Scanned pages/files
| Request | Server response | Status |
http://780055.com/ | 200 OK Content-Length: 7745 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: // Hacked By : Mr.HaurgeulisX196 ...[2414 bytes skipped]... adius: 8px 8px 0px 0px; margin: 15px 0px; background-color: #F5F5F5; opacity: 0.8; } #help{ width: 300px; float: right; } .prefix{ color: #0077E7; } .keyword{ color: #9eff63; } .error{ color: #FF0000; } .spacer{ clear: both; display: block; } </style> <script type="text/javascript"> // Hacked By : Mr.HaurgeulisX196 TypingText = function(element, interval, cursor, finishedCallback) { if((typeof document.getElementById == "undefined") || (typeof element.innerHTML == "undefined")) { this.running = true; return; } this.element = element; this.finishedCallback = (finishedCallback ? finishedCallback : function() { return; }); this.interval = (typeof interval == "undefined" ? 100 : interval); this.origText = this.el ...[5997 bytes skipped]... | ||
http://masterendi.googlecode.com/files/salju.js | 404 Not Found Content-Length: 1575 Content-Type: text/html | clean |
http://masterendi.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1561 Content-Type: text/html | clean |
http://masterendi.googlecode.com/test404page.js | 404 Not Found Content-Length: 1575 Content-Type: text/html | clean |
http://apiwebspadesinfo-a.akamaihd.net/gsrs?is=fmxqtid&bp=PB&g=1c83c707-6e9c-4b09-884c-3bbc7f641e35 | 200 OK Content-Length: 11486 Content-Type: application/javascript | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.3.1/jquery.min.js | 200 OK Content-Length: 55272 Content-Type: text/javascript | clean |
http://local.adfender.com/adfender/elemhide.js | 404 Not Found Content-Length: 1363 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 780055.com
Result:
HTTP/1.1 200 OK
Date: Tue, 15 Dec 2015 04:51:34 GMT
Server: Microsoft-IIS/6.0
Content-Length: 7745
Content-Type: text/html
X-Powered-By: ASP.NET
X-Powered-By: PHP/5.2.17
X-Powered-By-Plesk: PleskWin
...7745 bytes of data.
GET / HTTP/1.1
Host: 780055.com
Result:
HTTP/1.1 200 OK
Date: Tue, 15 Dec 2015 04:51:34 GMT
Server: Microsoft-IIS/6.0
Content-Length: 7745
Content-Type: text/html
X-Powered-By: ASP.NET
X-Powered-By: PHP/5.2.17
X-Powered-By-Plesk: PleskWin
...7745 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: 780055.com
Referer: http://www.google.com/search?q=780055.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 780055.com
Referer: http://www.google.com/search?q=780055.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=780055.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://780055.com/
Result: 780055.com is not infected or malware details are not published yet.
Result: 780055.com is not infected or malware details are not published yet.