Scanned pages/files
Request | Server response | Status |
http://hentai-sex.milfdreamjugs.com/ | 200 OK Content-Length: 3037 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By ZHC Disastar <HTML><HEAD><TITLE>Hacked By ZHC Disastar </TITLE>
</HEAD> <BODY> <body bgcolor="#0000"> <center><img src="http://a5.sphotos.ak.fbcdn.net/hphotos-ak-snc6/250561_104081426350971_100002473416614_30010_7216722_n.jpg" alt="ZHCBanner"></center> <center><font color="Green"><b><big><big><big><blink>Hacked By<font color="#cdc9 ...[3416 bytes skipped]... | ||
http://hentai-sex.milfdreamjugs.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Sun, 11 May 2014 09:20:44 GMT Location: http://www.sextronix.com/hit/95/107302/5/1/default/ Server: Apache/2.2.19 (Unix) mod_ssl/2.2.19 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Content-Length: 425 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.sextronix.com/hit/95/107302/5/1/default/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 11 May 2014 09:21:22 GMT Location: http://www.freehentaipassport.com/nc/index.php?t=JqMBAIWAgIABXwAA Server: lighttpdlw2 Content-Type: text/html Set-Cookie: lastvisit_95_1=1968901177 Set-Cookie: plastvisit_95_1=1968901177; expires=Sun, 11-May-2014 11:21:22 GMT; Max-Age=7200 | clean |
http://www.freehentaipassport.com/nc/index.php?t=jqmbaiwagiabxwaa | 200 OK Content-Length: 22481 Content-Type: text/html | suspicious |
Suspicious code found <div class="header"> <div class="topimg"><img src="images/topband.jpg" width="1220" height="150"></div> <div class="topslogan"><a href="signup.html"><img src="images/slogan.png" width="597" height="47"></a></div> <div class="topsignup"><a href="signup.html"><img src="images/topjoin.png" width="234" height="41" border="0"></a></div> <div class="clear"></div> </div> | ||
http://www.freehentaipassport.com/ui/js/jquery-126.js | 200 OK Content-Length: 55749 Content-Type: text/javascript | clean |
http://hentai-sex.milfdreamjugs.com/ui/js/util.js | HTTP/1.1 302 Found Connection: close Date: Sun, 11 May 2014 09:20:45 GMT Location: http://www.sextronix.com/hit/95/107302/5/1/default/ Server: Apache/2.2.19 (Unix) mod_ssl/2.2.19 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Content-Length: 425 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.sextronix.com/test404page.js | 404 Not Found Content-Length: 345 Content-Type: text/html | clean |
http://hentai-sex.milfdreamjugs.com/ui/js/navaway_free.php | HTTP/1.1 302 Found Connection: close Date: Sun, 11 May 2014 09:20:46 GMT Location: http://www.sextronix.com/hit/95/107302/5/1/default/ Server: Apache/2.2.19 (Unix) mod_ssl/2.2.19 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Content-Length: 425 Content-Type: text/html; charset=iso-8859-1 | clean |
http://hentai-sex.milfdreamjugs.com/ui/js/signup.js | HTTP/1.1 302 Found Connection: close Date: Sun, 11 May 2014 09:20:46 GMT Location: http://www.sextronix.com/hit/95/107302/5/1/default/ Server: Apache/2.2.19 (Unix) mod_ssl/2.2.19 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Content-Length: 425 Content-Type: text/html; charset=iso-8859-1 | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hentai-sex.milfdreamjugs.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 11 May 2014 09:20:43 GMT
Server: Apache/2.2.19 (Unix) mod_ssl/2.2.19 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Type: text/html
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: hentai-sex.milfdreamjugs.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 11 May 2014 09:20:43 GMT
Server: Apache/2.2.19 (Unix) mod_ssl/2.2.19 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Type: text/html
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: hentai-sex.milfdreamjugs.com
Referer: http://www.google.com/search?q=hentai-sex.milfdreamjugs.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hentai-sex.milfdreamjugs.com
Referer: http://www.google.com/search?q=hentai-sex.milfdreamjugs.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hentai-sex.milfdreamjugs.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://hentai-sex.milfdreamjugs.com/
Result: hentai-sex.milfdreamjugs.com is not infected or malware details are not published yet.
Result: hentai-sex.milfdreamjugs.com is not infected or malware details are not published yet.