Scanned pages/files
Request | Server response | Status |
http://calendaron.com/ | 200 OK Content-Length: 301971 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: hacked by AlfabetoVirtual ...[31297 bytes skipped]... background-color:#fff;margin:-22px -22px;top:50%;left:50%;z-index:10000;position:absolute;width:44px;height:44px;border-radius:3px;-moz-border-radius:3px;-webkit-border-radius:3px}</style><style type="text/css" media="all"><body bgcolor=black><table width=100% height=100%><td align=center><span style='font:40px tahoma;size:40px;color:white;text-shadow:0px 0px 50px;'><strong>hacked by AlfabetoVirtual<p style='color:transparent'></style><style type="text/css" media="all"> .symple-clear-floats{clear:both}.symple-clearfix:after{content:".";display:block;clear:both;visibility:hidden;line-height:0;height:0}.symple-fadein{opacity:0}.symple-spacing{display:block;height:auto;margin:0 !important;padding:0 !important;background:none !important;border:none !important;outline:none !important}.symple-divider{display:block;width:100%;height:0;margin:0;background ...[272547 bytes skipped]... | ||
http://calendaron.com/test404page.js | 404 Not Found Content-Length: 303243 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: calendaron.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 07 Oct 2015 23:51:27 GMT
Pragma: no-cache
Server: nginx/1.8.0
Vary: Cookie
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Link: <http://calendaron.com/>; rel=shortlink
Set-Cookie: PHPSESSID=38c6a847d76a8011e0dee189f1ef90d9; path=/
Set-Cookie: wfvt_316095871=5615affe84de5; expires=Thu, 08-Oct-2015 00:21:26 GMT; path=/; httponly
X-Pingback: http://calendaron.com/xmlrpc.php
X-UA-Compatible: IE=edge,chrome=1
GET / HTTP/1.1
Host: calendaron.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 07 Oct 2015 23:51:27 GMT
Pragma: no-cache
Server: nginx/1.8.0
Vary: Cookie
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Link: <http://calendaron.com/>; rel=shortlink
Set-Cookie: PHPSESSID=38c6a847d76a8011e0dee189f1ef90d9; path=/
Set-Cookie: wfvt_316095871=5615affe84de5; expires=Thu, 08-Oct-2015 00:21:26 GMT; path=/; httponly
X-Pingback: http://calendaron.com/xmlrpc.php
X-UA-Compatible: IE=edge,chrome=1
Second query (visit from search engine):
GET / HTTP/1.1
Host: calendaron.com
Referer: http://www.google.com/search?q=calendaron.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: calendaron.com
Referer: http://www.google.com/search?q=calendaron.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=calendaron.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://calendaron.com/
Result: calendaron.com is not infected or malware details are not published yet.
Result: calendaron.com is not infected or malware details are not published yet.