Scanned pages/files
| Request | Server response | Status |
http://karbon.ro/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 15 Apr 2014 19:16:01 GMT Location: http://www.karbon.ro/ Server: nginx Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Cache: HIT from Backend X-Pingback: http://www.karbon.ro/xmlrpc.php X-Powered-By: PHP/5.2.17 | clean |
http://www.karbon.ro/ | 200 OK Content-Length: 820 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY DARKDRAGON ! Turkish Hacker! <html>
<title>Dark Dragon</title> <body bgcolor="#000000"> <div align="center"> <img src="https://fbcdn-sphotos-c-a.akamaihd.net/hphotos-ak-prn1/539294_559952800683018_515346917_n.jpg" alt="" /><br> <font size="5" face="Verdana" color"#C0C0C0"> HACKED BY DARKDRAGON ! Turkish Hacker! </font></br> <font size="1" color ="red"DarkDragon - aGeS - PcMonS</font>> <div display="none"> <center> <embed src="http://youtube.googleapis.com/v/o7wiLHm5mgI&hl=de_DE;autoplay=1;loop=1" height="1" width="1"></embed> <center> </div> </div> </body> </html> <html> </head> < ...[328 bytes skipped]... | ||
http://www.karbon.ro/test404page.js | 404 Not Found Content-Length: 11719 Content-Type: text/html | clean |
http://www.karbon.ro/wp-includes/js/jquery/jquery.js?ver=1.8.3 | 200 OK Content-Length: 93658 Content-Type: application/x-javascript | clean |
http://www.karbon.ro/wp-content/themes/ecosport/js/jquery.fancybox.js?ver=3.5.1 | 200 OK Content-Length: 15624 Content-Type: application/x-javascript | clean |
http://www.karbon.ro/wp-content/themes/ecosport/js/superfish.js?ver=3.5.1 | 200 OK Content-Length: 7176 Content-Type: application/x-javascript | clean |
http://www.karbon.ro/wp-content/themes/ecosport/js/jquery.orbit-1.2.3.min.js?ver=3.5.1 | 200 OK Content-Length: 4551 Content-Type: application/x-javascript | clean |
http://www.karbon.ro/wp-content/themes/ecosport/js/jquery.exposure.min.js?ver=3.5.1 | 200 OK Content-Length: 106289 Content-Type: application/x-javascript | clean |
http://www.karbon.ro/wp-content/themes/ecosport/js/jquery.validate.min.js?ver=3.5.1 | 200 OK Content-Length: 25361 Content-Type: application/x-javascript | clean |
http://www.karbon.ro/wp-content/themes/ecosport/js/jquery.jcarousel.min.js?ver=3.5.1 | 200 OK Content-Length: 15956 Content-Type: application/x-javascript | clean |
http://www.karbon.ro/wp-content/themes/ecosport/js/custom.js?ver=3.5.1 | 200 OK Content-Length: 11537 Content-Type: application/x-javascript | clean |
http://www.karbon.ro/evenimente/sibiu-streetball | 200 OK Content-Length: 17671 Content-Type: text/html | clean |
http://www.karbon.ro/wp-includes/js/comment-reply.min.js?ver=3.5.1 | 200 OK Content-Length: 786 Content-Type: application/x-javascript | clean |
http://www.karbon.ro/prezentare-generala | 200 OK Content-Length: 17779 Content-Type: text/html | clean |
http://www.karbon.ro/valori | 200 OK Content-Length: 17632 Content-Type: text/html | clean |
http://www.karbon.ro/echipa | 200 OK Content-Length: 18629 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: karbon.ro
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 15 Apr 2014 19:16:01 GMT
Location: http://www.karbon.ro/
Server: nginx
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Cache: HIT from Backend
X-Pingback: http://www.karbon.ro/xmlrpc.php
X-Powered-By: PHP/5.2.17
...0 bytes of data.
GET / HTTP/1.1
Host: karbon.ro
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 15 Apr 2014 19:16:01 GMT
Location: http://www.karbon.ro/
Server: nginx
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Cache: HIT from Backend
X-Pingback: http://www.karbon.ro/xmlrpc.php
X-Powered-By: PHP/5.2.17
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: karbon.ro
Referer: http://www.google.com/search?q=karbon.ro
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: karbon.ro
Referer: http://www.google.com/search?q=karbon.ro
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=karbon.ro
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://karbon.ro/
Result: karbon.ro is not infected or malware details are not published yet.
Result: karbon.ro is not infected or malware details are not published yet.