Scanned pages/files
Request | Server response | Status |
http://www.laboutiquedeglieventi.com/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 12 Jul 2015 20:32:04 GMT Location: http://www.laboutiquedeglieventi.com/it Server: Apache/2.2.4 (Linux/SUSE) Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.2.6 | clean |
http://www.laboutiquedeglieventi.com/it | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 12 Jul 2015 20:32:06 GMT Location: http://www.laboutiquedeglieventi.com/it/ Server: Apache/2.2.4 (Linux/SUSE) Content-Length: 346 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.laboutiquedeglieventi.com/it/ | 200 OK Content-Length: 4892 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By
<HTML><HEAD><TITLE>Defaced by Mr OsSaMa</TITLE>
<STYLE type=text/css>BODY { SCROLLBAR-FACE-COLOR: #000000; SCROLLBAR-HIGHLIGHT-COLOR: #000000; SCROLLBAR-SHADOW-COLOR: #000000; SCROLLBAR-BASE-COLOR: #000000} </STYLE> <META http-equiv=Content-Type content="text/html; charset=windows-1251"> <SCRIPT language=JavaScript> <!-- ...[6097 bytes skipped]... | ||
http://www.laboutiquedeglieventi.com/test404page.js | 404 Not Found Content-Length: 1211 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: laboutiquedeglieventi.com
Result:
GET / HTTP/1.1
Host: laboutiquedeglieventi.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: laboutiquedeglieventi.com
Referer: http://www.google.com/search?q=laboutiquedeglieventi.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: laboutiquedeglieventi.com
Referer: http://www.google.com/search?q=laboutiquedeglieventi.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=laboutiquedeglieventi.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://laboutiquedeglieventi.com/
Result: laboutiquedeglieventi.com is not infected or malware details are not published yet.
Result: laboutiquedeglieventi.com is not infected or malware details are not published yet.