Scanned pages/files
Request | Server response | Status |
http://nitedsp2.org/ | 200 OK Content-Length: 114931 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY ...[78904 bytes skipped]... a498e03338c4" title="Email" onclick="window.open(this.href,'win2','width=400,height=350,menubar=yes,resizable=yes'); return false;"><img src="/templates/mw_fresh/images/system/emailButton.png" alt="Email" /></a> | Hits: 584 </div> <div class="art-postcontent"> <div class="art-article"><p style="text-align: center;"><span style="font-size: xx-large;"><strong>HACKED BY <a href="https://www.facebook.com/EvoLusionz">HIDDEN27</a></strong></span></p> <p style="text-align: center;"><br /><span style="font-size: large;">Fuck You Admin !</span><br /><span style="font-size: large;">your website can not upload the file html / php </span><br /><span style="font-size: large;">so i just delete all your database: v</span><br /><br /><span style="fo ...[53796 bytes skipped]... | ||
http://nitedsp2.org/media/system/js/core.js | 200 OK Content-Length: 4225 Content-Type: application/x-javascript | clean |
http://nitedsp2.org/media/system/js/mootools-core.js | 200 OK Content-Length: 88540 Content-Type: application/x-javascript | clean |
http://nitedsp2.org/media/system/js/caption.js | 200 OK Content-Length: 800 Content-Type: application/x-javascript | clean |
http://nitedsp2.org/modules/mod_aidanews2/lib/pagination/aidapager.js | 200 OK Content-Length: 15147 Content-Type: application/x-javascript | clean |
http://nitedsp2.org/media/system/js/mootools-more.js | 200 OK Content-Length: 238128 Content-Type: application/x-javascript | clean |
http://nitedsp2.org/media/system/js/tabs.js | 200 OK Content-Length: 2468 Content-Type: application/x-javascript | clean |
http://nitedsp2.org/modules/mod_ariextmenu/mod_ariextmenu/js/ext-core.js | 200 OK Content-Length: 85836 Content-Type: application/x-javascript | clean |
http://nitedsp2.org/modules/mod_ariextmenu/mod_ariextmenu/js/menu.min.js | 200 OK Content-Length: 4517 Content-Type: application/x-javascript | clean |
http://nitedsp2.org/media/system/js/modal.js | 200 OK Content-Length: 9486 Content-Type: application/x-javascript | clean |
http://nitedsp2.org/components/com_phocagallery/assets/js/shadowbox/shadowbox.js | 200 OK Content-Length: 27272 Content-Type: application/x-javascript | clean |
http://nitedsp2.org/templates/mw_fresh/jquery.js | 200 OK Content-Length: 91668 Content-Type: application/x-javascript | clean |
http://nitedsp2.org/templates/mw_fresh/script.js | 200 OK Content-Length: 6740 Content-Type: application/x-javascript | clean |
http://nitedsp2.org/index.php/2012-02-07-01-38-46 | 200 OK Content-Length: 40472 Content-Type: text/html | clean |
http://nitedsp2.org/index.php/2012-02-07-01-40-18 | 200 OK Content-Length: 53197 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: nitedsp2.org
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Fri, 12 Dec 2014 04:45:06 GMT
Pragma: no-cache
Server: Apache/2.2.11
Vary: Accept-Encoding,User-Agent
Content-Length: 164334
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 1ca1f0c5976af4404a43850d627f67a8=c68f5ee06c510e29eb5496f6919adc5b; path=/
X-Died: timeout at scan.pm line 1566.
X-Powered-By: PHP/5.2.10
...164334 bytes of data.
GET / HTTP/1.1
Host: nitedsp2.org
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Fri, 12 Dec 2014 04:45:06 GMT
Pragma: no-cache
Server: Apache/2.2.11
Vary: Accept-Encoding,User-Agent
Content-Length: 164334
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 1ca1f0c5976af4404a43850d627f67a8=c68f5ee06c510e29eb5496f6919adc5b; path=/
X-Died: timeout at scan.pm line 1566.
X-Powered-By: PHP/5.2.10
...164334 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: nitedsp2.org
Referer: http://www.google.com/search?q=nitedsp2.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: nitedsp2.org
Referer: http://www.google.com/search?q=nitedsp2.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=nitedsp2.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://nitedsp2.org/
Result: nitedsp2.org is not infected or malware details are not published yet.
Result: nitedsp2.org is not infected or malware details are not published yet.