Scanned pages/files
Request | Server response | Status |
http://omo-confidential.ro/ | 200 OK Content-Length: 15405 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Mafia Security, Security, Hacker 4NG3L 0F SH4D0W, Hacked by 4NG3L 0F SH4D0W, Defacer, Vuln, inject, ...[53 bytes skipped]... lt;meta charset="utf-8" /> <TITLE>Singel Deface!</TITLE> <br/> <meta name="description" content="This Site Has Been Deface By Cyb3rCr0w|4NG3L 0F SH4D0W"> <meta name="keywords" content="This Site Has Been Deface by Cyb3rCr0w|4NG3L 0F SH4D0W, Deface by Cyb3rCr0w, Defaced by 4NG3L 0F SH4D0W, Cyb3rCr0w|4NG3L 0F SH4D0W Was Here, Mafia Security, Security, Hacker 4NG3L 0F SH4D0W, Hacked by 4NG3L 0F SH4D0W, Defacer, Vuln, inject, Maintenance, Black Hat by 4NG3L 0F SH4D0W"> <meta name="robot" content="index,follow"> <meta name="creator" content="Creator © 2014 - Deface By Cyb3rCr0w|4NG3L 0F SH4D0W."> <meta name="author" content="Cyb3rCr0w, 4NG3L 0F SH4D0W"> <meta name="language" content="English"> <meta name="revisit-after" content="1"> <link rel="SHORTCUT ICON" href="http://findicons ...[17101 bytes skipped]... | ||
http://omo-confidential.ro//www.blogger.com/static/v1/common/js/1851061575-csitail.js/ | 200 OK Content-Length: 15405 Content-Type: text/html | clean |
http://omo-confidential.ro/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: omo-confidential.ro
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 14 Jul 2015 23:56:02 GMT
Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 mod_fcgid/2.3.9
Content-Type: text/html
X-Powered-By: PHP/5.3.28
GET / HTTP/1.1
Host: omo-confidential.ro
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 14 Jul 2015 23:56:02 GMT
Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 mod_fcgid/2.3.9
Content-Type: text/html
X-Powered-By: PHP/5.3.28
Second query (visit from search engine):
GET / HTTP/1.1
Host: omo-confidential.ro
Referer: http://www.google.com/search?q=omo-confidential.ro
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: omo-confidential.ro
Referer: http://www.google.com/search?q=omo-confidential.ro
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=omo-confidential.ro
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://omo-confidential.ro/
Result: omo-confidential.ro is not infected or malware details are not published yet.
Result: omo-confidential.ro is not infected or malware details are not published yet.