Scanned pages/files
| Request | Server response | Status |
http://casasabia.com/ | 200 OK Content-Length: 5183 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY VPROTEST-HALLELUJAH ...[4081 bytes skipped]... </div><div class="link_der1">cuidar el medioambiente</div></a></li> </ul> </div> <div id="bajo_portada"> <div id="bajo_portada_izq"> <div id="titulo"><img src="img_esp/tit_portada.gif" alt="Hola" width="77" height="29" /></div> <p style="text-align: justify"><font face="Verdana" size="1">HACKED BY VPROTEST-HALLELUJAH</font></p> </div> <div id="bajo_portada_der"> <div id="destacamos"> <div id="scroll" > <script src="js/newsscroller.js" type="text/javascript"></script> <script type="text/javascript"> var scrollerMain = new NewsScroller("main"); function MM_setTextOfTextfield(objId,x,newText) { //v9.0 with (document){ if (getElementById){ var obj = getElementById(objId ...[1792 bytes skipped]... | ||
http://casasabia.com/js/efectos.js | 200 OK Content-Length: 1118 Content-Type: application/x-javascript | clean |
http://casasabia.com/js/newsscroller.js | 200 OK Content-Length: 7876 Content-Type: application/x-javascript | clean |
http://casasabia.com/index.asp | 200 OK Content-Length: 5183 Content-Type: text/html | clean |
http://casasabia.com/quienes_somos.asp?nivel=quienes_somos | 200 OK Content-Length: 4009 Content-Type: text/html | clean |
http://casasabia.com/articulos.asp?nivel=articulos | 200 OK Content-Length: 4237 Content-Type: text/html | clean |
http://casasabia.com/enlaces.asp?nivel=enlaces | 200 OK Content-Length: 4279 Content-Type: text/html | clean |
http://casasabia.com/consulta.asp?nivel=consulta | 200 OK Content-Length: 6592 Content-Type: text/html | clean |
http://casasabia.com/js/formulario_experto.js | 200 OK Content-Length: 928 Content-Type: application/x-javascript | clean |
http://casasabia.com/patrocinadores.asp?nivel=patrocinadores | 200 OK Content-Length: 6882 Content-Type: text/html | clean |
http://casasabia.com/noticias.asp?nivel=noticias | 200 OK Content-Length: 5067 Content-Type: text/html | clean |
http://casasabia.com/contacto.asp?nivel=contacto | 200 OK Content-Length: 5695 Content-Type: text/html | clean |
http://casasabia.com/js/formulario.js | 200 OK Content-Length: 692 Content-Type: application/x-javascript | clean |
http://casasabia.com/ser_alimentacion.asp?nivel=ser_alimentacion | 200 OK Content-Length: 4156 Content-Type: text/html | clean |
http://casasabia.com/ser_alimentacion.asp?nivel=ser_alimentacion&id_seccion=467 | 200 OK Content-Length: 8573 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: casasabia.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Sat, 16 May 2015 11:10:53 GMT
Server: Microsoft-IIS/6.0
Content-Length: 5183
Content-Type: text/html
MicrosoftOfficeWebServer: 5.0_Pub
Set-Cookie: ASPSESSIONIDSQBADCAB=AGJBHEIDEIIFIKFKOFMKLGEM; path=/
X-Powered-By: PleskWin
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
...5183 bytes of data.
GET / HTTP/1.1
Host: casasabia.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Sat, 16 May 2015 11:10:53 GMT
Server: Microsoft-IIS/6.0
Content-Length: 5183
Content-Type: text/html
MicrosoftOfficeWebServer: 5.0_Pub
Set-Cookie: ASPSESSIONIDSQBADCAB=AGJBHEIDEIIFIKFKOFMKLGEM; path=/
X-Powered-By: PleskWin
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
...5183 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: casasabia.com
Referer: http://www.google.com/search?q=casasabia.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: casasabia.com
Referer: http://www.google.com/search?q=casasabia.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=casasabia.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://casasabia.com/
Result: casasabia.com is not infected or malware details are not published yet.
Result: casasabia.com is not infected or malware details are not published yet.