Scanned pages/files
| Request | Server response | Status |
http://galaxys2apps.net/ | 200 OK Content-Length: 53041 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Explo!T3r ...[79 bytes skipped]... tp://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head profile="http://gmpg.org/xfn/11"> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <title> Galaxy S2 Apps</title> <link rel="stylesheet" href=" <p><font color="#ff0000" size="4"><b><title>Hacked By Explo!T3r</title></b></font></p><p><font color="#ff0000" size="4"><b><span class="title">Sprites</span><br><br><span class="param" style="width:100%;text-align:center;">err</span></b></font></p><div style="background-color:black;color:brown;position:fixed;top:0px;left:0px;width:100%;height:100%;text-align:center;padding-top:99px;font-size:50px;z-index:;line-height:99px;"><font ...[69322 bytes skipped]... | ||
http://www.statcounter.com/counter/counter.js | 200 OK Content-Length: 21400 Content-Type: application/x-javascript | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 27376 Content-Type: text/javascript | clean |
http://galaxys2apps.net/productivity/ | 200 OK Content-Length: 42829 Content-Type: text/html | clean |
http://galaxys2apps.net/games/ | 200 OK Content-Length: 43765 Content-Type: text/html | clean |
http://galaxys2apps.net/communication/ | 200 OK Content-Length: 43293 Content-Type: text/html | clean |
http://galaxys2apps.net/tools/ | 200 OK Content-Length: 43446 Content-Type: text/html | clean |
http://galaxys2apps.net/widget/ | 200 OK Content-Length: 40724 Content-Type: text/html | clean |
http://galaxys2apps.net/widget/no-lock-galaxy-s2-widget/ | 200 OK Content-Length: 32644 Content-Type: text/html | clean |
http://galaxys2apps.net/author/admin/ | 200 OK Content-Length: 43157 Content-Type: text/html | clean |
http://galaxys2apps.net/games/airport-city-galaxy-s2-game/ | 200 OK Content-Length: 32397 Content-Type: text/html | clean |
http://galaxys2apps.net/tag/airport/ | 200 OK Content-Length: 22968 Content-Type: text/html | clean |
http://galaxys2apps.net/games/free-galaxy-s2-games/ | 200 OK Content-Length: 35736 Content-Type: text/html | clean |
http://galaxys2apps.net/games/dragon-fly-galaxy-s2-app/ | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://galaxys2apps.net/test404page.js | 404 Not Found Content-Length: 20864 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: galaxys2apps.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 22 Dec 2015 06:43:35 GMT
Server: Apache/2.2.22 (Unix) mod_ssl/2.2.22 OpenSSL/1.0.0-fips DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.2.9
GET / HTTP/1.1
Host: galaxys2apps.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 22 Dec 2015 06:43:35 GMT
Server: Apache/2.2.22 (Unix) mod_ssl/2.2.22 OpenSSL/1.0.0-fips DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.2.9
Second query (visit from search engine):
GET / HTTP/1.1
Host: galaxys2apps.net
Referer: http://www.google.com/search?q=galaxys2apps.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: galaxys2apps.net
Referer: http://www.google.com/search?q=galaxys2apps.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=galaxys2apps.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://galaxys2apps.net/
Result: galaxys2apps.net is not infected or malware details are not published yet.
Result: galaxys2apps.net is not infected or malware details are not published yet.