Scanned pages/files
Request | Server response | Status |
http://semaconsac.com/ | 200 OK Content-Length: 17444 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Te||EM ...[2143 bytes skipped]... in-right: 0px; } .style2 {color: #666666} </style> <style type="text/css"> .snow { position:absolute; layer-background-color:white; visibility:visible; top:-50px; font-size:1px; background-color:white; } </style> <br/> <center> <font face="Orbitron" size="5" color="#FFFFFF" class="a">Hacked By Te||EM</font> </center> <br/> <script language="javascript"> var snowflakes=50; //NUMBER OF OBJECTS YOU WANT. var level=2; //SPEED LEVEL 1 to 5. 1=SLOWER, 5=FASTER var w3c=(document.getElementById)?true:false; var ns4=(document.layers)?true:false; var ie4=(document.all && !w3c)?true:false; var ie5=(document.all && w3c)?true:false; var ns6=(w3c && navigator.appName ...[17688 bytes skipped]... | ||
http://h1.flashvortex.com/display.php?id=2_1387156810_50972_387_0_139_85_9_1_120 | 200 OK Content-Length: 833 Content-Type: text/html | clean |
http://h1.flashvortex.com/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: semaconsac.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 01 Jul 2015 00:15:02 GMT
Server: nginx/1.8.0
Content-Type: text/html
GET / HTTP/1.1
Host: semaconsac.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 01 Jul 2015 00:15:02 GMT
Server: nginx/1.8.0
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: semaconsac.com
Referer: http://www.google.com/search?q=semaconsac.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: semaconsac.com
Referer: http://www.google.com/search?q=semaconsac.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=semaconsac.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://semaconsac.com/
Result: semaconsac.com is not infected or malware details are not published yet.
Result: semaconsac.com is not infected or malware details are not published yet.