Scanned pages/files
Request | Server response | Status |
http://paos.co/s.php | 200 OK Content-Length: 1547 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Consept_IXI <html>
<head> <!-- Zone-H Mirror Accepted Notified By Consept_IXI --> <meta http-equiv="Content-Type" content="text/html; charset=utf-8"> <title>Hacked by Consept_IXI </title> </head> <meta name="robots" content="index, follow"> <link rel="SHORTCUT ICON" <meta name="description" content=" Hacked by Consept_IXI - Hacked by Consept_IXI - Hacked by Consept_IXI" /> <meta name="googlebot" content="index,follow" /> <meta name="robots" content="all" /> <meta name="robots schedule" content="auto" /> <meta n ...[1397 bytes skipped]... | ||
http://paos.co/test404page.js | 404 Not Found Content-Length: 12839 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.9.1.js | 200 OK Content-Length: 268381 Content-Type: application/javascript | clean |
http://suspended.hostgator.com/js/simple-expand.min.js | 200 OK Content-Length: 2782 Content-Type: text/javascript | clean |
http://paos.co/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 17 Aug 2015 07:10:53 GMT Location: http://paolarodriguez.net/ Server: nginx/1.8.0 Content-Length: 291 Content-Type: text/html; charset=iso-8859-1 | clean |
http://paolarodriguez.net/ | 200 OK Content-Length: 39877 Content-Type: text/html | clean |
http://paolarodriguez.net/wp-includes/js/jquery/jquery.js?ver=1.11.2 | 200 OK Content-Length: 95952 Content-Type: application/javascript | clean |
http://paolarodriguez.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://paolarodriguez.net/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ajax.min.js?ver=4.2.4 | 200 OK Content-Length: 2693 Content-Type: application/javascript | clean |
http://paolarodriguez.net/wp-content/plugins/jetpack/modules/shortcodes/js/jquery.cycle.js?ver=2.9999.8 | 200 OK Content-Length: 52470 Content-Type: application/javascript | clean |
http://paolarodriguez.net/wp-content/plugins/jetpack/modules/shortcodes/js/slideshow-shortcode.js?ver=20121214.1 | 200 OK Content-Length: 5544 Content-Type: application/javascript | clean |
http://paolarodriguez.net/wp-content/plugins/jetpack/modules/photon/photon.js?ver=20130122 | 200 OK Content-Length: 1378 Content-Type: application/javascript | clean |
http://paolarodriguez.net/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/nextgen_gallery_display/static/common.min.js?ver=2.1.7 | 200 OK Content-Length: 1507 Content-Type: application/javascript | clean |
http://paolarodriguez.net/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/lightbox/static/lightbox_context.min.js | 200 OK Content-Length: 966 Content-Type: application/javascript | clean |
http://paolarodriguez.net/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/lightbox/static/fancybox/jquery.easing-1.3.pack.js | 200 OK Content-Length: 6717 Content-Type: application/javascript | clean |
http://paolarodriguez.net/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/lightbox/static/fancybox/jquery.fancybox-1.3.4.pack.js | 200 OK Content-Length: 15624 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: paos.co
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Mon, 17 Aug 2015 07:10:53 GMT
Location: http://paolarodriguez.net/
Server: nginx/1.8.0
Content-Length: 291
Content-Type: text/html; charset=iso-8859-1
...291 bytes of data.
GET / HTTP/1.1
Host: paos.co
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Mon, 17 Aug 2015 07:10:53 GMT
Location: http://paolarodriguez.net/
Server: nginx/1.8.0
Content-Length: 291
Content-Type: text/html; charset=iso-8859-1
...291 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: paos.co
Referer: http://www.google.com/search?q=paos.co
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: paos.co
Referer: http://www.google.com/search?q=paos.co
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=paos.co
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://paos.co/
Result: paos.co is not infected or malware details are not published yet.
Result: paos.co is not infected or malware details are not published yet.