Scanned pages/files
Request | Server response | Status |
http://shossain.info/ | 200 OK Content-Length: 6888 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HackeD By Anonphantom & Ox Adam <html><!-- Anonphantom --><head><script type="text/javascript"> function mischandler(){ return false; } function mousehandler(e){ var myevent = (isNS) ? e : event; var eventbutton = (isNS) ? myevent.which : myevent.button; if((eventbutton==2)||(eventbutton==3)) return false; } document.oncontextmenu = mischandler; document.onmousedown = mousehandler; document.onmouseup = mousehandler; var ...[7712 bytes skipped]... | ||
http://shossain.info/test404page.js | 200 OK Content-Length: 6888 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: shossain.info
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 03 Sep 2014 17:29:22 GMT
Accept-Ranges: bytes
ETag: "36304da-1ae8-4fb8f29cc69c0"
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Length: 6888
Content-Type: text/html
Last-Modified: Wed, 11 Jun 2014 13:10:07 GMT
...6888 bytes of data.
GET / HTTP/1.1
Host: shossain.info
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 03 Sep 2014 17:29:22 GMT
Accept-Ranges: bytes
ETag: "36304da-1ae8-4fb8f29cc69c0"
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Length: 6888
Content-Type: text/html
Last-Modified: Wed, 11 Jun 2014 13:10:07 GMT
...6888 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: shossain.info
Referer: http://www.google.com/search?q=shossain.info
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: shossain.info
Referer: http://www.google.com/search?q=shossain.info
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=shossain.info
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://shossain.info/
Result: shossain.info is not infected or malware details are not published yet.
Result: shossain.info is not infected or malware details are not published yet.