Scanned pages/files
Request | Server response | Status |
http://rashid-industries.com/ | 200 OK Content-Length: 19917 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Ali TOOFAN HACKERS ZONE ...[11390 bytes skipped]... "> <marquee width="180" height="95" behavior="scroll" direction="up" scrollamount="1" scrolldelay="60" onmouseover="this.stop();" onmouseout="this.start();"> <table width="180" border="0" align="center" cellpadding="0" cellspacing="0"> <tr> <td><p><img src=/cpanel/pimgs/descp/ width='50' height='50' align='right'> <b>Hacked By Ali TOOFAN HACKERS ZONE</b><br>Hacked By Ali TOOFAN HACKERS ZONE....</p></td> </tr> <tr> <td align="right"><a href="news-detail.asp?nid=11"><img src="images/btn-more.jpg" alt="More" width="37" height="15" border="0" /></a></td> </tr> <tr> <td height="10"></td> </tr> <tr> <td><p><img src=/ ...[12768 bytes skipped]... | ||
http://rashid-industries.com/fixit.js | 200 OK Content-Length: 158 Content-Type: application/x-javascript | clean |
http://rashid-industries.com/product-detail.asp?MSecID=&SecID=&Pid=1 | 200 OK Content-Length: 39727 Content-Type: text/html | clean |
http://rashid-industries.com/stm31.js | 404 Not Found Content-Length: 1100 Content-Type: text/html | clean |
http://rashid-industries.com/test404page.js | 404 Not Found Content-Length: 1100 Content-Type: text/html | clean |
http://rashid-industries.com/jss/dw_scrollObj.js | 200 OK Content-Length: 3813 Content-Type: application/x-javascript | clean |
http://rashid-industries.com/jss/dw_glidescroll.js | 200 OK Content-Length: 2850 Content-Type: application/x-javascript | clean |
http://rashid-industries.com/product-detail.asp?MSecID=&SecID=&Pid=2 | 200 OK Content-Length: 39727 Content-Type: text/html | clean |
http://rashid-industries.com/product-detail.asp?MSecID=9&SecID=0&pid=3 | 200 OK Content-Length: 39776 Content-Type: text/html | clean |
http://rashid-industries.com/product-detail.asp?MSecID=9&SecID=0&pid=4 | 200 OK Content-Length: 39776 Content-Type: text/html | clean |
http://rashid-industries.com/product-detail.asp?MSecID=9&SecID=0&pid=5 | 200 OK Content-Length: 39776 Content-Type: text/html | clean |
http://rashid-industries.com/product-detail.asp?MSecID=9&SecID=0&pid=6 | 200 OK Content-Length: 39776 Content-Type: text/html | clean |
http://rashid-industries.com/product-detail.asp?MSecID=9&SecID=0&pid=1 | 200 OK Content-Length: 39776 Content-Type: text/html | clean |
http://rashid-industries.com/product-detail.asp?MSecID=9&SecID=0&pid=2 | 200 OK Content-Length: 39776 Content-Type: text/html | clean |
http://rashid-industries.com/product-detail.asp?MSecID=9&SecID=0&pid=7 | 200 OK Content-Length: 39776 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: rashid-industries.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Fri, 26 Jun 2015 08:23:00 GMT
Server: Microsoft-IIS/6.0
Content-Length: 19917
Content-Type: text/html
Set-Cookie: ASPSESSIONIDQQCRQBTC=MKAGPHACFLNFGKMHGPFIAPCO; path=/
X-Powered-By: ASP.NET
X-Powered-By: PleskWin
...19917 bytes of data.
GET / HTTP/1.1
Host: rashid-industries.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Fri, 26 Jun 2015 08:23:00 GMT
Server: Microsoft-IIS/6.0
Content-Length: 19917
Content-Type: text/html
Set-Cookie: ASPSESSIONIDQQCRQBTC=MKAGPHACFLNFGKMHGPFIAPCO; path=/
X-Powered-By: ASP.NET
X-Powered-By: PleskWin
...19917 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: rashid-industries.com
Referer: http://www.google.com/search?q=rashid-industries.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: rashid-industries.com
Referer: http://www.google.com/search?q=rashid-industries.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=rashid-industries.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://rashid-industries.com/
Result: rashid-industries.com is not infected or malware details are not published yet.
Result: rashid-industries.com is not infected or malware details are not published yet.