Scanned pages/files
Request | Server response | Status |
http://prx-meds.com/ | 200 OK Content-Length: 344 Content-Type: text/html | clean |
http://prx-meds.com/511.htm | 200 OK Content-Length: 13735 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By ...[1716 bytes skipped]... t="" src="http://im50.gulfup.com/fUCoR1.jpg" width="358" height="358"></p> <p style="color: rgb(255, 255, 255); font-family: Times New Roman; font-size: medium; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px" align="center"> <font face="Tahoma" size="3">Hacked By </font> <font face="Tahoma" size="3" color="#FF3300">Team 511</font><font face="Tahoma" size="3"> </font> <font face="Tahoma" color="#FF3300" size="3"><br> <br> </font><font face="Tahoma" size="3">تم اختراق الموقع من قب ...[16226 bytes skipped]... | ||
http://prx-meds.com/test404page.js | 404 Not Found Content-Length: 393 Content-Type: text/html | clean |
http://prx-meds.com/bb.JPG | 200 OK Content-Length: 53283 Content-Type: image/jpeg | clean |
http://prx-meds.com/favicon.ico | 200 OK Content-Length: 43 Content-Type: image/vnd.microsoft.icon | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: prx-meds.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 03 Dec 2014 07:00:08 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 344
Content-Type: text/html;charset=ISO-8859-1
...344 bytes of data.
GET / HTTP/1.1
Host: prx-meds.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 03 Dec 2014 07:00:08 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 344
Content-Type: text/html;charset=ISO-8859-1
...344 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: prx-meds.com
Referer: http://www.google.com/search?q=prx-meds.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: prx-meds.com
Referer: http://www.google.com/search?q=prx-meds.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=prx-meds.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://prx-meds.com/
Result: prx-meds.com is not infected or malware details are not published yet.
Result: prx-meds.com is not infected or malware details are not published yet.