Scanned pages/files
| Request | Server response | Status |
http://al-atheer.net/ | 200 OK Content-Length: 35547 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Z3z3 HaCkEr ...[4403 bytes skipped]... l/last_teat_04.gif"></td> <td width="100%" background="themes/portal/last_teat_02.gif"> <marquee class='news_title' BEHAVIOR='scroll' direction='right' scrollAmount='2' scrollDelay='1' onmouseover='this.stop()' onmouseout='this.start()' width='100%' border='0'><img src='images/topics.gif' valign=bottom> <a href=news.php?action=view&id=2><b>Hacked By Z3z3 HaCkEr</b></a> <img src='images/topics.gif' valign=bottom> <a href=news.php?action=view&id=1><b>ãÇ åí ÇáÈæÇÈÉ ÇáÚÑÈíÉ ¿</b></a> </marquee></td> <td width="25"> <img border="0" src="themes/portal/last_teat_01.gif"></td> </tr> </table> </div> <div al ...[42178 bytes skipped]... | ||
http://al-atheer.net/index.php?action=rss | 200 OK Content-Length: 964 Content-Type: text/xml | clean |
http://al-atheer.net/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://al-atheer.net/news.php?action=view&id=2 | 200 OK Content-Length: 31471 Content-Type: text/html | clean |
http://al-atheer.net/news.php?action=view&id=1 | 200 OK Content-Length: 35657 Content-Type: text/html | clean |
http://al-atheer.net/index.php | 200 OK Content-Length: 35546 Content-Type: text/html | clean |
http://al-atheer.net/news.php | 200 OK Content-Length: 29953 Content-Type: text/html | clean |
http://al-atheer.net/members.php?action=signup | 200 OK Content-Length: 29020 Content-Type: text/html | clean |
http://al-atheer.net/forum.php | 200 OK Content-Length: 17834 Content-Type: text/html | clean |
http://al-atheer.net/search.php?action=search | 200 OK Content-Length: 4379 Content-Type: text/html | clean |
http://al-atheer.net/index.php?action=e3lan&adsid=1 | HTTP/1.1 302 Moved Temporarily Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Mon, 29 Jun 2015 14:42:09 GMT Pragma: no-cache Location: http://www.arabportal.info Server: Apache Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=2ilt6evqkp4qc28tlskvrj5f92; path=/ Set-Cookie: al-atheernuydmv=YTo1OntpOjA7czo1OiJHdWVzdCI7aToxO2k6MDtpOjI7aTowO2k6MztpOjE0MzU1ODg5Mjk7aTo0O3M6MjY6IjJpbHQ2ZXZxa3A0cWMyOHRsc2t2cmo1ZjkyIjt9; expires=Mon, 06-Jul-2015 14:42:09 GMT; Max-Age=604800; path=/; domain=al-atheer.net X-Powered-By: PHP/5.5.25 | clean |
http://www.arabportal.info/ | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://al-atheer.net/forum.php?action=list&cat_id=2 | 200 OK Content-Length: 15657 Content-Type: text/html | clean |
http://al-atheer.net/forum.php?action=list&cat_id=3 | 200 OK Content-Length: 17671 Content-Type: text/html | clean |
http://al-atheer.net/forum.php?action=add&cat_id=3 | 200 OK Content-Length: 4379 Content-Type: text/html | clean |
http://al-atheer.net/download.php | 200 OK Content-Length: 29962 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: al-atheer.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 29 Jun 2015 14:42:03 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=56he83e8suida2ocln1rug22o7; path=/
Set-Cookie: al-atheernuydmv=YTo1OntpOjA7czo1OiJHdWVzdCI7aToxO2k6MDtpOjI7aTowO2k6MztpOjE0MzU1ODg5MjM7aTo0O3M6MjY6IjU2aGU4M2U4c3VpZGEyb2NsbjFydWcyMm83Ijt9; expires=Mon, 06-Jul-2015 14:42:03 GMT; Max-Age=604800; path=/; domain=al-atheer.net
X-Powered-By: PHP/5.5.25
GET / HTTP/1.1
Host: al-atheer.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 29 Jun 2015 14:42:03 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=56he83e8suida2ocln1rug22o7; path=/
Set-Cookie: al-atheernuydmv=YTo1OntpOjA7czo1OiJHdWVzdCI7aToxO2k6MDtpOjI7aTowO2k6MztpOjE0MzU1ODg5MjM7aTo0O3M6MjY6IjU2aGU4M2U4c3VpZGEyb2NsbjFydWcyMm83Ijt9; expires=Mon, 06-Jul-2015 14:42:03 GMT; Max-Age=604800; path=/; domain=al-atheer.net
X-Powered-By: PHP/5.5.25
Second query (visit from search engine):
GET / HTTP/1.1
Host: al-atheer.net
Referer: http://www.google.com/search?q=al-atheer.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: al-atheer.net
Referer: http://www.google.com/search?q=al-atheer.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=al-atheer.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://al-atheer.net/
Result: al-atheer.net is not infected or malware details are not published yet.
Result: al-atheer.net is not infected or malware details are not published yet.