Scanned pages/files
Request | Server response | Status |
http://www.ultraconta.pt/ | 200 OK Content-Length: 1256 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: This Website Is Hacked By ...[419 bytes skipped]... d95, 0 0 5px #ff2d95;} h1 { text-shadow: 0 0 10px #fff, 0 0 20px #fff, 0 0 30px #fff, 0 0 40px #ff00de, 0 0 70px #ff00de, 0 0 80px #ff00de, 0 0 100px #ff00de, 0 0 150px #ff00de; } </style> <div class="heart">This Website Is Hacked By </div> <div class="heart">3xp1r3 Cyber Army </div><br/> <img src="http://foto.pk/images/h3rtlrl.png"><br/> <img src="http://i52.tinypic.com/egbzgh.jpg"> <br/> <EMBED src="http://pds54.cafe.daum.net/attach/5/cafe/2007/12/12/16/40/475f905b91ad9%26filename%3DTripleH-TheGame.mp3?rel=0&autoplay=1" type="audio/mpeg" wmode="transparent" width="1" height="1"> <h1> Thanks to </h ...[123 bytes skipped]... | ||
http://www.ultraconta.pt/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ultraconta.pt
Result:
GET / HTTP/1.1
Host: ultraconta.pt
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: ultraconta.pt
Referer: http://www.google.com/search?q=ultraconta.pt
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ultraconta.pt
Referer: http://www.google.com/search?q=ultraconta.pt
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ultraconta.pt
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ultraconta.pt/
Result: ultraconta.pt is not infected or malware details are not published yet.
Result: ultraconta.pt is not infected or malware details are not published yet.