Scanned pages/files
| Request | Server response | Status |
http://www.paysdudropt.com/ | 200 OK Content-Length: 12015 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: +ADw-title+AD4-Hacked by White-Shadow +AHw B3YAZ.ORG+ADw-/title+AD4 ...[230 bytes skipped]... /DTD/xhtml1-transitional.dtd+ACIAPg +ADw-html xmlns+AD0AIg-http://www.w3.org/1999/xhtml+ACIAPg +ADwAIQ---Bu +AN0-ndex White-Shadow Taraf+AP0-ndan Yap+AP0-lm+AP0A/g-t+AP0-r--+AD4 +ADwAIQ---Kodlar+AP0 +AMc-alma +AN4-erefsiz--+AD4 +ADwAIQ---B3YAZ.ORG--+AD4 +ADw-head+AD4 +ADw-meta http-equiv+AD0AIg-Content-Type+ACI content+AD0AIg-text/html+ADs charset+AD0-utf-8+ACI /+AD4 +ADw-title+AD4-Hacked by White-Shadow +AHw B3YAZ.ORG+ADw-/title+AD4 +ADw-style type+AD0AIg-text/css+ACIAPg body +AHs background-color: +ACM-000+ADs +AH0 body,td,th +AHs color: +ACM-FFF+ADs +AH0 .kirmizi +AHs color: +ACM-F00+ADs +AH0 .team +AHs color: +ACM-F00+ADs +AH0 +ADw-/style+AD4 +ADw-/head+AD4+ADw-body+AD4 +ADw-center+AD4 +ADw-img src+AD0AIg-http://i.hizliresim.com/vga87v.png+ACI alt+AD0AIg-White-Shadow b3yaz.org+ACI /+AD4APA-h2 class+AD0AIg-kirm ...[12720 bytes skipped]... | ||
http://www.paysdudropt.com/lib/js/jquery/jquery.js | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://www.paysdudropt.com/lib/js/jquery/jquery-migrate.min.js | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://connect.facebook.net/en_US/all.js | 200 OK Content-Length: 173279 Content-Type: application/x-javascript | clean |
http://platform.twitter.com/widgets.js | 200 OK Content-Length: 110097 Content-Type: application/javascript | clean |
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 13020 Content-Type: application/javascript | clean |
http://www.paysdudropt.com//platform.linkedin.com/in.js/ | 404 Not Found Content-Length: 8870 Content-Type: text/html | clean |
http://widgets.digg.com/buttons.js | 404 Not Found Content-Length: 571 Content-Type: text/html | clean |
http://widgets.digg.com/test404page.js | 404 Not Found Content-Length: 571 Content-Type: text/html | clean |
http://www.paysdudropt.com/template/assets/js/finch.js | 200 OK Content-Length: 474 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: paysdudropt.com
Result:
GET / HTTP/1.1
Host: paysdudropt.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: paysdudropt.com
Referer: http://www.google.com/search?q=paysdudropt.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: paysdudropt.com
Referer: http://www.google.com/search?q=paysdudropt.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=paysdudropt.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://paysdudropt.com/
Result: paysdudropt.com is not infected or malware details are not published yet.
Result: paysdudropt.com is not infected or malware details are not published yet.