Scanned pages/files
Request | Server response | Status |
http://panciapiatta.eu/ | 200 OK Content-Length: 1065 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 1x0 src: http://www.youtube.com/embed/vr8dr8frp_s?rel=0&autoplay=1&loop=1&playlist=vr8dr8frp_s <iframe src="http://www.youtube.com/embed/vr8dr8frp_s?rel=0&autoplay=1&loop=1&playlist=vr8dr8frp_s" allowfullscreen="" frameborder="0" height="0" width="1"> Deface/Content modification. The following signature was found: Hacked by KecoaNgesot007 <title>KecoaNgesot007</title>
<body bgcolor=black> <p align="right" width="480" height="480"> <img src="http://maremare.url.ph/1891042_1391362081130773_731299715_n.jpg" ></p> <table width=0% height=0%><td align=left><span style='font: 40px Garamond;size:40px;color:white;text-shadow: 0px 0px 50px;'><strong>Hacked by KecoaNgesot007 <br> <table width=0% height=0%><td align=left><span style='font: 20px Garamond;size:40px;color:white;text-shadow: 0px 0px 50px;'><strong>" Which then, of the favours of your Lord, will you deny? " - Surah Ar-Rahman <script type='text/javascript'> var DADrightclicktheme = 'Dark'; var DADrightclickimage = 'http://maremare.url.ph/anak-megang-bendera.jpg'; &l ...[434 bytes skipped]... | ||
https://dickyz.googlecode.com/files/DickyzAntiKlikKanan.js | 200 OK Content-Length: 2016 Content-Type: text/plain | clean |
https://dickyz.googlecode.com/files/ | 404 Not Found Content-Length: 1431 Content-Type: text/html | clean |
https://dickyz.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://dickyz.googlecode.com/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://dickyz.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://goo.gl/ijGD6 | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, no-store, max-age=0, must-revalidate Connection: close Date: Sat, 23 May 2015 10:27:01 GMT Pragma: no-cache Accept-Ranges: none Location: http://peterjepimarsblog.googlecode.com/files/mousegetar.js Server: GSE Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Fri, 01 Jan 1990 00:00:00 GMT Alternate-Protocol: 80:quic,p=0 X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://peterjepimarsblog.googlecode.com/files/mousegetar.js | 200 OK Content-Length: 6974 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: panciapiatta.eu
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 23 May 2015 09:50:22 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Length: 1065
Content-Type: text/html
X-Powered-By: PHP/5.3.29
...1065 bytes of data.
GET / HTTP/1.1
Host: panciapiatta.eu
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 23 May 2015 09:50:22 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Length: 1065
Content-Type: text/html
X-Powered-By: PHP/5.3.29
...1065 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: panciapiatta.eu
Referer: http://www.google.com/search?q=panciapiatta.eu
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: panciapiatta.eu
Referer: http://www.google.com/search?q=panciapiatta.eu
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=panciapiatta.eu
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://panciapiatta.eu/
Result: panciapiatta.eu is not infected or malware details are not published yet.
Result: panciapiatta.eu is not infected or malware details are not published yet.