Scanned pages/files
Request | Server response | Status |
http://mcl.com.pk/ | 200 OK Content-Length: 14431 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: hacked By Indian Mad Hunter <script type="text/javascript"> ;(function(){ var msg = "hacked By Indian Mad Hunter"; var size = 30; var circleY =0.75; var circleX = 2; var letter_spacing = 5; var diameter = 10; var rotation = 0.4; var speed = 0.8; if (!window.addEventListener && !window.attachEvent || !document.createElement) return; msg = msg.split(''); var n = msg.length - 1, a = Math.round(size * diameter * 0.208333), currStep = 20, ymouse = a * circleY ...[16535 bytes skipped]... | ||
http://mcl.com.pk/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mcl.com.pk
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 08 Mar 2015 02:35:10 GMT
Server: Apache
Content-Type: text/html
X-Powered-By: PHP/5.4.36
GET / HTTP/1.1
Host: mcl.com.pk
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 08 Mar 2015 02:35:10 GMT
Server: Apache
Content-Type: text/html
X-Powered-By: PHP/5.4.36
Second query (visit from search engine):
GET / HTTP/1.1
Host: mcl.com.pk
Referer: http://www.google.com/search?q=mcl.com.pk
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mcl.com.pk
Referer: http://www.google.com/search?q=mcl.com.pk
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mcl.com.pk
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://mcl.com.pk/
Result: mcl.com.pk is not infected or malware details are not published yet.
Result: mcl.com.pk is not infected or malware details are not published yet.