Scanned pages/files
Request | Server response | Status |
http://dn-generators.com/ | 200 OK Content-Length: 7854 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: .:: Hacked by Win32SystemDown ::. ...[515 bytes skipped]... ;body, a:hover {cursor: url(http://cur.cursors-4u.net/cursors/cur-11/cur1054.cur), progress !important;}</style><a href="http://www.cursors-4u.com/cursor/2012/02/11/chrome-pointer.html" target="_blank" title="Chrome Pointer"><img src="http://cur.cursors-4u.net/cursor.png" border="0" alt="Chrome Pointer" style="position:absolute; top: 0px; right: 0px;" /></a> <title>.:: Hacked by Win32SystemDown ::.</title> <link href='http://fonts.googleapis.com/css?family=Orbitron:700' rel='stylesheet' type='text/css'> <link href='http://fonts.googleapis.com/css?family=Titillium+Web' rel='stylesheet' type='text/css'> <meta name="Description" content=" Hacked By Win32SystemDown, JokerTeam Child Team"> <style> body { background: #000000 url(http://farm9.staticflickr.com/8044/8149686179_780ba9a3e0_b.jp ...[8131 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.4.1/jquery.min.js | 200 OK Content-Length: 70843 Content-Type: text/javascript | clean |
http://dn-generators.com/test404page.js | 404 Not Found Content-Length: 1772 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: dn-generators.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Fri, 10 Oct 2014 06:08:35 GMT
Pragma: no-cache
Accept-Ranges: bytes
Server: Apache
Content-Length: 7854
Content-Type: text/html; charset=utf-8
Expires:
Host-Header: 192fc2e7e50945beb8231a492d6a8024
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 19f30659510ce0930f2b54fb89143978=j0blh9fvdj3536j3vh5fqv62d5; path=/
Set-Cookie: ja_tiris_tpl=ja_tiris; expires=Wed, 30-Sep-2015 06:08:34 GMT; path=/
X-Cache: SGCACHE-MISS
X-Forwarded-For: 78.158.11.226
X-Host: dn-generators.com
X-Url: /
...7854 bytes of data.
GET / HTTP/1.1
Host: dn-generators.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Fri, 10 Oct 2014 06:08:35 GMT
Pragma: no-cache
Accept-Ranges: bytes
Server: Apache
Content-Length: 7854
Content-Type: text/html; charset=utf-8
Expires:
Host-Header: 192fc2e7e50945beb8231a492d6a8024
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 19f30659510ce0930f2b54fb89143978=j0blh9fvdj3536j3vh5fqv62d5; path=/
Set-Cookie: ja_tiris_tpl=ja_tiris; expires=Wed, 30-Sep-2015 06:08:34 GMT; path=/
X-Cache: SGCACHE-MISS
X-Forwarded-For: 78.158.11.226
X-Host: dn-generators.com
X-Url: /
...7854 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: dn-generators.com
Referer: http://www.google.com/search?q=dn-generators.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: dn-generators.com
Referer: http://www.google.com/search?q=dn-generators.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=dn-generators.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://dn-generators.com/
Result: dn-generators.com is not infected or malware details are not published yet.
Result: dn-generators.com is not infected or malware details are not published yet.