Scanned pages/files
| Request | Server response | Status |
http://proanie.com/ | HTTP/1.1 200 OK Date: Fri, 27 Feb 2015 22:23:28 GMT Accept-Ranges: bytes ETag: "9cee66d2032d01:33689" Server: Microsoft-IIS/6.0 Content-Length: 12220 Content-Location: http://proanie.com/index.htm Content-Type: text/html Last-Modified: Sat, 17 Jan 2015 06:40:04 GMT X-Powered-By: ASP.NET | clean |
http://proanie.com/index.htm | 200 OK Content-Length: 12220 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.55txt.com ...[2802 bytes skipped]... ¨èµåº</a> <a href='http://www.shhengyi.com.cn/aomenbaijiale/' class=bocai>æ¾³é¨ç¾å®¶ä¹</a> <a href='http://www.shhengyi.com.cn/aomendubo/' class=bocai>æ¾³é¨èµå</a> <a href='http://www.edu-jx.com/wangshangduchang/' class=bocai>æ¾³é¨èµåº</a> <a href='http://www.edu-jx.com/aomenxinpujingyulecheng/' class=bocai>æ¾³é¨è¡äº¬å¨±ä¹</a> <a href="http://www.55txt.com/2014">ç¾å®¶ä¹ç©æ³</a> <a href="http://BBS.55txt.com/2014">eä¸å</a> <a href="http://www.7weibo.com/sitemap.html">ç¾å®¶ä¹ç ´è§£</a> <a href="http://www.55txt.com/sitemap.html"> ç¾å®¶ä¹è·¯åç½</a> <a href="http://www.yystr.com/sitemap.html"> ç¾å®¶ä¹è·¯åç½</a> <a href="http://www.51zhongyao.com/sitemap.html"> ç¾å®¶ä¹è·¯åç½</a> <a href='http://www.7weibo.com/blog/ ...[1106 bytes skipped]... Deface/Content modification. The following signature was found: .:: Hacked By ulow ::. <HTML><HEAD><TITLE>.:: Hacked By ulow ::.</TITLE></HEAD>
<link href="http://www.flowgi.org/images/flag_ind_indonesia.gif" rel="SHORTCUT ICON" /><div align="center"> <div style="border-width: 1px; border-style: none; border-color: rgb(0, 0, 0) rgb(0, 0, 0) black black; z-index: 1; left: 0px; width: 100%; position: absolute; top: 0px; height: 300%; background-color: black;" id="Layer1"> <div><br /> ...[18642 bytes skipped]... | ||
http://proanie.com/test404page.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: proanie.com
Result:
HTTP/1.1 200 OK
Date: Fri, 27 Feb 2015 22:23:28 GMT
Accept-Ranges: bytes
ETag: "9cee66d2032d01:33689"
Server: Microsoft-IIS/6.0
Content-Length: 12220
Content-Location: http://proanie.com/index.htm
Content-Type: text/html
Last-Modified: Sat, 17 Jan 2015 06:40:04 GMT
X-Powered-By: ASP.NET
...12220 bytes of data.
GET / HTTP/1.1
Host: proanie.com
Result:
HTTP/1.1 200 OK
Date: Fri, 27 Feb 2015 22:23:28 GMT
Accept-Ranges: bytes
ETag: "9cee66d2032d01:33689"
Server: Microsoft-IIS/6.0
Content-Length: 12220
Content-Location: http://proanie.com/index.htm
Content-Type: text/html
Last-Modified: Sat, 17 Jan 2015 06:40:04 GMT
X-Powered-By: ASP.NET
...12220 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: proanie.com
Referer: http://www.google.com/search?q=proanie.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: proanie.com
Referer: http://www.google.com/search?q=proanie.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=proanie.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://proanie.com/
Result: proanie.com is not infected or malware details are not published yet.
Result: proanie.com is not infected or malware details are not published yet.