Scanned pages/files
Request | Server response | Status |
http://carpinteria.biz/ | 200 OK Content-Length: 49160 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: keydown+AD0AIg-return false+ACIAPg +ADw-title+AD4-Hacked By White-Shadow - B3YAZ.ORG+ADw-/title+AD4 ...[840 bytes skipped]... sableselect(e)+AHs if (omitformtags.indexOf(e.target.tagName.toLowerCase())+AD0APQ--1) return false +AH0 function reEnable()+AHs return true +AH0 if (typeof document.onselectstart+ACEAPQAi-undefined+ACI) document.onselectstart+AD0-new Function (+ACI-return false+ACI) else+AHs document.onmousedown+AD0-disableselect document.onmouseup+AD0-reEnable +AH0 +ADw-/script+AD4 +ADw-body onkeydown+AD0AIg-return false+ACIAPg +ADw-title+AD4-Hacked By White-Shadow - B3YAZ.ORG+ADw-/title+AD4 +ADw-style type+AD0AIg-text/css+ACIAPg +ADwAIQ--- body +AHs background-color: +ACM-000+ADs +AH0 body,td,th +AHs color: +ACM-800+ADs font-family: +ACI-Lucida Sans Unicode+ACI, +ACI-Lucida Grande+ACI, sans-serif+ADs font-size: xx-large+ADs font-weight: bold+ADs +AH0 .style2 +AHs-color: +ACM-FF0000+AH0 .style8 +AHs-font-size: 14px+AH0 .style9 +AHs-color: +ACM-FFFFFF+AH0 --+AD4 +ADw-/style+AD4 +ADw-center+AD4 +ADw-body background+AD0AIg ...[51098 bytes skipped]... | ||
http://carpinteria.biz/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: application/javascript | clean |
http://carpinteria.biz/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://carpinteria.biz/wp-content/plugins/google-analyticator/external-tracking.min.js?ver=6.4.7.1 | 200 OK Content-Length: 1183 Content-Type: application/javascript | clean |
http://carpinteria.biz/wp-includes/js/jquery/jquery.masonry.min.js?ver=2.1.05 | 200 OK Content-Length: 5467 Content-Type: application/javascript | clean |
http://carpinteria.biz/wp-content/themes/twentythirteen/js/functions.js?ver=2013-07-18 | 200 OK Content-Length: 2038 Content-Type: application/javascript | clean |
http://carpinteria.biz/carpintera-aluminio/ | 200 OK Content-Length: 48697 Content-Type: text/html | clean |
http://carpinteria.biz/carpintera-fibrofcil/ | 200 OK Content-Length: 48747 Content-Type: text/html | clean |
http://carpinteria.biz/carpintera-vidrio/ | 200 OK Content-Length: 48830 Content-Type: text/html | clean |
http://carpinteria.biz/ebanistera/ | 200 OK Content-Length: 48835 Content-Type: text/html | clean |
http://carpinteria.biz/aviso-legal/ | 200 OK Content-Length: 66083 Content-Type: text/html | clean |
http://carpinteria.biz/test404page.js | 404 Not Found Content-Length: 45928 Content-Type: text/html | clean |
http://carpinteria.biz/wp-content/uploads/2012/06/9.jpg | 200 OK Content-Length: 37782 Content-Type: image/jpeg | clean |
http://carpinteria.biz/wp-content/uploads/2012/06/3.jpg | 200 OK Content-Length: 31199 Content-Type: image/jpeg | clean |
http://carpinteria.biz/wp-content/uploads/2012/06/7.jpg | 200 OK Content-Length: 74734 Content-Type: image/jpeg | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: carpinteria.biz
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 07 Jun 2014 12:32:05 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-7
Link: <http://carpinteria.biz/?p=7>; rel=shortlink
X-Frame-Options: ALLOWALL
X-Pingback: http://carpinteria.biz/xmlrpc.php
GET / HTTP/1.1
Host: carpinteria.biz
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 07 Jun 2014 12:32:05 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-7
Link: <http://carpinteria.biz/?p=7>; rel=shortlink
X-Frame-Options: ALLOWALL
X-Pingback: http://carpinteria.biz/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: carpinteria.biz
Referer: http://www.google.com/search?q=carpinteria.biz
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: carpinteria.biz
Referer: http://www.google.com/search?q=carpinteria.biz
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=carpinteria.biz
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://carpinteria.biz/
Result: carpinteria.biz is not infected or malware details are not published yet.
Result: carpinteria.biz is not infected or malware details are not published yet.