Scanned pages/files
| Request | Server response | Status |
http://optionstrading.es/ | 200 OK Content-Length: 9339 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY HACKINGTHUNDER <h3 align="center"><font face="Orbitron" size="7" style="background: url("http://i106.photobucket.com/albums/m280/YukioKenshin/chopnhay.gif") repeat scroll 0% 0% transparent; color:Yellow; text-shadow: 0pt 0pt 0.9em red, 0pt 2pt 0.9em red;"><b> HACKINGTHUNDER WAS HERE </b></font></h2>
<html> <head> <title> HACKED BY HACKINGTHUNDER </title> <script language="JavaScript1.2"> var speed=1 var currentpos=0,alt=1,curpos1=0,curpos2=-1 function initialize(){ startit() } function scrollwindow(){ if (document.all) temp=document.body.scrollTop else ...[10690 bytes skipped]... | ||
http://htmlfreecodes.com/userdata/heart.js | 200 OK Content-Length: 226 Content-Type: application/javascript | clean |
http://optionstrading.es/test404page.js | 404 Not Found Content-Length: 7323 Content-Type: text/html | clean |
http://optionstrading.es/wp-includes/js/jquery/jquery.js?ver=1.11.3 | 200 OK Content-Length: 95977 Content-Type: text/javascript | clean |
http://optionstrading.es/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: text/javascript | clean |
http://optionstrading.es/wp-content/themes/nest/scripts/nest-menu-arrow.js?ver=4.3.1 | 200 OK Content-Length: 173 Content-Type: text/javascript | clean |
http://optionstrading.es/wp-content/themes/nest/scripts/nest-menu-effect-fade.js?ver=4.3.1 | 200 OK Content-Length: 291 Content-Type: text/javascript | clean |
http://s0.wp.com/wp-content/js/devicepx-jetpack.js?ver=201542 | 200 OK Content-Length: 9885 Content-Type: application/x-javascript | clean |
http://stats.wp.com/e-201542.js | 200 OK Content-Length: 3334 Content-Type: application/x-javascript | clean |
http://optionstrading.es/binary-option-brokers | 200 OK Content-Length: 11619 Content-Type: text/html | clean |
http://optionstrading.es/wp-includes/js/comment-reply.min.js?ver=4.3.1 | 200 OK Content-Length: 757 Content-Type: text/javascript | clean |
http://optionstrading.es/binary-option-brokers/optionbit | 200 OK Content-Length: 11731 Content-Type: text/html | clean |
http://optionstrading.es/binary-option-trading | 200 OK Content-Length: 10935 Content-Type: text/html | clean |
http://optionstrading.es/contact-us | 200 OK Content-Length: 12154 Content-Type: text/html | clean |
http://optionstrading.es/feed | 200 OK Content-Length: 39397 Content-Type: application/rss+xml | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: optionstrading.es
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 12 Oct 2015 17:18:25 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 9339
Content-Type: text/html
Last-Modified: Thu, 11 Dec 2014 10:00:31 GMT
...9339 bytes of data.
GET / HTTP/1.1
Host: optionstrading.es
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 12 Oct 2015 17:18:25 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 9339
Content-Type: text/html
Last-Modified: Thu, 11 Dec 2014 10:00:31 GMT
...9339 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: optionstrading.es
Referer: http://www.google.com/search?q=optionstrading.es
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: optionstrading.es
Referer: http://www.google.com/search?q=optionstrading.es
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=optionstrading.es
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://optionstrading.es/
Result: optionstrading.es is not infected or malware details are not published yet.
Result: optionstrading.es is not infected or malware details are not published yet.