Scanned pages/files
Request | Server response | Status |
http://erosadd.com/ | 200 OK Content-Length: 8705 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: [!] [!] -Hacked By M4573R 5N|P3R [!] [!] ...[7894 bytes skipped]... ize=\"5\" face=\"Verdana\"><b> W</b></font><font face=\"WST_Span\" size=\"5\">AS </font><font size=\"5\" face=\"Verdana\"><b>H</b></font><font face=\"WST_Span\" size=\"5\">ER</font><font size=\"5\" face=\"Verdana\"><b>E</b></font></p> <p align=\"center\"><font face=\"Jokerman\" size=\"8\"> [!] [!] -Hacked By M4573R 5N|P3R [!] [!] </font></p> </font> <p align=\"center\"><font color=\"Red\" size=\"5\">-==[</font> <font color=\"white\" size=\"5\">We Love</font><font color=\"white\" size=\"5\"> PAKIS</font><font color=\"white\" size=\"5\">TAN</font> <font color=green size=\"5\">]==-</font><br /> <span class=\"style22\" lang=\"fr\"> </span><font color=\"white\"> PAKISTA ...[2323 bytes skipped]... | ||
http://erosadd.com/\'/B1D671CF-E532-4481-99AA-19F420D90332/netdefender/hui/ndhui.js?0=0&0=0&0=0\' | 404 Not Found Content-Length: 381 Content-Type: text/html | clean |
http://erosadd.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://erosadd.com/http://irbanner.ir/wp-content/uploads/2013/01/peel.js | 404 Not Found Content-Length: 372 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: erosadd.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 13 May 2015 00:53:21 GMT
Server: Apache Phusion_Passenger/4.0.10 mod_bwlimited/1.4 mod_fcgid/2.3.9
Content-Type: text/html
X-Powered-By: PHP/5.3.28
GET / HTTP/1.1
Host: erosadd.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 13 May 2015 00:53:21 GMT
Server: Apache Phusion_Passenger/4.0.10 mod_bwlimited/1.4 mod_fcgid/2.3.9
Content-Type: text/html
X-Powered-By: PHP/5.3.28
Second query (visit from search engine):
GET / HTTP/1.1
Host: erosadd.com
Referer: http://www.google.com/search?q=erosadd.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: erosadd.com
Referer: http://www.google.com/search?q=erosadd.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=erosadd.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://erosadd.com/
Result: erosadd.com is not infected or malware details are not published yet.
Result: erosadd.com is not infected or malware details are not published yet.