Scanned pages/files
Request | Server response | Status |
http://publicentranceexam.com/ | 200 OK Content-Length: 3699 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Hamdida ...[1595 bytes skipped]... on(){P=document.getElementById('mainCanvas');if(P.getContext){R=P.getContext('2d');window.moveTo(0,0);window.resizeTo(screen.width,screen.height);O();for(var e=K;e--;){var f=new d;f.x=S*0.5;f.y=Q*0.5;f.c=Math.cos(e)*Math.random()*40;f.d=Math.sin(e)*Math.random()*20;f.size=2;D[e]=f}document.onmousedown=c;document.onmouseup=h;document.onmousemove=i;window.onresize=O;O();setInterval(J,33)}}})();</script><title>Hacked by Hamdida</title><style type="text/css">body{margin:0;background:#000}.style10{text-align: center ;font-weight: bold;font-family: Tahoma, Arial, sans-serif ;color: #BF5454;text-shadow: 0px 0px 50px #BF5454 ;font-size: 70px;}.style20{text-align: center ;font-weight: bold;font-family: Tahoma, Arial, sans-serif ;color: #4C83AF;text-shadow: 0px 0px 50px #4C83AF ;font-size: 100px;}.style30{text-align: center ;font-weight: bold;font-family: Tahoma, Arial, sans-serif ;color: ...[1552 bytes skipped]... | ||
http://publicentranceexam.com/test404page.js | 404 Not Found Content-Length: 2445 Content-Type: text/html | clean |
http://cdn.dsultra.com/js/registrar.js | 200 OK Content-Length: 1688 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: publicentranceexam.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 25 Nov 2015 10:25:29 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
GET / HTTP/1.1
Host: publicentranceexam.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 25 Nov 2015 10:25:29 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: publicentranceexam.com
Referer: http://www.google.com/search?q=publicentranceexam.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: publicentranceexam.com
Referer: http://www.google.com/search?q=publicentranceexam.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=publicentranceexam.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://publicentranceexam.com/
Result: publicentranceexam.com is not infected or malware details are not published yet.
Result: publicentranceexam.com is not infected or malware details are not published yet.