/files/js/js_M17VLTNDfbVBnfW_ih2PNvGi1n9QnYzHgpfRnTE_SxE.js | 200 OK Content-Length: 2033 Content-Type: text/javascript | clean |
http://helisgalonia.net/sites/default/files/js/js_33GvWxl991WLr_WOamggylF38R99ITlFz1y3kQK2p4Q.js | 200 OK Content-Length: 82067 Content-Type: text/javascript | clean |
http://helisgalonia.net/user/login | 200 OK Content-Length: 26525 Content-Type: text/html | clean |
http://helisgalonia.net/sites/default/files/js/js_sv4LyvaI-X4nFeKSnAp_JptboGm82Skrpjy8IiKrohY.js | 200 OK Content-Length: 5832 Content-Type: text/javascript | clean |
http://helisgalonia.net/sites/default/files/js/js_f7elklV_NNwi8YaUxnkyeQYXrcTXPb5Vt5pMYqP1RsI.js | 200 OK Content-Length: 82025 Content-Type: text/javascript | clean |
http://helisgalonia.net/user/ | 200 OK Content-Length: 55801 Content-Type: text/html | clean |
http://helisgalonia.net/user/register | 200 OK Content-Length: 27742 Content-Type: text/html | clean |
http://helisgalonia.net/sites/default/files/js/js_I23gxiikXxx_6GGz6rJ54UoPf8kO1zLBQwc8jUznXYM.js | 200 OK Content-Length: 3425 Content-Type: text/javascript | clean |
http://helisgalonia.net/guild-wars2 | 200 OK Content-Length: 75309 Content-Type: text/html | clean |
http://helisgalonia.net/sites/default/files/js/js_n7Lw7PPN-xdTJcPryjHWWwcX-NVLfdUvNwg6eFAlc8I.js | 200 OK Content-Length: 33420 Content-Type: text/javascript | clean |
http://helisgalonia.net/sites/default/files/js/js_lz24pg5ODRcIT63B9bOZTMU5FW_wZLU5jaHMiR06WCQ.js | 200 OK Content-Length: 20278 Content-Type: text/javascript | clean |
http://helisgalonia.net/sujet-de-discussion/vous-joindre-%C3%A0-helis-galonia-comment-faire | 200 OK Content-Length: 23272 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: helisgalonia.net
Result:
HTTP/1.1 200 OK
Cache-Control: public, max-age=300
Connection: close
Date: Sun, 09 Aug 2015 22:31:21 GMT
ETag: W/"1438261519-1"
Server: cloudflare-nginx
Vary: Cookie,Accept-Encoding
Content-Language: fr
Content-Type: text/html; charset=utf-8
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Thu, 30 Jul 2015 13:05:19 +0000
CF-RAY: 2136e925783f0ae4-WAW
Set-Cookie: __cfduid=dfd4661186e885f07364e8daa2b0fb39d1439159481; expires=Mon, 08-Aug-16 22:31:21 GMT; path=/; domain=.helisgalonia.net; HttpOnly
X-Drupal-Cache: HIT
X-Generator: Drupal 7 (http://drupal.org)
X-Powered-By: PHP/5.3.3
X-UA-Compatible: IE=Edge,chrome=1
GET / HTTP/1.1
Host: helisgalonia.net
Result:
HTTP/1.1 200 OK
Cache-Control: public, max-age=300
Connection: close
Date: Sun, 09 Aug 2015 22:31:21 GMT
ETag: W/"1438261519-1"
Server: cloudflare-nginx
Vary: Cookie,Accept-Encoding
Content-Language: fr
Content-Type: text/html; charset=utf-8
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Thu, 30 Jul 2015 13:05:19 +0000
CF-RAY: 2136e925783f0ae4-WAW
Set-Cookie: __cfduid=dfd4661186e885f07364e8daa2b0fb39d1439159481; expires=Mon, 08-Aug-16 22:31:21 GMT; path=/; domain=.helisgalonia.net; HttpOnly
X-Drupal-Cache: HIT
X-Generator: Drupal 7 (http://drupal.org)
X-Powered-By: PHP/5.3.3
X-UA-Compatible: IE=Edge,chrome=1
Second query (visit from search engine):
GET / HTTP/1.1
Host: helisgalonia.net
Referer: http://www.google.com/search?q=helisgalonia.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: helisgalonia.net
Referer: http://www.google.com/search?q=helisgalonia.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=helisgalonia.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://helisgalonia.net/
Result: helisgalonia.net is not infected or malware details are not published yet.
Result: helisgalonia.net is not infected or malware details are not published yet.