Scanned pages/files
Request | Server response | Status |
http://safetyquest.us/ | 200 OK Content-Length: 14834 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HaCKed bY : UAE Team ,, 4.y@hotmail.com <html>
<head> <meta content="fr" http-equiv="Content-Language"></meta> <meta content="text/html; charset=windows-1252" http-equiv="Content-Type"></meta> <title>HaCKed bY : UAE Team ,, 4.y@hotmail.com </title> <meta content="HaCKed bY : Arhack Team " name="keywords"></meta> <meta content="HaCKed bY : Arhack Team " name="description"></meta> <script src="chrome://skype_ff_toolbar_win/content/injection_graph_func.js" id="injection_graph_func" charset="utf-8"></script> <script id="_nameHighlight_injection"></scri ...[17338 bytes skipped]... | ||
http://safetyquest.us/chrome://skype_ff_toolbar_win/content/injection_graph_func.js | 404 Not Found Content-Length: 2445 Content-Type: text/html | clean |
http://cdn.dsultra.com/js/registrar.js | 200 OK Content-Length: 1652 Content-Type: application/x-javascript | clean |
http://safetyquest.us/test404page.js | 404 Not Found Content-Length: 2445 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: safetyquest.us
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 17 Oct 2014 20:45:31 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
GET / HTTP/1.1
Host: safetyquest.us
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 17 Oct 2014 20:45:31 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: safetyquest.us
Referer: http://www.google.com/search?q=safetyquest.us
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: safetyquest.us
Referer: http://www.google.com/search?q=safetyquest.us
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=safetyquest.us
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://safetyquest.us/
Result: safetyquest.us is not infected or malware details are not published yet.
Result: safetyquest.us is not infected or malware details are not published yet.