Scanned pages/files
Request | Server response | Status |
http://poisepm.com/ | 200 OK Content-Length: 678 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Dz-W0rm <html>
<title>Dz-W0rm</title> <body bgcolor="black"> <center> <font FACE="Impact" size="7" COLOR="#FF0000">Hacked By Dz-W0rm<br><font FACE="Impact" size="7" COLOR="#FFFFFF">Algerian Hacker</font></font></p> <img style="" height="400" width="700" src="http://im45.gulfup.com/qfZCiK.jpg"></p> <font FACE="Impact" size="5" COLOR="#FF00FF">Greetz To : PoTi_SaD-Dz -- Ismail Adams -- All Algerian Hackers</font></p> <font FACE="Impact" size="5" COLOR="#0000FF">Don't Contact Me :< ...[245 bytes skipped]... | ||
http://poisepm.com/test404page.js | 404 Not Found Content-Length: 387 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: poisepm.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 26 Aug 2014 04:58:19 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 678
Content-Type: text/html
Last-Modified: Sat, 05 Apr 2014 14:55:04 GMT
...678 bytes of data.
GET / HTTP/1.1
Host: poisepm.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 26 Aug 2014 04:58:19 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 678
Content-Type: text/html
Last-Modified: Sat, 05 Apr 2014 14:55:04 GMT
...678 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: poisepm.com
Referer: http://www.google.com/search?q=poisepm.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: poisepm.com
Referer: http://www.google.com/search?q=poisepm.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=poisepm.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://poisepm.com/
Result: poisepm.com is not infected or malware details are not published yet.
Result: poisepm.com is not infected or malware details are not published yet.