Scanned pages/files
| Request | Server response | Status |
http://completesteelworx.com.au/ | 200 OK Content-Length: 10123 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by S3N4T0R ...[186 bytes skipped]... xml:lang="en-gb" lang="en-gb" > <head> <meta http-equiv="content-type" content="text/html; charset=utf-8" /> <meta name="robots" content="index, follow" /> <meta name="keywords" content="MetaKeys" /> <meta name="description" content="MetaDesc" /> <meta name="generator" content="Joomla! 1.5 - Open Source Content Management" /> <title>Hacked by S3N4T0R</title> <link href="/index.php?format=feed&type=rss" rel="alternate" type="application/rss+xml" title="RSS 2.0" /> <link href="/index.php?format=feed&type=atom" rel="alternate" type="application/atom+xml" title="Atom 1.0" /> <link href="/templates/at_arcaxelo/favicon.ico" rel="shortcut icon" type="image/x-icon" /> <script type="text/javascript" src="/media/system/js/mootools.js"></script> &l ...[12092 bytes skipped]... | ||
http://completesteelworx.com.au/media/system/js/caption.js | 200 OK Content-Length: 2150 Content-Type: application/javascript | clean |
http://completesteelworx.com.au/templates/at_arcaxelo/at_menu/at_menu/mootools.v1.1.js | 200 OK Content-Length: 187492 Content-Type: application/javascript | clean |
http://completesteelworx.com.au/templates/at_arcaxelo/at_menu/at_menu/at.menu.js | 200 OK Content-Length: 4869 Content-Type: application/javascript | clean |
http://completesteelworx.com.au/templates/at_arcaxelo/scripts/at.script.js | 200 OK Content-Length: 4488 Content-Type: application/javascript | clean |
http://completesteelworx.com.au/index.php?option=com_content&view=frontpage&Itemid=1 | 200 OK Content-Length: 10352 Content-Type: text/html | clean |
http://completesteelworx.com.au/index.php?option=com_content&view=article&id=47&Itemid=27 | 404 Article Category not published Content-Length: 1412 Content-Type: text/html | clean |
http://completesteelworx.com.au/index.php | 200 OK Content-Length: 10135 Content-Type: text/html | clean |
http://completesteelworx.com.au/index.php?option=com_content&view=article&id=5&Itemid=2 | 200 OK Content-Length: 8251 Content-Type: text/html | clean |
http://completesteelworx.com.au/index.php?option=com_content&view=article&id=46&Itemid=37 | 404 Article Category not published Content-Length: 1412 Content-Type: text/html | clean |
http://completesteelworx.com.au/test404page.js | 200 OK Content-Length: 10139 Content-Type: text/html | clean |
http://completesteelworx.com.au/index.php?option=com_content&view=article&id=48&Itemid=41 | 404 Article Category not published Content-Length: 1412 Content-Type: text/html | clean |
http://completesteelworx.com.au/index.php?option=com_imagebrowser&view=gallery&Itemid=50 | 200 OK Content-Length: 22353 Content-Type: text/html | clean |
http://completesteelworx.com.au/components/com_imagebrowser/lib/slimbox/js/slimbox.js | 200 OK Content-Length: 7265 Content-Type: application/javascript | clean |
http://completesteelworx.com.au/index.php?option=com_contact&view=contact&id=2&Itemid=53 | 200 OK Content-Length: 12498 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: completesteelworx.com.au
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 03 Sep 2014 22:22:33 GMT
Server: nginx
Vary: Accept-Encoding
Content-Length: 10123
Content-Type: text/html
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 0a59f7a731fd72a48570ea4ff4c10f02=85dccaacba5e021443800b34246d18f2; path=/
Set-Cookie: ATTheme=at_arcaxelo; expires=Mon, 24-Aug-2015 22:22:33 GMT; path=/
Set-Cookie: ColorCSS=default; expires=Mon, 24-Aug-2015 22:22:33 GMT; path=/
Set-Cookie: ScreenType=wide; expires=Mon, 24-Aug-2015 22:22:33 GMT; path=/
Set-Cookie: FontSize=3; expires=Mon, 24-Aug-2015 22:22:33 GMT; path=/
X-Powered-By: PHP/5.3.26
...10123 bytes of data.
GET / HTTP/1.1
Host: completesteelworx.com.au
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 03 Sep 2014 22:22:33 GMT
Server: nginx
Vary: Accept-Encoding
Content-Length: 10123
Content-Type: text/html
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 0a59f7a731fd72a48570ea4ff4c10f02=85dccaacba5e021443800b34246d18f2; path=/
Set-Cookie: ATTheme=at_arcaxelo; expires=Mon, 24-Aug-2015 22:22:33 GMT; path=/
Set-Cookie: ColorCSS=default; expires=Mon, 24-Aug-2015 22:22:33 GMT; path=/
Set-Cookie: ScreenType=wide; expires=Mon, 24-Aug-2015 22:22:33 GMT; path=/
Set-Cookie: FontSize=3; expires=Mon, 24-Aug-2015 22:22:33 GMT; path=/
X-Powered-By: PHP/5.3.26
...10123 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: completesteelworx.com.au
Referer: http://www.google.com/search?q=completesteelworx.com.au
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: completesteelworx.com.au
Referer: http://www.google.com/search?q=completesteelworx.com.au
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=completesteelworx.com.au
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://completesteelworx.com.au/
Result: completesteelworx.com.au is not infected or malware details are not published yet.
Result: completesteelworx.com.au is not infected or malware details are not published yet.