Scanned pages/files
Request | Server response | Status |
http://clg-stjeandelabarre-ec49.org/ | 200 OK Content-Length: 3192 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: hacked by Team Hack Argentino <html><head> <meta http-equiv="content-type" content="text/html; charset=ISO-8859-1"><title>hacked by Team Hack Argentino</title> </head><body alink="#000000" bgcolor="#FFFFFF" link="#000000" vlink="#000000"> <style type="text/css"> body,html { margin: 0; padding: 0; outline: 0; } .cont a{ text-decoration: none; color:rgb(0, 0, 0); font-family: Tahoma, Arial, sans-serif ; font-size: 16px; text-shadow: 0px 0p ...[3809 bytes skipped]... | ||
http://clg-stjeandelabarre-ec49.org/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: clg-stjeandelabarre-ec49.org
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 03 Dec 2014 05:17:04 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 3192
Content-Type: text/html
Set-Cookie: 60gpBAK=R1224196865; path=/; expires=Wed, 03-Dec-2014 06:33:44 GMT
Set-Cookie: 60gp=R1863952797; path=/; expires=Wed, 03-Dec-2014 06:33:20 GMT
...3192 bytes of data.
GET / HTTP/1.1
Host: clg-stjeandelabarre-ec49.org
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 03 Dec 2014 05:17:04 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 3192
Content-Type: text/html
Set-Cookie: 60gpBAK=R1224196865; path=/; expires=Wed, 03-Dec-2014 06:33:44 GMT
Set-Cookie: 60gp=R1863952797; path=/; expires=Wed, 03-Dec-2014 06:33:20 GMT
...3192 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: clg-stjeandelabarre-ec49.org
Referer: http://www.google.com/search?q=clg-stjeandelabarre-ec49.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: clg-stjeandelabarre-ec49.org
Referer: http://www.google.com/search?q=clg-stjeandelabarre-ec49.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=clg-stjeandelabarre-ec49.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://clg-stjeandelabarre-ec49.org/
Result: clg-stjeandelabarre-ec49.org is not infected or malware details are not published yet.
Result: clg-stjeandelabarre-ec49.org is not infected or malware details are not published yet.