Scanned pages/files
Request | Server response | Status |
http://www.pretread.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 17 Jul 2015 15:29:06 GMT Location: http://www.pretread.com/index.php?mmid=1 Server: Apache Content-Length: 248 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.pretread.com/index.php?mmid=1 | 200 OK Content-Length: 81268 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By ...[85812 bytes skipped]... /> </div> </div> <div class="col-lg-6 col-md-6 newarticle col-xs-12 col-sm-6 article"> <a href="news.php"><h4>Article</h4></a> <div class="articleWrapper"> <div class="articleContent"> <span><a href="news_inner.php?id=29">zalim was here-17/07/2015</a></span> <p> Hacked By "Zalim" ! function($) { "use strict"; var Typed = function(el, options) { this.el = $(el); this.options = $.extend({}, $.fn.typed.defaults, options); this.<a href="news_inner.php?id=29">[ More ]</a> </p> </div> <div class="articleContent"> <span><a href="news_inner.php?id=28">Doha Metro,Qatar â Metro Rail bridge ...[9083 bytes skipped]... | ||
http://www.pretread.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: pretread.com
Result:
GET / HTTP/1.1
Host: pretread.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: pretread.com
Referer: http://www.google.com/search?q=pretread.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: pretread.com
Referer: http://www.google.com/search?q=pretread.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pretread.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://pretread.com/
Result: pretread.com is not infected or malware details are not published yet.
Result: pretread.com is not infected or malware details are not published yet.