Scanned pages/files
Request | Server response | Status |
http://www.swanseatasmania.com/ | 200 OK Content-Length: 11126 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HackeD BY Moroccan Hackers ...[10439 bytes skipped]... ;</a> <!--SOSYAL-AG-TUSLARI-BITIR--> </div></!doctype> <html><head><style type="text/css">.AFhss_dpnone{display:none;width:0;height:0}</style><link rel="SHORTCUT ICON" href="http://s.myniceprofile.com/myspacepic/1/th/152.gif"> <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <title> HackeD BY Moroccan Hackers</title> </font><font color="#ff0000" face="terminal" size="4"> </font></p><font color="#ff0000" face="terminal" size="4"> <marquee behavior="alternate" width="900px" height="25px" direction="right" bgcolor="#3BB9FF"><font color="FF0000" > Butcher Dark -- BotNet -- YoseF BimaR -- Mss SaNa4 -- Mohamed Lmaghribi</font></marquee> <font color="red" s ...[3170 bytes skipped]... | ||
http://www.swanseatasmania.com/test404page.js | 404 Not Found Content-Length: 1708 Content-Type: text/html | clean |
http://cdn.dsultra.com/js/registrar.js | 200 OK Content-Length: 1688 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: swanseatasmania.com
Result:
GET / HTTP/1.1
Host: swanseatasmania.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: swanseatasmania.com
Referer: http://www.google.com/search?q=swanseatasmania.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: swanseatasmania.com
Referer: http://www.google.com/search?q=swanseatasmania.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=swanseatasmania.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://swanseatasmania.com/
Result: swanseatasmania.com is not infected or malware details are not published yet.
Result: swanseatasmania.com is not infected or malware details are not published yet.