Scanned pages/files
| Request | Server response | Status |
http://ddosonline.net78.net/ | 200 OK Content-Length: 4205 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By. AnonnyM_S87 <link rel="SHORTCUT ICON" href="http://upload.wikimedia.org/wikipedia/commons/7/7e/Animated-Flag-Indonesia.gif"> <HTML> <HEAD> <TITLE>GHOSTSEC-TEAM</TITLE><style> body {background-color:#000000;;} body{ background: url("http://s3.amazonaws.com/somewherein/assets/images/ondhokarer_rajputra_1338250431_1-bg.gif"); } </style> <SCRIPT language='JavaScript'>alert("Hacked By. AnonnyM_S87");</SCRIPT> <EMBED ALIGN='CENTER' AUTOSTART='TRUE' HEIGHT='0' LOOP='TRUE' SRC='onlylovemiss.netai.net/mp3/ind.swf' WIDTH='0'/> </HEAD> <script type='text/javascript'> var DADrightclicktheme = 'Dark'; var DADrightclickimage = 'http://i40.tinypic.com/21jd9nm.png';</script> <script type='text/javascript' src="http://tuyulz-blogspot.googlecode.com/files/Anti%20Klik.js"> & ...[4227 bytes skipped]... | ||
http://tuyulz-blogspot.googlecode.com/files/Anti%20Klik.js | 200 OK Content-Length: 2027 Content-Type: text/plain | clean |
http://tuyulz-blogspot.googlecode.com/files/ | 404 Not Found Content-Length: 1431 Content-Type: text/html | clean |
http://tuyulz-blogspot.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://tuyulz-blogspot.googlecode.com/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://wadah-tutorial.googlecode.com/files/leaf.js | 200 OK Content-Length: 3924 Content-Type: text/x-c++ | clean |
http://wadah-tutorial.googlecode.com/files/\"http://wadahtutorial.blogspot.com\" | 404 Not Found Content-Length: 1476 Content-Type: text/html | clean |
http://wadah-tutorial.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://stats.hosting24.com/count.php | 200 OK Content-Length: 960 Content-Type: application/javascript | clean |
http://ddosonline.net78.net//www.google.com/ | HTTP/1.1 302 Found Connection: close Date: Fri, 11 Jul 2014 06:10:34 GMT Location: http://error404.000webhost.com/? Server: Apache Content-Length: 216 Content-Type: text/html; charset=iso-8859-1 | clean |
http://error404.000webhost.com/? | 200 OK Content-Length: 146 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ddosonline.net78.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 11 Jul 2014 06:10:30 GMT
Server: Apache
Content-Length: 4205
Content-Type: text/html
X-Powered-By: PHP/5.2.17
...4205 bytes of data.
GET / HTTP/1.1
Host: ddosonline.net78.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 11 Jul 2014 06:10:30 GMT
Server: Apache
Content-Length: 4205
Content-Type: text/html
X-Powered-By: PHP/5.2.17
...4205 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: ddosonline.net78.net
Referer: http://www.google.com/search?q=ddosonline.net78.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ddosonline.net78.net
Referer: http://www.google.com/search?q=ddosonline.net78.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ddosonline.net78.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ddosonline.net78.net/
Result: ddosonline.net78.net is not infected or malware details are not published yet.
Result: ddosonline.net78.net is not infected or malware details are not published yet.