Scanned pages/files
Request | Server response | Status |
http://chinamoma.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 07 Oct 2014 11:04:39 GMT Location: http://www.chinamoma.com/ Server: Apache Content-Length: 233 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.chinamoma.com/ | 200 OK Content-Length: 2180 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By 1SMARTLORD D NET_ERROR <html>
<head> <title>Hacked By 1SMARTLORD D NET_ERROR</title> </head> <body bgcolor="black"> <center><font color="red" face="Segoe UI"><b><h1> Hacked By 1SMARTLORD </center><font></b></h1> <center><img src="http://dmars.co.vu/mylogo.png"></center> <center><p><font color="gray" face="Tahoma" size="3"><b>[#]~ r00t@NET_ERROR WHMSuid=0(root) gid=0(r ...[2330 bytes skipped]... | ||
http://stats.hosting24.com/count.php | 200 OK Content-Length: 960 Content-Type: application/javascript | clean |
http://chinamoma.com/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 07 Oct 2014 11:04:40 GMT Location: http://www.chinamoma.com/test404page.js Server: Apache Content-Length: 247 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.chinamoma.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Tue, 07 Oct 2014 11:04:41 GMT Location: http://www.hostgator.com/error.php Server: Apache Content-Length: 218 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.hostgator.com/error.php | HTTP/1.1 302 Found Cache-Control: max-age=0 Connection: close Date: Tue, 07 Oct 2014 11:04:42 GMT Location: /404 Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Tue, 07 Oct 2014 11:04:42 GMT X-Powered-By: PHP/5.3.3 X-UA-Compatible: IE=Edge,chrome=1 | clean |
http://www.hostgator.com/404 | 200 OK Content-Length: 3231 Content-Type: text/html | clean |
http://www.hostgator.com/?utm_source=internal&utm_medium=link&utm_campaign=page404 | 200 OK Content-Length: 27342 Content-Type: text/html | clean |
http://www.hostgator.com//static.criteo.net/js/ld/ld.js/ | HTTP/1.1 302 Found Cache-Control: max-age=0 Connection: close Date: Tue, 07 Oct 2014 11:04:46 GMT Location: /404 Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Tue, 07 Oct 2014 11:04:46 GMT X-Powered-By: PHP/5.3.3 X-UA-Compatible: IE=Edge,chrome=1 | clean |
http://www.hostgator.com/test404page.js | HTTP/1.1 302 Found Cache-Control: max-age=0 Connection: close Date: Tue, 07 Oct 2014 11:04:46 GMT Location: /404 Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Tue, 07 Oct 2014 11:04:46 GMT X-Powered-By: PHP/5.3.3 X-UA-Compatible: IE=Edge,chrome=1 | clean |
http://www.hostgator.com//ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js/ | HTTP/1.1 302 Found Cache-Control: max-age=0 Connection: close Date: Tue, 07 Oct 2014 11:04:47 GMT Location: /404 Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Tue, 07 Oct 2014 11:04:47 GMT X-Powered-By: PHP/5.3.3 X-UA-Compatible: IE=Edge,chrome=1 | clean |
http://www.hostgator.com//ajax.googleapis.com/ajax/libs/jqueryui/1.10.3/jquery-ui.min.js/ | HTTP/1.1 302 Found Cache-Control: max-age=0 Connection: close Date: Tue, 07 Oct 2014 11:04:47 GMT Location: /404 Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Tue, 07 Oct 2014 11:04:47 GMT X-Powered-By: PHP/5.3.3 X-UA-Compatible: IE=Edge,chrome=1 | clean |
http://www.hostgator.com/js/libs/vendor/modernizr-2.6.2.min.js | 200 OK Content-Length: 14502 Content-Type: application/javascript | clean |
http://www.hostgator.com//cdn.optimizely.com/js/78361116.js/ | HTTP/1.1 302 Found Cache-Control: max-age=0 Connection: close Date: Tue, 07 Oct 2014 11:04:47 GMT Location: /404 Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Tue, 07 Oct 2014 11:04:47 GMT X-Powered-By: PHP/5.3.3 X-UA-Compatible: IE=Edge,chrome=1 | clean |
http://www.hostgator.com//www.googleadservices.com/pagead/conversion.js/ | HTTP/1.1 302 Found Cache-Control: max-age=0 Connection: close Date: Tue, 07 Oct 2014 11:04:48 GMT Location: /404 Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Tue, 07 Oct 2014 11:04:48 GMT X-Powered-By: PHP/5.3.3 X-UA-Compatible: IE=Edge,chrome=1 | clean |
https://tracking.trafficvance.com/?id=1G341EG6D97G9540957C&fetch=0&value=0 | 200 OK Content-Length: 755 Content-Type: text/javascript | clean |
http://www.hostgator.com//platform.twitter.com/oct.js/ | HTTP/1.1 302 Found Cache-Control: max-age=0 Connection: close Date: Tue, 07 Oct 2014 11:04:49 GMT Location: /404 Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Tue, 07 Oct 2014 11:04:49 GMT X-Powered-By: PHP/5.3.3 X-UA-Compatible: IE=Edge,chrome=1 | clean |
http://www.hostgator.com//ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.js/ | HTTP/1.1 302 Found Cache-Control: max-age=0 Connection: close Date: Tue, 07 Oct 2014 11:04:50 GMT Location: /404 Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Tue, 07 Oct 2014 11:04:50 GMT X-Powered-By: PHP/5.3.3 X-UA-Compatible: IE=Edge,chrome=1 | clean |
http://www.hostgator.com/js/libs/common.js | 200 OK Content-Length: 4977 Content-Type: application/javascript | clean |
http://www.hostgator.com/js/pages/index.js | 200 OK Content-Length: 315 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: chinamoma.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 07 Oct 2014 11:04:39 GMT
Location: http://www.chinamoma.com/
Server: Apache
Content-Length: 233
Content-Type: text/html; charset=iso-8859-1
...233 bytes of data.
GET / HTTP/1.1
Host: chinamoma.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 07 Oct 2014 11:04:39 GMT
Location: http://www.chinamoma.com/
Server: Apache
Content-Length: 233
Content-Type: text/html; charset=iso-8859-1
...233 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: chinamoma.com
Referer: http://www.google.com/search?q=chinamoma.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: chinamoma.com
Referer: http://www.google.com/search?q=chinamoma.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=chinamoma.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://chinamoma.com/
Result: chinamoma.com is not infected or malware details are not published yet.
Result: chinamoma.com is not infected or malware details are not published yet.