Scanned pages/files
| Request | Server response | Status |
http://anglofiles.com/ | 200 OK Content-Length: 17299 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Go To Hell ! Hacked By Elnur312 | ! ...[2140 bytes skipped]... .notline{ background: #111; } .line{ background: #222; } </style> <link rel="SHORTCUT ICON" href="http://i.hizliresim.com/d4oqYp.jpg"> </head> <body onkeydown="return false;" onmousedown="return false;" style="background-color: rgb(0, 0, 0); color: rgb(0, 0, 0); position: relative; min-height: 100%; top: 0px;" oncontextmenu="alert('Go To Hell ! Hacked By Elnur312 | !');return false;" alink="#ee0000" link="#0000ee" vlink="#551a8b" bgcolor="#000000"> <title>Hacked By Elnur312 | DESTINY.......... </title> <iframe src="" scrolling="no" frameborder="0" height="0" width="0"> </iframe> <param name="movie" value="http://www.youtube.com/v/wyDeyihX7sA&autoplay=0"> <embed src="http://www.youtube.com/v/wyDeyihX7sA&autoplay=1" type="applicat ...[18292 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js | 200 OK Content-Length: 94840 Content-Type: text/javascript | clean |
http://anglofiles.com/?p=1 | 200 OK Content-Length: 19490 Content-Type: text/html | clean |
http://anglofiles.com/?cat=1 | 200 OK Content-Length: 17311 Content-Type: text/html | clean |
http://anglofiles.com/?page_id=2 | 200 OK Content-Length: 19003 Content-Type: text/html | clean |
http://anglofiles.com/?feed=rss2&page_id=2 | 200 OK Content-Length: 705 Content-Type: text/xml | clean |
http://anglofiles.com/test404page.js | 404 Not Found Content-Length: 1170 Content-Type: text/html | clean |
http://anglofiles.com/wp-trackback.php?p=2 | 200 OK Content-Length: 135 Content-Type: text/xml | clean |
http://anglofiles.com/?m=200911 | 200 OK Content-Length: 17299 Content-Type: text/html | clean |
http://anglofiles.com/wp-login.php | 406 Not Acceptable Content-Length: 226 Content-Type: text/html | clean |
http://anglofiles.com/?feed=rss2 | 200 OK Content-Length: 1556 Content-Type: text/xml | clean |
http://anglofiles.com/?feed=comments-rss2 | 200 OK Content-Length: 1406 Content-Type: text/xml | clean |
http://anglofiles.com/?feed=rss2&p=1 | 200 OK Content-Length: 1386 Content-Type: text/xml | clean |
http://anglofiles.com/wp-trackback.php?p=1 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 18 Jan 2015 00:30:02 GMT Location: http://anglofiles.com/?p=1 Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://anglofiles.com/xmlrpc.php | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: anglofiles.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 18 Jan 2015 00:29:46 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Pingback: http://anglofiles.com/xmlrpc.php
GET / HTTP/1.1
Host: anglofiles.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 18 Jan 2015 00:29:46 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Pingback: http://anglofiles.com/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: anglofiles.com
Referer: http://www.google.com/search?q=anglofiles.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: anglofiles.com
Referer: http://www.google.com/search?q=anglofiles.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=anglofiles.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://anglofiles.com/
Result: anglofiles.com is not infected or malware details are not published yet.
Result: anglofiles.com is not infected or malware details are not published yet.