Scanned pages/files
Request | Server response | Status |
http://tech.ua/ | 200 OK Content-Length: 6609 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Anonymous Albania <!-- saved from url=(0017)http://mulpro.cl/ --> <html><head><meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1"><title>Hacked By Anonymous Albania</title> <link rel="SHORTCUT ICON" href="http://images1.wikia.nocookie.net/__cb20120824073935/logopedia/images/thumb/d/d0/Flag_of_Albania.png/1280px-Flag_of_Albania.png"> <script async="" src="./Hacked By Anonymous Albania _files/cloudflare.min.js"></script><script type="text/javascript"> //<![CDATA[ try{if (!window.CloudFlare) { var CloudFlare=[{verbose:0,p:0,byc:0,owlid:"cf" ...[7245 bytes skipped]... | ||
http://tech.ua/./Hacked By Anonymous Albania _files/cloudflare.min.js | 404 Not Found Content-Length: 428 Content-Type: text/html | clean |
http://tech.ua/test404page.js | 404 Not Found Content-Length: 390 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tech.ua
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 22 Jul 2015 06:04:16 GMT
Server: nginx/1.7.0
Vary: Accept-Encoding
Vary: Accept-Encoding,User-Agent
Content-Type: text/html
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: tech.ua
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 22 Jul 2015 06:04:16 GMT
Server: nginx/1.7.0
Vary: Accept-Encoding
Vary: Accept-Encoding,User-Agent
Content-Type: text/html
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: tech.ua
Referer: http://www.google.com/search?q=tech.ua
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tech.ua
Referer: http://www.google.com/search?q=tech.ua
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tech.ua
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tech.ua/
Result: tech.ua is not infected or malware details are not published yet.
Result: tech.ua is not infected or malware details are not published yet.