Scanned pages/files
| Request | Server response | Status |
http://yopegu.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 22 Jul 2015 12:28:16 GMT Location: http://www.yopegu.de/ Server: Apache Vary: Accept-Encoding Content-Length: 229 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.yopegu.de/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 22 Jul 2015 12:28:16 GMT ETag: "1437568096" Location: http://www.yopegu.de/de Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Wed, 22 Jul 2015 12:28:16 +0000 | clean |
http://www.yopegu.de/de | 200 OK Content-Length: 29396 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Hamzah Uygun RSS <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML+RDFa 1.0//EN" "http://www.w3.org/MarkUp/DTD/xhtml-rdfa-1.dtd"> <html class="no-js" lang="de" dir="ltr"> <head> <meta charset="utf-8" /> <link rel="shortcut icon" href="http://www.yopegu.de/sites/default/files//favicon.ico" type="image/vnd.microsoft.icon" /> <link rel="alternate" type="application/rss+xml" title="Hacked by Hamzah Uygun RSS" href="http://www.yopegu.de/de/rss.xml" /> <meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1" /> <meta name="p:domain_verify" content="6a9ddc131866e20efd2495bf365f6e7a"/> <title>Yopegu - Audioguides für Museen, Städte, Sehenswürdigkeiten</title> <style type="text/css" media="all">@import url("http://www.yopegu.de/modules/system/system.base. ...[33662 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js | 200 OK Content-Length: 94840 Content-Type: text/javascript | clean |
http://yopegu.com/sites/all/themes/pika/js/jquery.refineslide.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 22 Jul 2015 12:28:17 GMT Location: http://www.yopegu.de/sites/all/themes/pika/js/jquery.refineslide.js Server: Apache Vary: Accept-Encoding Content-Length: 275 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.yopegu.de/sites/all/themes/pika/js/jquery.refineslide.js | 200 OK Content-Length: 29554 Content-Type: application/javascript | clean |
http://www.yopegu.de/sites/all/modules/jquery_update/replace/jquery/1.7/jquery.min.js?v=1.7.1 | 200 OK Content-Length: 93868 Content-Type: application/javascript | clean |
http://www.yopegu.de/misc/jquery.once.js?v=1.2 | 200 OK Content-Length: 2974 Content-Type: application/javascript | clean |
http://www.yopegu.de/misc/drupal.js?mvqs2j | 200 OK Content-Length: 14544 Content-Type: application/javascript | clean |
http://www.yopegu.de/sites/all/modules/admin_menu/admin_devel/admin_devel.js?mvqs2j | 200 OK Content-Length: 982 Content-Type: application/javascript | clean |
http://www.yopegu.de/sites/all/libraries/colorbox/jquery.colorbox-min.js?mvqs2j | 200 OK Content-Length: 10641 Content-Type: application/javascript | clean |
http://www.yopegu.de/sites/all/modules/colorbox/js/colorbox.js?mvqs2j | 200 OK Content-Length: 373 Content-Type: application/javascript | clean |
http://www.yopegu.de/sites/all/modules/colorbox/styles/default/colorbox_style.js?mvqs2j | 200 OK Content-Length: 615 Content-Type: application/javascript | clean |
http://www.yopegu.de/sites/all/modules/google_analytics/googleanalytics.js?mvqs2j | 200 OK Content-Length: 3422 Content-Type: application/javascript | clean |
http://www.yopegu.de/sites/all/themes/pika/js/uniform.js?mvqs2j | 200 OK Content-Length: 19585 Content-Type: application/javascript | clean |
http://www.yopegu.de/sites/all/themes/pika/js/template.js?mvqs2j | 200 OK Content-Length: 6373 Content-Type: application/javascript | clean |
http://www.yopegu.de/sites/all/themes/pika/js/responsive.js?mvqs2j | 200 OK Content-Length: 1009 Content-Type: application/javascript | clean |
http://www.yopegu.de/sites/all/themes/pika/js/libs/modernizr-2.0.6.min.js?mvqs2j | 200 OK Content-Length: 16226 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: yopegu.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 22 Jul 2015 12:28:16 GMT
Location: http://www.yopegu.de/
Server: Apache
Vary: Accept-Encoding
Content-Length: 229
Content-Type: text/html; charset=iso-8859-1
...229 bytes of data.
GET / HTTP/1.1
Host: yopegu.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 22 Jul 2015 12:28:16 GMT
Location: http://www.yopegu.de/
Server: Apache
Vary: Accept-Encoding
Content-Length: 229
Content-Type: text/html; charset=iso-8859-1
...229 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: yopegu.com
Referer: http://www.google.com/search?q=yopegu.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: yopegu.com
Referer: http://www.google.com/search?q=yopegu.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=yopegu.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://yopegu.com/
Result: yopegu.com is not infected or malware details are not published yet.
Result: yopegu.com is not infected or malware details are not published yet.