Scanned pages/files
Request | Server response | Status |
http://milchem.net/ | 200 OK Content-Length: 419 Content-Type: text/html | clean |
http://milchem.net/.ftpquota | 403 Forbidden Content-Length: 18200 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.9.1.js | 200 OK Content-Length: 268381 Content-Type: application/x-javascript | clean |
http://suspended.hostgator.com/js/simple-expand.min.js | 200 OK Content-Length: 2782 Content-Type: application/javascript | clean |
http://milchem.net/test404page.js | 500 Internal Server Error Content-Length: 742 Content-Type: text/html | clean |
http://milchem.net/cgi-bin/ | 403 Forbidden Content-Length: 18200 Content-Type: text/html | clean |
http://milchem.net/idca.html | 200 OK Content-Length: 3895 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Onix AQua <html><head><title>Hacked By Onix AQua </title><link href="http://2.bp.blogspot.com/-qq48EdTpLT4/UBuiqupeeyI/AAAAAAAAAYg/eWV9Xh5NOB8/s1600/favicon.ico" rel="shotcut
icon"> </head><body bgcolor="black" background="http://dc14.arabsh.com/i/03290/bcmmn0k4axvw.gif" oncontextmenu="return false;" onkeydown="return false;" onmousedown="return false;" onselectstart="return false" ondragstart="return false"> <center ...[4041 bytes skipped]... | ||
http://milchem.net/x.php | 200 OK Content-Length: 4502 Content-Type: text/html | clean |
http://www.widgeo.net/effets/effets.php?id=4&adult=0&cat=art&msg=Biang Kerox Team &taille=600 | 200 OK Content-Length: 2845 Content-Type: text/html | clean |
http://www.widgeo.net/effets/effets.php?id=5&adult=0&cat=adult&msg=Hacked By AgamBastard&taille=800 | 200 OK Content-Length: 2853 Content-Type: text/html | clean |
http://milchem.net/x.txt | 200 OK Content-Length: 19 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: milchem.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 16 Feb 2015 04:52:11 GMT
Server: nginx/1.6.2
Content-Length: 419
Content-Type: text/html;charset=ISO-8859-1
...419 bytes of data.
GET / HTTP/1.1
Host: milchem.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 16 Feb 2015 04:52:11 GMT
Server: nginx/1.6.2
Content-Length: 419
Content-Type: text/html;charset=ISO-8859-1
...419 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: milchem.net
Referer: http://www.google.com/search?q=milchem.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: milchem.net
Referer: http://www.google.com/search?q=milchem.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=milchem.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://milchem.net/
Result: milchem.net is not infected or malware details are not published yet.
Result: milchem.net is not infected or malware details are not published yet.