Scanned pages/files
| Request | Server response | Status |
http://fstrada.com/ | 200 OK Content-Length: 8204 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x0 src: http://rozup.ir/up/nootepad/d94784892f3cbdc91.swfe <iframe width="0" height="0" scrolling="no" frameborder="no" src="http://rozup.ir/up/nootepad/d94784892f3cbdc91.swfe"> Deface/Content modification. The following signature was found: Hacked By Hunter Mughal <!DOCTYPE html> <title>Hacked By Hunter Mughal</title> <link href="http://focsoft.blogspot.com/favicon.ico" rel="icon" type="image/x-icon"> <body bgcolor="black"> <style> <style type="text/css">body {cursor:url("http://cursors1.totallyfreecursors.com/thumbnails/p ...[8822 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js | 200 OK Content-Length: 72174 Content-Type: text/javascript | clean |
http://jqueryrotate.googlecode.com/svn/trunk/jQueryRotate.js | 200 OK Content-Length: 13892 Content-Type: text/plain | clean |
http://jqueryrotate.googlecode.com/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://jqueryrotate.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://www.p0wersurge.com/js/jquery-css-transform.js | 404 Not Found Content-Length: 3090 Content-Type: text/html | clean |
http://www.p0wersurge.com//ajax.cloudflare.com/cdn-cgi/nexp/dok3v=dccf16c0cc/appsh.min.js/ | 404 Not Found Content-Length: 3127 Content-Type: text/html | clean |
http://www.p0wersurge.com//ajax.cloudflare.com/cdn-cgi/nexp/dok3v=73806ac11c/apps1.min.js/ | 404 Not Found Content-Length: 3127 Content-Type: text/html | clean |
http://www.p0wersurge.com/js/rotate3Di.js | 404 Not Found Content-Length: 3079 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: fstrada.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 Mar 2015 18:00:12 GMT
Server: Apache/2.4.10 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Type: text/html
X-Powered-By: PHP/5.3.29
GET / HTTP/1.1
Host: fstrada.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 Mar 2015 18:00:12 GMT
Server: Apache/2.4.10 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Type: text/html
X-Powered-By: PHP/5.3.29
Second query (visit from search engine):
GET / HTTP/1.1
Host: fstrada.com
Referer: http://www.google.com/search?q=fstrada.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: fstrada.com
Referer: http://www.google.com/search?q=fstrada.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=fstrada.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://fstrada.com/
Result: fstrada.com is not infected or malware details are not published yet.
Result: fstrada.com is not infected or malware details are not published yet.