Scanned pages/files
Request | Server response | Status |
http://guldkarat.se/ | 200 OK Content-Length: 11019 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By RooTRasTa; <html>
<title>./RooTRasta</title> <link rel="SHORTCUT ICON" href="http://i48.servimg.com/u/f48/16/08/07/74/indone10.gif" type="image"> <meta name="description" content=" ✌Tested RooTRasTa✌"> <meta name="keywords" content=" Hacked By RooTRasTa;"> <meta content='UTF-8' name='Charset' /><meta content='Global' name='Distribution' /> <meta content='General' name='Rating' /><meta content='INDEX FOLLOW' name='Robots' /> <meta content='1 days' name='revisit' /><meta content='1 Days' name='Revisit-after' /> <meta content='ID' name='language' /><meta content='ID' name='geo.country' /> <meta content= ...[10724 bytes skipped]... | ||
http://guldkarat.se/test404page.js | 404 Not Found Content-Length: 341 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: guldkarat.se
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 10 Oct 2015 09:02:26 GMT
Accept-Ranges: bytes
ETag: "13b69c5-2b0b-4f2478ba0a78a"
Server: Apache/2.2.31 (FreeBSD) PHP/5.5.30 mod_ssl/2.2.31 OpenSSL/0.9.8zd-freebsd
Content-Length: 11019
Content-Type: text/html
Last-Modified: Thu, 13 Feb 2014 10:56:46 GMT
...11019 bytes of data.
GET / HTTP/1.1
Host: guldkarat.se
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 10 Oct 2015 09:02:26 GMT
Accept-Ranges: bytes
ETag: "13b69c5-2b0b-4f2478ba0a78a"
Server: Apache/2.2.31 (FreeBSD) PHP/5.5.30 mod_ssl/2.2.31 OpenSSL/0.9.8zd-freebsd
Content-Length: 11019
Content-Type: text/html
Last-Modified: Thu, 13 Feb 2014 10:56:46 GMT
...11019 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: guldkarat.se
Referer: http://www.google.com/search?q=guldkarat.se
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: guldkarat.se
Referer: http://www.google.com/search?q=guldkarat.se
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=guldkarat.se
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://guldkarat.se/
Result: guldkarat.se is not infected or malware details are not published yet.
Result: guldkarat.se is not infected or malware details are not published yet.