Scanned pages/files
Request | Server response | Status |
http://green4all.com/ | 200 OK Content-Length: 4336 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HaCkeD By KamraN HellisH ...[174 bytes skipped]... r/><style> body{background:#400 url(http://www.uplooder.net/img/image/68/09a8de2364bbeb43e51884eb4ddc08b6/zHNCk2e.gif) repeat; font-family:'Cosmic Sans'} GWMc/cok.gif) scroll repeat center center; </style> </script> <br><br><br><br><br><br><br><br><br><font color=green size=10> HaCkeD By KamraN HellisH<br><hr> kamranhellish@gmail.com<br><font size=5 color=brown> Not Forget KamraN HellisH<br> <font size=5 color=brown>Israel Will Destroy<font size=5 color=brown><br>our Lifes Are For Iran<font size=5 color=red><br>FuCk All Arabs <body> <script type="text/javascript"> function tb14_makeArray(n){ this.length = n; return this.length; } tb1 ...[4106 bytes skipped]... | ||
http://green4all.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: green4all.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 19 Dec 2015 09:08:37 GMT
Server: Apache
Content-Length: 4336
Content-Type: text/html
X-Powered-By: PHP/5.4.34
...4336 bytes of data.
GET / HTTP/1.1
Host: green4all.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 19 Dec 2015 09:08:37 GMT
Server: Apache
Content-Length: 4336
Content-Type: text/html
X-Powered-By: PHP/5.4.34
...4336 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: green4all.com
Referer: http://www.google.com/search?q=green4all.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: green4all.com
Referer: http://www.google.com/search?q=green4all.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=green4all.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://green4all.com/
Result: green4all.com is not infected or malware details are not published yet.
Result: green4all.com is not infected or malware details are not published yet.