New scan:

Malware Scanner report for nekorpa.org

Malicious/Suspicious/Total urls checked
0/0/9
Blacklists
OK
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
Found
Probably the website is defaced. The following signature was found:

Hacked by k2 Attacker  (4 websites defaced)

See details below

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Scanned pages/files

RequestServer responseStatus
http://www.nekorpa.org/
200 OK
Content-Length: 2255
Content-Type: text/html
suspicious
Deface/Content modification. The following signature was found: Hacked by k2 Attacker

...[210 bytes skipped]...
href="http://treatment-paypal.cf/k2.png"/>
<script src="http://kend.esy.es/files/salju.js"></script>
<body bgcolor="black">
<center>
<link href='http://fonts.googleapis.com/css?family=Orbitron:700' rel='stylesheet' type='text/css'>


<p align="center"><font face="Orbitron" size="30" color="#00ffff" style="text-shadow: 0px 1px 9px lime;">Hacked by k2 Attacker</font></p>
<p align="center"><font face="Orbitron" size="5" color="#00ffff" style="text-shadow: 0px 1px 9px lime;">kikiw ft. kendri</font></p>
<center><style type="text/css"> .img_OW{ position:relative } </style> <script src="http://otowebsite.googlecode.com/files/Getar.js.txt" type="text/javascript"></script> <a href="https://www.facebook.com/pages/K2-Attacker/1618538951725384?fref=ts" tar
...[1518 bytes skipped]...


http://kend.esy.es/files/salju.js
HTTP/1.1 200 OK
Connection: close
Date: Thu, 25 Jun 2015 19:37:07 GMT
Server: nginx/1.7.11
Vary: Accept-Encoding
Content-Type: text/html
clean
http://www.hostinger.lt/klaida_404?
200 OK
Content-Length: 11736
Content-Type: text/html
clean
http://ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js
200 OK
Content-Length: 91556
Content-Type: text/javascript
clean
http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.14/jquery-ui.min.js
200 OK
Content-Length: 201658
Content-Type: text/javascript
clean
http://kend.esy.es/js/site.php
HTTP/1.1 200 OK
Connection: close
Date: Thu, 25 Jun 2015 19:37:08 GMT
Server: nginx/1.7.11
Content-Type: text/html; charset=UTF-8
clean
http://www.hostinger.lt/test404page.js
404 Not Found
Content-Length: 331
Content-Type: text/html
clean
http://kend.esy.es/js/popup.js
HTTP/1.1 200 OK
Connection: close
Date: Thu, 25 Jun 2015 19:37:09 GMT
Server: nginx/1.7.11
Vary: Accept-Encoding
Content-Type: text/html
clean
http://otowebsite.googlecode.com/files/Getar.js.txt
200 OK
Content-Length: 739
Content-Type: text/plain
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: nekorpa.org

Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: nekorpa.org
Referer: http://www.google.com/search?q=nekorpa.org

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=nekorpa.org

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://nekorpa.org/

Result: nekorpa.org is not infected or malware details are not published yet.