Scanned pages/files
Request | Server response | Status |
http://skk.pt/ | 200 OK Content-Length: 36792 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Sud0H4k3rs ...[32106 bytes skipped]... ef="http://www.transferoil.com" target="_blank"><img src="data/db_img/53_marca_cor.jpg" width="165" height="60" alt="Gomax" title="Gomax" /></a></li> <li><img src="data/db_img/57_marca_cor.jpg" width="165" height="60" alt="Hacked By Sud0H4k3rs" title="Hacked By Sud0H4k3rs" /></li> <li><a href="http://www.hidria.com/" target="_blank"><img src="data/db_img/38_marca_cor.jpg" width="165" height="60" alt="Hidria" title="Hidria" /></a></li> ...[9192 bytes skipped]... | ||
http://www.google.com/jsapi | 200 OK Content-Length: 24558 Content-Type: text/javascript | clean |
http://skk.pt/Scripts/swfobject_modified.js | 200 OK Content-Length: 21696 Content-Type: application/javascript | clean |
http://skk.pt/pt/js1/jquery.min.js | 200 OK Content-Length: 72174 Content-Type: application/javascript | clean |
http://skk.pt/pt/js1/jquery.validate.js | 200 OK Content-Length: 38271 Content-Type: application/javascript | clean |
http://skk.pt/pt/lib/jquery.jcarousel.js | 200 OK Content-Length: 35203 Content-Type: application/javascript | clean |
http://skk.pt/index.php | 200 OK Content-Length: 36792 Content-Type: text/html | clean |
http://skk.pt/es/index.php | 200 OK Content-Length: 6129 Content-Type: text/html | clean |
http://skk.pt/es/../Scripts/swfobject_modified.js | 200 OK Content-Length: 21696 Content-Type: application/javascript | clean |
http://skk.pt/es/../index.php | 200 OK Content-Length: 36792 Content-Type: text/html | clean |
http://skk.pt/es/../pt/js1/jquery.min.js | 200 OK Content-Length: 72174 Content-Type: application/javascript | clean |
http://skk.pt/es/../pt/js1/jquery.validate.js | 200 OK Content-Length: 38271 Content-Type: application/javascript | clean |
http://skk.pt/es/../pt/lib/jquery.jcarousel.js | 200 OK Content-Length: 35203 Content-Type: application/javascript | clean |
http://skk.pt/es/../es/index.php | 200 OK Content-Length: 6129 Content-Type: text/html | clean |
http://skk.pt/es/../es/../Scripts/swfobject_modified.js | 200 OK Content-Length: 21696 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: skk.pt
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 18 Jul 2015 14:40:10 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=iso-8859-1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=f4e2209e4d3ec8683cf87682e2696ca3; path=/
X-Powered-By: PHP/5.3.3-7+squeeze19
GET / HTTP/1.1
Host: skk.pt
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 18 Jul 2015 14:40:10 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=iso-8859-1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=f4e2209e4d3ec8683cf87682e2696ca3; path=/
X-Powered-By: PHP/5.3.3-7+squeeze19
Second query (visit from search engine):
GET / HTTP/1.1
Host: skk.pt
Referer: http://www.google.com/search?q=skk.pt
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: skk.pt
Referer: http://www.google.com/search?q=skk.pt
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=skk.pt
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://skk.pt/
Result: skk.pt is not infected or malware details are not published yet.
Result: skk.pt is not infected or malware details are not published yet.