Scanned pages/files
Request | Server response | Status |
http://www.americanherocard.org/ | 200 OK Content-Length: 13518 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 1x1 src: http://www.youtube.com/v/t9n3jy3f0j0&autoplay=1&loop=1&volume=150&loop=1&index= <iframe width="1" height="1" src="http://www.youtube.com/v/t9n3jy3f0j0&autoplay=1&loop=1&volume=150&loop=1&index='+ct[0]+'" frameborder="0"> Deface/Content modification. The following signature was found: Hacked By ...[889 bytes skipped]... ; <TITLE> [+]Indonesia Cyber Zone[+] [ICZ] [+]</TITLE> <link rel="shortcut icon" href="https://fbcdn-sphotos-f-a.akamaihd.net/hphotos-ak-ash3/t1.0-9/10155617_1410943962501057_19276071_n.jpg"/> <meta name="description" content="Website Deface By ./Mr.LoVe_404" /> <br/> <blink><font face="Arial" size="7" color="red" class="a">Hacked By </font> <h1>[+] ./Mr.LoVe_404 [ ICZ ] [+]</h1> <link href='http://fonts.googleapis.com/css?family=Averia+Sans+Libre' rel='stylesheet' type='text/css'> <link href='http://fonts.googleapis.com/css?family=Orbitron:700' rel='stylesheet' type='text/css'> <link href='http://fonts.googleapis.com/css?family=Nosifer' rel='stylesheet' type='text/css'> <meta name="Description" content="ckckck"> <script langu ...[14354 bytes skipped]... | ||
https://ajax.googleapis.com/ajax/libs/jquery/1.6.1/jquery.min.js | 200 OK Content-Length: 91342 Content-Type: text/javascript | clean |
http://apiwebconnectco-a.akamaihd.net/gsrs?is=isgiwkID&bp=PB&g=f8104793-1b79-408e-8d2e-de1e1951595c | 200 OK Content-Length: 8315 Content-Type: application/javascript | clean |
http://www.americanherocard.org/test404page.js | 200 OK Content-Length: 13518 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 1x1 src: http://www.youtube.com/v/t9n3jy3f0j0&autoplay=1&loop=1&volume=150&loop=1&index= <iframe width="1" height="1" src="http://www.youtube.com/v/t9n3jy3f0j0&autoplay=1&loop=1&volume=150&loop=1&index='+ct[0]+'" frameborder="0"> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: americanherocard.org
Result:
GET / HTTP/1.1
Host: americanherocard.org
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: americanherocard.org
Referer: http://www.google.com/search?q=americanherocard.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: americanherocard.org
Referer: http://www.google.com/search?q=americanherocard.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=americanherocard.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://americanherocard.org/
Result: americanherocard.org is not infected or malware details are not published yet.
Result: americanherocard.org is not infected or malware details are not published yet.