Scanned pages/files
| Request | Server response | Status |
http://www.tela.no/ | HTTP/1.1 200 OK Date: Fri, 11 Dec 2015 14:05:30 GMT Accept-Ranges: bytes ETag: "825c12a79e23d11:2b71" Server: Microsoft-IIS/6.0 Content-Length: 15205 Content-Location: http://www.tela.no/index.htm Content-Type: text/html Last-Modified: Fri, 20 Nov 2015 14:20:48 GMT MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET | clean |
http://www.tela.no/index.htm | 200 OK Content-Length: 15205 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Bl4ck punisher <title> Hacked By Bl4ck punisher </title>
<meta name="description" content="Hacked By Bl4ck punisher"> <meta name="keywords" content="Hacked By Bl4ck punisher"> <link rel='stylesheet' id='validate-engine-css-css' href='http://www.esbrainoise.be/wp-content/plugins/wysija-newsletters/css/validationEngine.jquery.css' type='text/css' media='all' /> <link rel='stylesheet' id='nextgen_gallery_related_images-css' href ...[16579 bytes skipped]... | ||
https://engowe.com/ad.php?u=0faf50f19233d495bdda2c5de87f43f3&c=gpupdater&p=1 | 200 OK Content-Length: 257 Content-Type: text/html | clean |
http://engowe.com/test404page.js | 404 Not Found Content-Length: 570 Content-Type: text/html | clean |
http://www.esbrainoise.be/wp-includes/js/jquery/jquery.js | 200 OK Content-Length: 95952 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-includes/js/jquery/jquery-migrate.min.js | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ajax.js | 404 Not Found Content-Length: 22854 Content-Type: text/html | clean |
http://www.esbrainoise.be/wp-includes/js/jquery/jquery.js?ver=21b6cc11b0f6f294541f56be067a5450 | 200 OK Content-Length: 95952 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-includes/js/jquery/jquery-migrate.min.js?ver=21b6cc11b0f6f294541f56be067a5450 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=21b6cc11b0f6f294541f56be067a5450-2014.06.20 | 200 OK Content-Length: 15248 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=21b6cc11b0f6f294541f56be067a5450 | 200 OK Content-Length: 11200 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/google-calendar-events/js/jquery.qtip.min.js?ver=21b6cc11b0f6f294541f56be067a5450 | 200 OK Content-Length: 35489 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/google-calendar-events/js/gce-script.js?ver=21b6cc11b0f6f294541f56be067a5450 | 200 OK Content-Length: 4374 Content-Type: application/javascript | clean |
http://s0.wp.com/wp-content/js/devicepx-jetpack.js?ver=21b6cc11b0f6f294541f56be067a5450 | 200 OK Content-Length: 10372 Content-Type: application/x-javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/easy-fancybox/fancybox/jquery.fancybox-1.3.7.min.js?ver=21b6cc11b0f6f294541f56be067a5450 | 200 OK Content-Length: 15701 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/easy-fancybox/jquery.easing.pack.js?ver=21b6cc11b0f6f294541f56be067a5450 | 200 OK Content-Length: 3649 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tela.no
Result:
GET / HTTP/1.1
Host: tela.no
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: tela.no
Referer: http://www.google.com/search?q=tela.no
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tela.no
Referer: http://www.google.com/search?q=tela.no
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tela.no
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tela.no/
Result: tela.no is not infected or malware details are not published yet.
Result: tela.no is not infected or malware details are not published yet.