Scanned pages/files
Request | Server response | Status |
http://siragomukoyu.com/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 27 Oct 2014 21:23:35 GMT Location: http://siragomukoyu.com/srgd/ Server: nginx Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.4.33 | clean |
http://siragomukoyu.com/srgd/ | 200 OK Content-Length: 5136 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HacKeD By Hack3D TeaM ...[3407 bytes skipped]... idth="107"></div> <br> <p align="center"> <img src="http://s14.postimg.org/z627d73xt/My_SQL_Com_Hacked_by_D35_Mond142_Member_Credential.gif" border="0" height="390" width="700"></p> <center> <p id="message" class="notes" align="center"> <b> <font style="margin: 0px; padding: 0px" color="#FFFF00" face="Courier New" size="5">HacKeD By Hack3D TeaM<br style="margin: 0px; padding: 0px"> </font><font face="Courier New"> <font style="margin: 0px; padding: 0px" color="#00FF00">r00tkit says:</font><font style="margin: 0px; padding: 0px" color="#FF0000"> I will back soon...</font> <br> <font style="margin: 0px; padding: 0px" color="white">Bulgarian</font><font style="margin: 0px; padding: 0px" color="red"> Hackers<br style="margin: ...[1694 bytes skipped]... | ||
http://www.netdisaster.com/js/mynd.js | 200 OK Content-Length: 6897 Content-Type: application/x-javascript | clean |
http://siragomukoyu.com/test404page.js | 404 Not Found Content-Length: 464 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: siragomukoyu.com
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Mon, 27 Oct 2014 21:23:35 GMT
Location: http://siragomukoyu.com/srgd/
Server: nginx
Content-Length: 0
Content-Type: text/html
X-Powered-By: PHP/5.4.33
...0 bytes of data.
GET / HTTP/1.1
Host: siragomukoyu.com
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Mon, 27 Oct 2014 21:23:35 GMT
Location: http://siragomukoyu.com/srgd/
Server: nginx
Content-Length: 0
Content-Type: text/html
X-Powered-By: PHP/5.4.33
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: siragomukoyu.com
Referer: http://www.google.com/search?q=siragomukoyu.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: siragomukoyu.com
Referer: http://www.google.com/search?q=siragomukoyu.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=siragomukoyu.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://siragomukoyu.com/
Result: siragomukoyu.com is not infected or malware details are not published yet.
Result: siragomukoyu.com is not infected or malware details are not published yet.