Scanned pages/files
| Request | Server response | Status |
http://maslogistics.net/ | 200 OK Content-Length: 25574 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HAcked By Totaled_Crixu ...[10074 bytes skipped]... t;/home/maslogis/public_html/modules/php/php.module(80) : eval()'d code</em>).</li> </ul> </div> </div> <div id="node-163" class="node node-article node-promoted node-teaser clearfix" about="/crixu.php" typeof="sioc:Item foaf:Document"> <h2 property="dc:title" datatype=""><a href="/crixu.php">HAcked By Totaled_Crixu</a></h2> <div class="submitted"> <span property="dc:date dc:created" content="2015-05-21T06:36:42+05:30" datatype="xsd:dateTime" rel="sioc:has_creator">Submitted by <span class="username" xml:lang="" about="/user/1" typeof="sioc:UserAccount" property="foaf:name" datatype="">HolaKo</span> on Thu, 05/21/2015 - 06:36</span> </div> <div class="content"> <div cl ...[19019 bytes skipped]... | ||
http://maslogistics.net/sites/all/modules/jquery_update/replace/jquery/1.5/jquery.min.js?v=1.5.2 | 200 OK Content-Length: 85275 Content-Type: application/x-javascript | clean |
http://maslogistics.net/misc/jquery.once.js?v=1.2 | 200 OK Content-Length: 3053 Content-Type: application/x-javascript | clean |
http://maslogistics.net/misc/drupal.js?nej6is | 200 OK Content-Length: 14977 Content-Type: application/x-javascript | clean |
http://maslogistics.net/sites/all/libraries/colorbox/jquery.colorbox-min.js?nej6is | 200 OK Content-Length: 11077 Content-Type: application/x-javascript | clean |
http://maslogistics.net/sites/all/modules/colorbox/js/colorbox.js?nej6is | 200 OK Content-Length: 393 Content-Type: application/x-javascript | clean |
http://maslogistics.net/sites/all/modules/colorbox/styles/plain/colorbox_style.js?nej6is | 200 OK Content-Length: 1313 Content-Type: application/x-javascript | clean |
http://maslogistics.net/sites/all/modules/colorbox/js/colorbox_load.js?nej6is | 200 OK Content-Length: 1186 Content-Type: application/x-javascript | clean |
http://maslogistics.net/sites/all/modules/lightbox2/js/lightbox.js?1433423938 | 200 OK Content-Length: 46373 Content-Type: application/x-javascript | clean |
http://maslogistics.net/sites/all/modules/panels/js/panels.js?nej6is | 200 OK Content-Length: 774 Content-Type: application/x-javascript | clean |
http://maslogistics.net/sites/all/modules/views_slideshow/js/views_slideshow.js?nej6is | 200 OK Content-Length: 19722 Content-Type: application/x-javascript | clean |
http://maslogistics.net/function.file-put-contents | 404 Not Found Content-Length: 8554 Content-Type: text/html | clean |
http://maslogistics.net/sites/all/modules/lightbox2/js/lightbox.js?1433423945 | 200 OK Content-Length: 46373 Content-Type: application/x-javascript | clean |
http://maslogistics.net/test404page.js | 404 Not Found Content-Length: 297 Content-Type: text/html | clean |
http://maslogistics.net/crixu.php | 200 OK Content-Length: 14226 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: maslogistics.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 04 Jun 2015 13:18:58 GMT
ETag: "1433423938"
Server: Apache
Vary: Accept-Encoding
Content-Language: en
Content-Type: text/html; charset=utf-8
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Thu, 04 Jun 2015 13:18:58 +0000
X-Generator: Drupal 7 (http://drupal.org)
X-Powered-By: PHP/5.3.29
GET / HTTP/1.1
Host: maslogistics.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 04 Jun 2015 13:18:58 GMT
ETag: "1433423938"
Server: Apache
Vary: Accept-Encoding
Content-Language: en
Content-Type: text/html; charset=utf-8
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Thu, 04 Jun 2015 13:18:58 +0000
X-Generator: Drupal 7 (http://drupal.org)
X-Powered-By: PHP/5.3.29
Second query (visit from search engine):
GET / HTTP/1.1
Host: maslogistics.net
Referer: http://www.google.com/search?q=maslogistics.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: maslogistics.net
Referer: http://www.google.com/search?q=maslogistics.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=maslogistics.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://maslogistics.net/
Result: maslogistics.net is not infected or malware details are not published yet.
Result: maslogistics.net is not infected or malware details are not published yet.