Scanned pages/files
Request | Server response | Status |
http://aldowaser.com/ | 200 OK Content-Length: 1700 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Mr.QLQ ...[231 bytes skipped]... 18kdq0x59ysi.png"> <script language="javascript"> document.onmousedown=disableclick; status="Right Click Disabled"; Function disableclick(event) { if(event.button==2) { alert(status); return false; } } </script> <link href="http://fonts.googleapis.com/css?family=Electrolize" rel="stylesheet" type="text/css"> <title>Hacked By Mr.QLQ </title> <style> body { font-family: 'Electrolize', sans-serif; font-color: #000; </style> <object </head> <body oncontextmenu="return false"> <center> <br> <img src="http://www.m5zn.com/uploads2/2011/12/24/photo/122411071218kdq0x59ysi.png" border="0" width="360" height="250" alt="ت٠اÙاخترا٠٠٠Ùب٠٠ستر ÙÙ ...[1113 bytes skipped]... | ||
http://aldowaser.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: aldowaser.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 29 Nov 2015 04:26:33 GMT
Accept-Ranges: bytes
ETag: "560022-6a4-51e622719d920"
Server: Apache/2.2.31 (Unix) mod_ssl/2.2.31 OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Length: 1700
Content-Type: text/html
Last-Modified: Fri, 28 Aug 2015 17:09:55 GMT
...1700 bytes of data.
GET / HTTP/1.1
Host: aldowaser.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 29 Nov 2015 04:26:33 GMT
Accept-Ranges: bytes
ETag: "560022-6a4-51e622719d920"
Server: Apache/2.2.31 (Unix) mod_ssl/2.2.31 OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Length: 1700
Content-Type: text/html
Last-Modified: Fri, 28 Aug 2015 17:09:55 GMT
...1700 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: aldowaser.com
Referer: http://www.google.com/search?q=aldowaser.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: aldowaser.com
Referer: http://www.google.com/search?q=aldowaser.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=aldowaser.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://aldowaser.com/
Result: aldowaser.com is not infected or malware details are not published yet.
Result: aldowaser.com is not infected or malware details are not published yet.