Scanned pages/files
Request | Server response | Status |
http://calcsoft.ru/ | 200 OK Content-Length: 6938 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by 7CodeCrew ...[5661 bytes skipped]... com/thumbnails/detail/20121203/anonymous%20dark%20v%20for%20vendetta%20black%20background%201280x800%20wallpaper_www.wall321.com_12.jpg) center no-repeat fixed; -webkit-background-size: cover; -moz-background-size: cover; -o-background-size: cover; background-size: cover; background-color:#000000; } #q {font: 40px impact;color:#ffffff;} </style> <title>Hacked by 7CodeCrew</title> <center><img src="https://fbcdn-sphotos-e-a.akamaihd.net/hphotos-ak-xpa1/v/t1.0-9/10628231_749604555078760_1485734164052209607_n.jpg?oh=a836ed879df898b94d63ff50dd342149&oe=54E38B86&__gda__=1425226814_0109f842f90221b651c139813cc0c1fe" width="" height=""/></center> <h3 align="center"><font face="Orbitron" size="7" style="background: url("http://i106.photobucket.com/albums/m280/YukioKenshin/chopnhay.gif& ...[1712 bytes skipped]... | ||
http://calcsoft.ru/test404page.js | 200 OK Content-Length: 6938 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: calcsoft.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 16 Nov 2014 06:01:09 GMT
Server: nginx/1.4.7
Vary: Accept-Encoding
Vary: Accept-Encoding
Content-Length: 6938
Content-Type: text/html
X-Powered-By: PHP/5.3.29
...6938 bytes of data.
GET / HTTP/1.1
Host: calcsoft.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 16 Nov 2014 06:01:09 GMT
Server: nginx/1.4.7
Vary: Accept-Encoding
Vary: Accept-Encoding
Content-Length: 6938
Content-Type: text/html
X-Powered-By: PHP/5.3.29
...6938 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: calcsoft.ru
Referer: http://www.google.com/search?q=calcsoft.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: calcsoft.ru
Referer: http://www.google.com/search?q=calcsoft.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=calcsoft.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://calcsoft.ru/
Result: calcsoft.ru is not infected or malware details are not published yet.
Result: calcsoft.ru is not infected or malware details are not published yet.