Scanned pages/files
| Request | Server response | Status |
http://maliyorum.com/ | HTTP/1.1 200 OK Connection: close Date: Mon, 22 Jun 2015 07:52:38 GMT Accept-Ranges: bytes ETag: "5ea91b1094dd01:9b2" Server: Microsoft-IIS/5.0 Content-Length: 1287 Content-Location: http://maliyorum.com/Default.htm Content-Type: text/html Last-Modified: Fri, 20 Feb 2015 12:30:51 GMT MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET | clean |
http://maliyorum.com/default.htm | 200 OK Content-Length: 1287 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Master Joint <title> Hacked By Master Joint</title>
<link rel="shortcut icon" href="http://iran.grn.cc/13.png" /> <body text="#000000" bgcolor="#000000" link="#000000" vlink="#000000" alink="#000000"background="http://8pic.ir/images/05ljyh2hfz39borkm5vc.jpg"> <center><style type="text/css"> #FBI { font: 60px impact; color:#0f0; </style> <table height=100% width=100%><td align=center> ...[1130 bytes skipped]... | ||
http://maliyorum.com/test404page.js | 404 Object Not Found Content-Length: 4040 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: maliyorum.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 22 Jun 2015 07:52:38 GMT
Accept-Ranges: bytes
ETag: "5ea91b1094dd01:9b2"
Server: Microsoft-IIS/5.0
Content-Length: 1287
Content-Location: http://maliyorum.com/Default.htm
Content-Type: text/html
Last-Modified: Fri, 20 Feb 2015 12:30:51 GMT
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
...1287 bytes of data.
GET / HTTP/1.1
Host: maliyorum.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 22 Jun 2015 07:52:38 GMT
Accept-Ranges: bytes
ETag: "5ea91b1094dd01:9b2"
Server: Microsoft-IIS/5.0
Content-Length: 1287
Content-Location: http://maliyorum.com/Default.htm
Content-Type: text/html
Last-Modified: Fri, 20 Feb 2015 12:30:51 GMT
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
...1287 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: maliyorum.com
Referer: http://www.google.com/search?q=maliyorum.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: maliyorum.com
Referer: http://www.google.com/search?q=maliyorum.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=maliyorum.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://maliyorum.com/
Result: maliyorum.com is not infected or malware details are not published yet.
Result: maliyorum.com is not infected or malware details are not published yet.