Scanned pages/files
Request | Server response | Status |
http://shahrsazan.com/ | 200 OK Content-Length: 10437 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By ...[4907 bytes skipped]... ='0' cellpadding='8' cellspacing='0' align='center'><tr><td align='right' valign='top' class='TopText'> <title></title> <meta charset="utf-8" /> <meta content="3" http-equiv="refresh" /><!--not recommended for sane people--> <h1 style="text-align: center;"> <span style="font-size: xx-large; font-family: comic sans ms,sans-serif;">Hacked By <span style="color: rgb(255, 0, 0);">Abolfazl74</span></span> </h1> <p style="text-align: center;"> <br /> <span style="font-size: medium;">پرÚ٠باÙاست</span> </p> <p style="text-align: center;"> <img width="59" height="59" border="0" src="http://ding.sjtu.edu.cn/ding/editor/plugins/emoticons/images/29.gif" /><br /> <span style="font-size: medium;">& ...[7525 bytes skipped]... | ||
http://shahrsazan.com/DX/KMSMain.js | 200 OK Content-Length: 1043 Content-Type: application/javascript | clean |
http://shahrsazan.com/index_EN.php | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://shahrsazan.com/test404page.js | 404 Not Found Content-Length: 484 Content-Type: text/html | clean |
http://shahrsazan.com/index.php?VID=1&PageID=4 | 200 OK Content-Length: 8973 Content-Type: text/html | clean |
http://shahrsazan.com/index.php | 200 OK Content-Length: 10437 Content-Type: text/html | clean |
http://shahrsazan.com/index.php?VID=1&PageID=3 | 200 OK Content-Length: 10698 Content-Type: text/html | clean |
http://shahrsazan.com/index.php?VID=1&PageID=5 | 200 OK Content-Length: 9167 Content-Type: text/html | clean |
http://shahrsazan.com/file:///E:Workingwwwroot16_ShahrSazanuploads67F3L.jpg | 404 Not Found Content-Length: 523 Content-Type: text/html | clean |
http://shahrsazan.com/E:/Working/wwwroot/16_ShahrSazan/uploads/67F3L.jpg | 404 Not Found Content-Length: 520 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: shahrsazan.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 24 Sep 2015 11:08:43 GMT
Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips
Vary: Accept-Encoding,User-Agent
Content-Type: text/html
X-Powered-By: PHP/5.3.29
GET / HTTP/1.1
Host: shahrsazan.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 24 Sep 2015 11:08:43 GMT
Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips
Vary: Accept-Encoding,User-Agent
Content-Type: text/html
X-Powered-By: PHP/5.3.29
Second query (visit from search engine):
GET / HTTP/1.1
Host: shahrsazan.com
Referer: http://www.google.com/search?q=shahrsazan.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: shahrsazan.com
Referer: http://www.google.com/search?q=shahrsazan.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=shahrsazan.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://shahrsazan.com/
Result: shahrsazan.com is not infected or malware details are not published yet.
Result: shahrsazan.com is not infected or malware details are not published yet.