Scanned pages/files
Request | Server response | Status |
http://dapsonsms.com/ | 200 OK Content-Length: 6610 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY AYYILDIZ TÄ°M ...[295 bytes skipped]... following JDOC Head tag loads all the header and meta information from your site config and content. --> <base href="http://dapsonsms.com/" /> <meta http-equiv="content-type" content="text/html; charset=utf-8" /> <meta name="description" content="...Cheap SMS Rates" /> <meta name="generator" content="Joomla! - Open Source Content Management" /> <title>HACKED BY AYYILDIZ TÄ°M</title> <link href="/?format=feed&type=rss" rel="alternate" type="application/rss+xml" title="RSS 2.0" /> <link href="/?format=feed&type=atom" rel="alternate" type="application/atom+xml" title="Atom 1.0" /> <link href="/templates/atomic/favicon.ico" rel="shortcut icon" type="image/vnd.microsoft.icon" /> <script src="/media/system/js/mootools-core.js" type="text/javascript"></script> <s ...[7130 bytes skipped]... | ||
http://dapsonsms.com/media/system/js/mootools-core.js | 200 OK Content-Length: 96362 Content-Type: application/javascript | clean |
http://dapsonsms.com/media/system/js/core.js | 200 OK Content-Length: 4784 Content-Type: application/javascript | clean |
http://dapsonsms.com/media/system/js/caption.js | 200 OK Content-Length: 729 Content-Type: application/javascript | clean |
http://dapsonsms.com/media/system/js/mootools-more.js | 200 OK Content-Length: 238331 Content-Type: application/javascript | clean |
http://dapsonsms.com/templates/atomic/js/template.js | 200 OK Content-Length: 27 Content-Type: application/javascript | clean |
http://dapsonsms.com/index.php?option=com_spc&view=All+-+SPC+Menu | 200 OK Content-Length: 599 Content-Type: text/html | clean |
http://dapsonsms.com/test404page.js | 404 Not Found Content-Length: 461 Content-Type: text/html | clean |
http://dapsonsms.com/index.php?option=com_spc&view=Member+-+Compose+SMS& | 200 OK Content-Length: 599 Content-Type: text/html | clean |
http://dapsonsms.com/index.php?option=com_spc&view=Member+-+Auto+Compose+SMS& | 200 OK Content-Length: 599 Content-Type: text/html | clean |
http://dapsonsms.com/index.php?option=com_spc&view=All+-+Message+History& | 200 OK Content-Length: 599 Content-Type: text/html | clean |
http://dapsonsms.com/index.php?option=com_spc&view=Member+-+My+Chat+History& | 200 OK Content-Length: 599 Content-Type: text/html | clean |
http://dapsonsms.com/index.php?option=com_spc&view=All+-+Transaction+History& | 200 OK Content-Length: 599 Content-Type: text/html | clean |
http://dapsonsms.com/index.php?option=com_spc&view=All+-+View+Phonebook& | 200 OK Content-Length: 599 Content-Type: text/html | clean |
http://dapsonsms.com/index.php?option=com_spc&view=Member+-+Phonebook& | 200 OK Content-Length: 599 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: dapsonsms.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Tue, 20 May 2014 06:06:01 GMT
Pragma: no-cache
Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Type: text/html; charset=utf-8
Set-Cookie: 2fe33539230880e3d762ae603593f60a=4b64b0582fa4b558e54b8e68d34d0a96; path=/
X-Powered-By: PHP/5.3.27
GET / HTTP/1.1
Host: dapsonsms.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Tue, 20 May 2014 06:06:01 GMT
Pragma: no-cache
Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Type: text/html; charset=utf-8
Set-Cookie: 2fe33539230880e3d762ae603593f60a=4b64b0582fa4b558e54b8e68d34d0a96; path=/
X-Powered-By: PHP/5.3.27
Second query (visit from search engine):
GET / HTTP/1.1
Host: dapsonsms.com
Referer: http://www.google.com/search?q=dapsonsms.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: dapsonsms.com
Referer: http://www.google.com/search?q=dapsonsms.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=dapsonsms.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://dapsonsms.com/
Result: dapsonsms.com is not infected or malware details are not published yet.
Result: dapsonsms.com is not infected or malware details are not published yet.