Scanned pages/files
Request | Server response | Status |
http://brandingdoctor.org/ | 200 OK Content-Length: 2135 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: ./Hacked by AnonyniX From CYBER-71 <META NAME="ROBOTS" CONTENT="INDEX, NOFOLLOW">
<html> <meta charset="UTF-8"> <head> <title>./Hacked by AnonyniX From CYBER-71</title> <style type="text/css"> #ico{width: 300px; height: 350px;} #twt{text-decoration:none;color:#0077A2} </style> </head> <body> <embed width="1" height="1" wmode="transparent" type="application/x-shockwave-flash" src="http://www.youtube.com/v/zJySxpVgwko&hl=en_US&loop=1&feature=related&autoplay=1"> ...[2199 bytes skipped]... | ||
http://brandingdoctor.org/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=604800 Connection: close Date: Wed, 09 Sep 2015 09:14:20 GMT Location: http://www.brandingdoctor.org/test404page.js/ Server: nginx Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 16 Sep 2015 09:14:20 GMT Ngpass_ngstatic: 1 X-Pingback: http://www.brandingdoctor.org/xmlrpc.php | clean |
http://www.brandingdoctor.org/test404page.js/ | 200 OK Content-Length: 7701 Content-Type: text/html | clean |
http://www.brandingdoctor.org/ | 200 OK Content-Length: 2135 Content-Type: text/html | clean |
http://www.brandingdoctor.org/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=604800 Connection: close Date: Wed, 09 Sep 2015 09:14:22 GMT Location: http://www.brandingdoctor.org/test404page.js/ Server: nginx Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 16 Sep 2015 09:14:22 GMT Ngpass_ngstatic: 1 X-Pingback: http://www.brandingdoctor.org/xmlrpc.php | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: brandingdoctor.org
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 09 Sep 2015 09:14:19 GMT
Accept-Ranges: bytes
Server: nginx
Vary: Accept-Encoding
Content-Length: 2135
Content-Type: text/html
Last-Modified: Wed, 09 Sep 2015 06:14:18 GMT
Ngpass_ngall: 1
...2135 bytes of data.
GET / HTTP/1.1
Host: brandingdoctor.org
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 09 Sep 2015 09:14:19 GMT
Accept-Ranges: bytes
Server: nginx
Vary: Accept-Encoding
Content-Length: 2135
Content-Type: text/html
Last-Modified: Wed, 09 Sep 2015 06:14:18 GMT
Ngpass_ngall: 1
...2135 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: brandingdoctor.org
Referer: http://www.google.com/search?q=brandingdoctor.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: brandingdoctor.org
Referer: http://www.google.com/search?q=brandingdoctor.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=brandingdoctor.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://brandingdoctor.org/
Result: brandingdoctor.org is not infected or malware details are not published yet.
Result: brandingdoctor.org is not infected or malware details are not published yet.