Scanned pages/files
Request | Server response | Status |
http://chattabrizi.ir/ | 200 OK Content-Length: 2231 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HackeD By Explo!T3r ...[64 bytes skipped]... t type="application/x-shockwave-flash" data="http://8pic.ir/images/b1gempvx8ytdctot1g78.swf" width="200" height="20"> <param name="movie" value="http://8pic.ir/images/jh325s1yts7zp2ozowz6.swf" /> <param name="bgcolor" value="#000000" /><param name="FlashVars" value="mp3=&autoplay=1" /></object> </body> <title>HackeD By Explo!T3r</title> <center> <img alt="HackeD By Explo!T3r" src="http://i.cubeupload.com/5ExyGZ.jpeg "></p> <div id="nothing" style="font-family: 'courier new';"> <font class="style10"><strong><span style="font-size: 36px;"> <p align="center"><font color="#999999" fac ...[2186 bytes skipped]... | ||
http://chattabrizi.ir/test404page.js | 200 OK Content-Length: 2231 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: chattabrizi.ir
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 16 May 2015 07:58:34 GMT
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html
X-Powered-By: PHP/5.5.24
GET / HTTP/1.1
Host: chattabrizi.ir
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 16 May 2015 07:58:34 GMT
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html
X-Powered-By: PHP/5.5.24
Second query (visit from search engine):
GET / HTTP/1.1
Host: chattabrizi.ir
Referer: http://www.google.com/search?q=chattabrizi.ir
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: chattabrizi.ir
Referer: http://www.google.com/search?q=chattabrizi.ir
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=chattabrizi.ir
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://chattabrizi.ir/
Result: chattabrizi.ir is not infected or malware details are not published yet.
Result: chattabrizi.ir is not infected or malware details are not published yet.