Scanned pages/files
Request | Server response | Status |
http://photologic.info/ | 200 OK Content-Length: 6087 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY ./r4md_404 <!DOCTYPE html>
<title>HACKED BY ./r4md_404</title> <body background="http://transporteszeus.com/js/8bcddb025c198469b967c7451ba80e1d.jpg.png" oncontextmenu="return false" onkeydown="return false"><!-- BEGIN AV_TOOLBAR --> <script type="text/javascript"> (function(d, s) { var fjs = d.getElementsByTagName(s)[0], js = d.createElement(s); js.src = "//tb.altervista.org/js/script.js?1"; ...[6525 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js | 200 OK Content-Length: 72174 Content-Type: text/javascript | clean |
http://jqueryrotate.googlecode.com/svn/trunk/jQueryRotate.js | 401 Authorization Required Content-Length: 401 Content-Type: text/html | clean |
http://jqueryrotate.googlecode.com/test404page.js | 404 Not Found Content-Length: 1575 Content-Type: text/html | clean |
http://jqueryrotate.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1561 Content-Type: text/html | clean |
http://www.p0wersurge.com/js/jquery-css-transform.js | 404 Not Found Content-Length: 2971 Content-Type: text/html | clean |
http://www.p0wersurge.com//ajax.cloudflare.com/cdn-cgi/nexp/dok3v=dccf16c0cc/appsh.min.js/ | 404 Not Found Content-Length: 6072 Content-Type: text/html | clean |
http://www.p0wersurge.com/cdn-cgi/se/javascripts/modernizr.js | 200 OK Content-Length: 7305 Content-Type: application/javascript | clean |
http://www.p0wersurge.com//ajax.cloudflare.com/cdn-cgi/nexp/dok3v=73806ac11c/apps1.min.js/ | 404 Not Found Content-Length: 6072 Content-Type: text/html | clean |
http://www.p0wersurge.com//ajax.cloudflare.com/cdn-cgi/nexp/dok3v=73806ac11c/apps1.min.js/./ | 404 Not Found Content-Length: 6072 Content-Type: text/html | clean |
http://www.p0wersurge.com//ajax.cloudflare.com/cdn-cgi/nexp/dok3v=73806ac11c/apps1.min.js/././ | 404 Not Found Content-Length: 6072 Content-Type: text/html | clean |
http://www.p0wersurge.com//ajax.cloudflare.com/cdn-cgi/nexp/dok3v=73806ac11c/apps1.min.js/./././ | 404 Not Found Content-Length: 6072 Content-Type: text/html | clean |
http://www.p0wersurge.com//ajax.cloudflare.com/cdn-cgi/nexp/dok3v=73806ac11c/apps1.min.js/././././ | 404 Not Found Content-Length: 6072 Content-Type: text/html | clean |
http://www.p0wersurge.com//ajax.cloudflare.com/cdn-cgi/nexp/dok3v=73806ac11c/apps1.min.js/./././././ | 404 Not Found Content-Length: 6072 Content-Type: text/html | clean |
http://www.p0wersurge.com//ajax.cloudflare.com/cdn-cgi/nexp/dok3v=73806ac11c/apps1.min.js/././././././ | 404 Not Found Content-Length: 6072 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: photologic.info
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 07 Nov 2015 19:11:28 GMT
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Ngpass_ngall: 1
X-Pingback: http://photologic.info/xmlrpc.php
GET / HTTP/1.1
Host: photologic.info
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 07 Nov 2015 19:11:28 GMT
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Ngpass_ngall: 1
X-Pingback: http://photologic.info/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: photologic.info
Referer: http://www.google.com/search?q=photologic.info
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: photologic.info
Referer: http://www.google.com/search?q=photologic.info
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=photologic.info
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://photologic.info/
Result: photologic.info is not infected or malware details are not published yet.
Result: photologic.info is not infected or malware details are not published yet.