Scanned pages/files
Request | Server response | Status |
http://elitesystem.in/ | 200 OK Content-Length: 7547 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Hexlook ...[3736 bytes skipped]... ) isCtrl=true; if((e.which == 85) || (e.which == 67) && isCtrl == true) { // alert(Keyboard shortcuts are cool!); return false; } } </script> <body><center> <table width=100% height=40%><td align=center> <DIV class=line1><font color=GREEN><BIG><strong>Hacked by Hexlook</strong></BIG></div> <DIV class=line2><font color=GREY><BIG>Pak Cyber Attackers</BIG></div> <br/><br/> <DIV class=line5><font color=GREY><BIG>MESSAGE</BIG></div> <br/><br/> <center><script src="http://cdn.marocbuzz.com/wgeo/message.php?msg=Hi Lundians! Stop Killing of Innocent People In Kashmir, You Do Not Have Dare to Go Kashmir Without S ...[5043 bytes skipped]... | ||
http://www.widgeo.net/compteur.php?c=fireworks&adult=adult&cat=rencontre&id=1432922735176&bg= | 500 Internal Server Error Content-Length: 180 Content-Type: text/html | clean |
http://www.widgeo.net/test404page.js | 404 Not Found Content-Length: 713 Content-Type: text/html | clean |
http://www.widgeo.net/effets/effets.php?id=4&adult=adult&cat=femme&msg=Pakistan Zindabad&taille=600&idec=657521141 | 200 OK Content-Length: 2841 Content-Type: text/html | clean |
http://www.widgeo.net/compteur.php?c=fireworks&adult=adult&cat=rencontre&id=1432922519494&bg= | 500 Internal Server Error Content-Length: 180 Content-Type: text/html | clean |
http://cdn.marocbuzz.com/wgeo/message.php?msg=Hi Lundians! Stop Killing of Innocent People In Kashmir, You Do Not Have Dare to Go Kashmir Without Support of Your Army, Clear Your Mind Against Muslim and Pakistan, Our Eyes On Your Fucking Intentions Every Time, You Will Never Success In Your Fucking Mission, | Hexlook Was Here |.&adult=adult&cat=histoire&big=big&cl=rainbow&idec=657521141 | 200 OK Content-Length: 1598 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: elitesystem.in
Result:
HTTP/1.1 200 OK
Date: Thu, 04 Jun 2015 10:09:44 GMT
Accept-Ranges: bytes
ETag: "c2912ea6a79ed01:0"
Server: Microsoft-IIS/7.5
Content-Length: 7547
Content-Type: text/html
Last-Modified: Thu, 04 Jun 2015 09:20:07 GMT
X-Powered-By: ASP.NET
...7547 bytes of data.
GET / HTTP/1.1
Host: elitesystem.in
Result:
HTTP/1.1 200 OK
Date: Thu, 04 Jun 2015 10:09:44 GMT
Accept-Ranges: bytes
ETag: "c2912ea6a79ed01:0"
Server: Microsoft-IIS/7.5
Content-Length: 7547
Content-Type: text/html
Last-Modified: Thu, 04 Jun 2015 09:20:07 GMT
X-Powered-By: ASP.NET
...7547 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: elitesystem.in
Referer: http://www.google.com/search?q=elitesystem.in
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: elitesystem.in
Referer: http://www.google.com/search?q=elitesystem.in
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=elitesystem.in
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://elitesystem.in/
Result: elitesystem.in is not infected or malware details are not published yet.
Result: elitesystem.in is not infected or malware details are not published yet.