Scanned pages/files
Request | Server response | Status |
http://acsbv.com/ | 200 OK Content-Length: 4791 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: YouR Site HaCkeD By ...[2597 bytes skipped]... ign="left"><font size="2" face="Bradley Hand ITC">Connecting To The Server, Please Wait . . . . . . . . . . . . . </font></p>'+' <br>'+' <br>'+ '<br /> Connect Sucssefully <br> ' + '<br /> G O O D <br> '+ '<br /> '+ '<br /> '+ '<p align="center">YouR Site HaCkeD By <font size="3"color=#ffffff> == VIPER HACHER == <br>'+ ' <br>'+ '<br /> <font color=#66FF33> Status <br> '+ '<br /> uid= 0 (root) gid= 0 (root) '+ ' <br>'+ ' <br>'+ 'M.RIDA THE VIPER , I want to Tell You Something you got owned=GO TO THE HELL <br>'+ ' <br>'+ 'MoHaMmEd RiDa hacker Was Here And just live ...[2559 bytes skipped]... | ||
http://acsbv.com/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: acsbv.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 12 Dec 2015 16:38:30 GMT
Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips Phusion_Passenger/5.0.6
Vary: Accept-Encoding
Content-Type: text/html
X-Powered-By: PHP/5.3.29
GET / HTTP/1.1
Host: acsbv.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 12 Dec 2015 16:38:30 GMT
Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips Phusion_Passenger/5.0.6
Vary: Accept-Encoding
Content-Type: text/html
X-Powered-By: PHP/5.3.29
Second query (visit from search engine):
GET / HTTP/1.1
Host: acsbv.com
Referer: http://www.google.com/search?q=acsbv.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: acsbv.com
Referer: http://www.google.com/search?q=acsbv.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=acsbv.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://acsbv.com/
Result: acsbv.com is not infected or malware details are not published yet.
Result: acsbv.com is not infected or malware details are not published yet.