Scanned pages/files
| Request | Server response | Status |
http://empresahermes-cantera.com/ | 200 OK Content-Length: 7544 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HaCkeD By Cyber Hacker ...[1481 bytes skipped]... gt;')}}catch(a){}; //]]> </script><script type="text/javascript" src="/cloudflare.min.js"></script><script type="text/javascript" src="/cloudflare.min.js"></script> <script type="text/javascript"> //<![CDATA[ window.__CF=window.__CF||{};window.__CF.AJS={"dnschanger_detector":{"fix_url":null}}; //]]> </script> <title>HaCkeD By Cyber Hacker</title> <style type="text/css"> <!-- body,td,th { color: #ECE9D8; } body { background-color: #000000; } a:link { color: #ECE9D8; text-decoration: none; } a:visited { text-decoration: none; } a:hover { text-decoration: none; color: #FF0000; } a:active { text-decoration: none; } .style1 {font-family: "Courier New", Courier, monospace} ...[6584 bytes skipped]... | ||
http://cfdnscheck.cloudflare.com/test.js | 500 Can't connect to cfdnscheck.cloudflare.com:80 (Bad hostname) Content-Length: 182 Content-Type: text/plain | clean |
http://cfdnscheck.cloudflare.com/test404page.js | 500 Can't connect to cfdnscheck.cloudflare.com:80 (Bad hostname) Content-Length: 182 Content-Type: text/plain | clean |
http://empresahermes-cantera.com/ga.js | 404 Not Found Content-Length: 2474 Content-Type: text/html | clean |
http://empresahermes-cantera.com/config | 200 OK Content-Length: 7544 Content-Type: text/html | clean |
http://empresahermes-cantera.com/rating.js | 404 Not Found Content-Length: 2474 Content-Type: text/html | clean |
http://empresahermes-cantera.com/cloudflare.min.js | 404 Not Found Content-Length: 2474 Content-Type: text/html | clean |
http://empresahermes-cantera.com/233,232 | 200 OK Content-Length: 7544 Content-Type: text/html | clean |
http://empresahermes-cantera.com/mle.cgi | 403 Forbidden Content-Length: 2371 Content-Type: text/html | clean |
http://empresahermes-cantera.com/e.php | 200 OK Content-Length: 7544 Content-Type: text/html | clean |
http://empresahermes-cantera.com/mle(1).cgi | 403 Forbidden Content-Length: 2371 Content-Type: text/html | clean |
http://empresahermes-cantera.com/js15.js | 404 Not Found Content-Length: 2474 Content-Type: text/html | clean |
http://empresahermes-cantera.com/0.php | 200 OK Content-Length: 7544 Content-Type: text/html | clean |
http://empresahermes-cantera.com/0(1).php | 200 OK Content-Length: 7544 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: empresahermes-cantera.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 02 May 2014 17:04:06 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Length: 7544
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Fri, 02 May 2014 17:04:06 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: a5d014b44d7446828a69bb7139380abf=8779a972fe2db753e4d85e75c10d960d; path=/
...7544 bytes of data.
GET / HTTP/1.1
Host: empresahermes-cantera.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 02 May 2014 17:04:06 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Length: 7544
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Fri, 02 May 2014 17:04:06 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: a5d014b44d7446828a69bb7139380abf=8779a972fe2db753e4d85e75c10d960d; path=/
...7544 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: empresahermes-cantera.com
Referer: http://www.google.com/search?q=empresahermes-cantera.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: empresahermes-cantera.com
Referer: http://www.google.com/search?q=empresahermes-cantera.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=empresahermes-cantera.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://empresahermes-cantera.com/
Result: empresahermes-cantera.com is not infected or malware details are not published yet.
Result: empresahermes-cantera.com is not infected or malware details are not published yet.