Scanned pages/files
Request | Server response | Status |
http://leodecerca.net/ | 200 OK Content-Length: 33465 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by ...[37026 bytes skipped]... kset"></ul> </div><!-- .footer --> <div class="copyrights"> <p><a href="http://leodecerca.net">leodecerca</a> 2014 Creative Commons Share Alike</p> <p>Quiero ser inmortal y después morirme.</p> </div> <div class="credits"> <p>Hacked by <a href="http://www.tallergorilas.com/">tallergorilas.com</a> based in <a href="http://wpshower.com">WPSHOWER</a></p> <p>Powered by <a href="http://wordpress.org">WordPress</a></p> </div> <div class="clear"></div> </div> <!-- .wrapper --> <script type="text/javascript"> var _gaq = _gaq || [ ...[516 bytes skipped]... | ||
http://leodecerca.net/wp-includes/js/l10n.js?ver=20101110 | 200 OK Content-Length: 308 Content-Type: application/javascript | clean |
http://leodecerca.net/wp-includes/js/jquery/jquery.js?ver=1.6.1 | 200 OK Content-Length: 91363 Content-Type: application/javascript | clean |
http://leodecerca.net/wp-content/themes/unspoken/lib/js/jcarousellite_1.0.1_mod.js?ver=3.2.1 | 200 OK Content-Length: 4230 Content-Type: application/javascript | clean |
http://leodecerca.net/wp-content/themes/unspoken/lib/js/fancybox/jquery.fancybox-1.3.4.pack.js?ver=3.2.1 | 200 OK Content-Length: 15624 Content-Type: application/javascript | clean |
http://leodecerca.net/wp-content/themes/unspoken/lib/js/scripts.js?ver=3.2.1 | 200 OK Content-Length: 15686 Content-Type: application/javascript | clean |
http://del.icio.us/js/playtagger | HTTP/1.1 301 Moved Permanently Connection: Close Date: Tue, 29 Apr 2014 01:17:11 GMT Location: http://delicious.com/js/playtagger Server: nginx/1.0.11 Content-Length: 185 Content-Type: text/html | clean |
http://delicious.com/js/playtagger | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache Connection: Close Date: Tue, 29 Apr 2014 01:15:23 GMT Location: https://delicious.com/js/playtagger Server: nginx Content-Length: 178 Content-Type: text/html Expires: Thu, 01 Jan 1970 00:00:01 GMT | clean |
https://delicious.com/js/playtagger | 200 OK Content-Length: 2993 Content-Type: text/html | clean |
https://delicious.com/js/vendor/modernizr/modernizr.js | 200 OK Content-Length: 50144 Content-Type: application/x-javascript | clean |
http://del.icio.us/js/vendor/requirejs/require.js | HTTP/1.1 301 Moved Permanently Connection: Close Date: Tue, 29 Apr 2014 01:17:14 GMT Location: http://delicious.com/js/vendor/requirejs/require.js Server: nginx/1.0.11 Content-Length: 185 Content-Type: text/html | clean |
http://delicious.com/js/vendor/requirejs/require.js | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=315360000 Connection: Close Date: Tue, 29 Apr 2014 01:15:27 GMT Location: https://delicious.com/js/vendor/requirejs/require.js Server: nginx Content-Length: 178 Content-Type: text/html Expires: Thu, 31 Dec 2037 23:55:55 GMT | clean |
https://delicious.com/js/vendor/requirejs/require.js | 200 OK Content-Length: 82718 Content-Type: application/x-javascript | clean |
http://del.icio.us/test404page.js | HTTP/1.1 301 Moved Permanently Connection: Close Date: Tue, 29 Apr 2014 01:17:17 GMT Location: http://delicious.com/test404page.js Server: nginx/1.0.11 Content-Length: 185 Content-Type: text/html | clean |
http://delicious.com/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=315360000 Connection: Close Date: Tue, 29 Apr 2014 01:17:25 GMT Location: https://delicious.com/test404page.js Server: nginx Content-Length: 178 Content-Type: text/html Expires: Thu, 31 Dec 2037 23:55:55 GMT | clean |
https://delicious.com/test404page.js | 404 Not Found Content-Length: 564 Content-Type: text/html | clean |
http://leodecerca.net/wp-content/plugins/simpleflickr/swfobject/swfobject.js | 200 OK Content-Length: 8868 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: leodecerca.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 29 Apr 2014 01:17:13 GMT
Pragma: no-cache
Accept-Ranges: bytes
Server: Apache
Content-Length: 33465
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Host-Header: 192fc2e7e50945beb8231a492d6a8024
Set-Cookie: PHPSESSID=le1boe9ur6f9hthmrsg8648fc6; path=/
Set-Cookie: mode=list; expires=Thu, 29-May-2014 01:17:13 GMT; path=/
Set-Cookie: slimstat_tracking_code=02930e30f7f81ff2d36abc33aba207b6; expires=Tue, 29-Apr-2014 01:47:13 GMT; path=/
X-Cache: SGCACHE-MISS
X-Forwarded-For: 78.158.11.226
X-Host: leodecerca.net
X-Pingback: http://leodecerca.net/xmlrpc.php
X-Url: /
...33465 bytes of data.
GET / HTTP/1.1
Host: leodecerca.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 29 Apr 2014 01:17:13 GMT
Pragma: no-cache
Accept-Ranges: bytes
Server: Apache
Content-Length: 33465
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Host-Header: 192fc2e7e50945beb8231a492d6a8024
Set-Cookie: PHPSESSID=le1boe9ur6f9hthmrsg8648fc6; path=/
Set-Cookie: mode=list; expires=Thu, 29-May-2014 01:17:13 GMT; path=/
Set-Cookie: slimstat_tracking_code=02930e30f7f81ff2d36abc33aba207b6; expires=Tue, 29-Apr-2014 01:47:13 GMT; path=/
X-Cache: SGCACHE-MISS
X-Forwarded-For: 78.158.11.226
X-Host: leodecerca.net
X-Pingback: http://leodecerca.net/xmlrpc.php
X-Url: /
...33465 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: leodecerca.net
Referer: http://www.google.com/search?q=leodecerca.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: leodecerca.net
Referer: http://www.google.com/search?q=leodecerca.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=leodecerca.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://leodecerca.net/
Result: leodecerca.net is not infected or malware details are not published yet.
Result: leodecerca.net is not infected or malware details are not published yet.