Scanned pages/files
| Request | Server response | Status |
http://siempreclaro.com.ar/ | 200 OK Content-Length: 18863 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: || Hacked by greendel || <html xmlns="http://www.w3.org/1999/xhtml"> <head> <title><marquee scrollamount="10" scrolldelay="100" style="font-family: chiller; font-size: 100pt; color: green"> </marquee> <table align="center" cellpadding="30"> </html><title>|| Hacked by greendel ||</title> <body bgcolor="#111111"> <body oncontextmenu='return false;' onkeydown='return false;' onmousedown='return false;'> <style type="text/css"> <!-- a:link {color: #00FF00; text-decoration: none; } a:active {color: #00FF00; text-decoration: none; } a:visited {color: #00FF00; text-decoration: none; } a:hover {color: #00FF00; text-decoration: none; } body { backgroun ...[21556 bytes skipped]... | ||
http://siempreclaro.com.ar/js/jquery.min.js | 200 OK Content-Length: 78600 Content-Type: application/javascript | clean |
http://siempreclaro.com.ar/js/jquery.libs.js | 200 OK Content-Length: 23021 Content-Type: application/javascript | clean |
http://siempreclaro.com.ar/js/jquery.flot.min.js | 200 OK Content-Length: 47221 Content-Type: application/javascript | clean |
http://siempreclaro.com.ar/js/jquery.tablesorter.min.js | 200 OK Content-Length: 19343 Content-Type: application/javascript | clean |
http://siempreclaro.com.ar/forgot.php | 200 OK Content-Length: 8541 Content-Type: text/html | clean |
http://siempreclaro.com.ar/index.php | 200 OK Content-Length: 18863 Content-Type: text/html | clean |
http://siempreclaro.com.ar/terms.php | 200 OK Content-Length: 29431 Content-Type: text/html | clean |
http://siempreclaro.com.ar/contact.php | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://siempreclaro.com.ar/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://siempreclaro.com.ar/advertising.php | 200 OK Content-Length: 18514 Content-Type: text/html | clean |
http://siempreclaro.com.ar/? | 200 OK Content-Length: 18863 Content-Type: text/html | clean |
http://siempreclaro.com.ar/M1g | 200 OK Content-Length: 6001 Content-Type: text/html | clean |
http://siempreclaro.com.ar/rates.php | 200 OK Content-Length: 29129 Content-Type: text/html | clean |
http://siempreclaro.com.ar/privacy.php | 200 OK Content-Length: 15787 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: siempreclaro.com.ar
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 26 Dec 2014 09:47:29 GMT
Server: Apache/2.2.24 (Unix) mod_ssl/2.2.24 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Type: text/html
X-Powered-By: PHP/5.4.17
GET / HTTP/1.1
Host: siempreclaro.com.ar
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 26 Dec 2014 09:47:29 GMT
Server: Apache/2.2.24 (Unix) mod_ssl/2.2.24 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Type: text/html
X-Powered-By: PHP/5.4.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: siempreclaro.com.ar
Referer: http://www.google.com/search?q=siempreclaro.com.ar
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: siempreclaro.com.ar
Referer: http://www.google.com/search?q=siempreclaro.com.ar
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=siempreclaro.com.ar
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://siempreclaro.com.ar/
Result: siempreclaro.com.ar is not infected or malware details are not published yet.
Result: siempreclaro.com.ar is not infected or malware details are not published yet.