Scanned pages/files
Request | Server response | Status |
http://gegemimi.com/ | 200 OK Content-Length: 12508 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HaCked By Ahmdosa HaCker ...[445 bytes skipped]... cookie forgery, XSS, RFI, RCE, LFI, SQLi, MySQLi, MSSQLi, PostGreSQLi, Oracle Injection, LDAP Injection, SSI, Full Disclosure, File Disclosure, AFD, Arbitrary File Download "/> <BODY BGCOLOR="black"> <body style="background-image: url(http://i1004.photobucket.com/albums/af163/imnu11/openbg.gif); background-repeat: repeat;" link="white" alink="white" vlink="white"> <TITLE>HaCked By Ahmdosa HaCker</TITLE> <body oncontextmenu='return false;'> <DIV align=center> <br> <SPAN style="FILTER: blur(add=1,direction=270,strength=30); HEIGHT: 30px"> <P><FONT color=#c0c0c0 size=3> <table style="border-width: 1px;" height="400" width="65%" bgcolor="#000000" border="1" bordercolor="#565051"> <tbody><tr> <td style="border-sty ...[13154 bytes skipped]... | ||
http://gegemimi.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: gegemimi.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 23 Sep 2014 17:52:54 GMT
Server: Apache
Content-Encoding: none
Content-Length: 12508
Content-Type: text/html
...12508 bytes of data.
GET / HTTP/1.1
Host: gegemimi.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 23 Sep 2014 17:52:54 GMT
Server: Apache
Content-Encoding: none
Content-Length: 12508
Content-Type: text/html
...12508 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: gegemimi.com
Referer: http://www.google.com/search?q=gegemimi.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: gegemimi.com
Referer: http://www.google.com/search?q=gegemimi.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=gegemimi.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://gegemimi.com/
Result: gegemimi.com is not infected or malware details are not published yet.
Result: gegemimi.com is not infected or malware details are not published yet.