Scanned pages/files
Request | Server response | Status |
http://stcharlesdailydeals.com/ | 200 OK Content-Length: 4035 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: hacked by suram-crew , suram-crew <html> <head> <title>M13IDUT</title> <meta content='hacked by suram-crew , suram-crew' name='description'/> <meta content='hacked by suram-crew , suram-crew' name='keywords'/> <meta content='hacked by suram-crew , suram-crew' name='Abstract'/> <link rel="me" href="http://www.blogger.com/profile/10915033987086912475" /> <link rel="openid.server" href="http://www.blogger.com/openid-server.g" /> </head> <style type="text/css"> body{ ...[4150 bytes skipped]... | ||
http://otowebsite.googlecode.com/files/Getar.js.txt | 200 OK Content-Length: 739 Content-Type: text/plain | clean |
http://otowebsite.googlecode.com/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://otowebsite.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://stcharlesdailydeals.com//www.blogger.com/static/v1/common/js/2216424884-csitail.js/ | 500 Internal Server Error Content-Length: 768 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: stcharlesdailydeals.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 05 Oct 2014 02:33:33 GMT
Server: nginx/1.6.2
Content-Type: text/html
GET / HTTP/1.1
Host: stcharlesdailydeals.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 05 Oct 2014 02:33:33 GMT
Server: nginx/1.6.2
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: stcharlesdailydeals.com
Referer: http://www.google.com/search?q=stcharlesdailydeals.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: stcharlesdailydeals.com
Referer: http://www.google.com/search?q=stcharlesdailydeals.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=stcharlesdailydeals.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://stcharlesdailydeals.com/
Result: stcharlesdailydeals.com is not infected or malware details are not published yet.
Result: stcharlesdailydeals.com is not infected or malware details are not published yet.