Scanned pages/files
| Request | Server response | Status |
http://ssscasino.com/ | 200 OK Content-Length: 2312 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HackeD By X-pro Team <html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta charset="utf-8"><link rel="shortcut icon" href="http://im81.gulfup.com/k04hY0.gif" type="image/x-icon"> <meta name="viewport" content="initial-scale = 1.0, maximum-scale = 1.0, user-scalable = no, width = device-width"> <meta name="description" content="HackeD By X-pro Team"> <meta name="keywords" content="HackeD By X-pro Team"> <meta name="keywords" content="HackeD By X-pro Team"> <meta name="description" content="HackeD By X-pro Team"> <meta name="copyright" content="HackeD By X-pro Team"> <title>HackeD By X-pro Team</title><link href="http://fonts.googleapis.com/css?family=Cantarell" rel="stylesheet" type="text/css"> < ...[2002 bytes skipped]... | ||
http://ssscasino.com/test404page.js | 200 OK Content-Length: 11825 Content-Type: text/html | clean |
http://maps.google.com/maps/api/js?sensor=false | 200 OK Content-Length: 4326 Content-Type: text/javascript | clean |
http://ajax.googleapis.com/ajax/libs/swfobject/2.1/swfobject.js | 200 OK Content-Length: 9759 Content-Type: text/javascript | clean |
http://ssscasino.com/wp-includes/js/jquery/jquery.js?ver=1.7.1 | 200 OK Content-Length: 93889 Content-Type: application/javascript | clean |
http://ssscasino.com/wp-content/themes/Pluto/js/fancybox/jquery.fancybox-1.3.0.js?ver=1.1 | 200 OK Content-Length: 27766 Content-Type: application/javascript | clean |
http://ssscasino.com/wp-content/themes/Pluto/js/jquery.easing.js?ver=1.1 | 200 OK Content-Length: 8097 Content-Type: application/javascript | clean |
http://ssscasino.com/wp-content/themes/Pluto/js/jquery.nivo.slider.js?ver=1.1 | 200 OK Content-Length: 25281 Content-Type: application/javascript | clean |
http://ssscasino.com/wp-content/themes/Pluto/js/gmap.js?ver=1.1 | 200 OK Content-Length: 8873 Content-Type: application/javascript | clean |
http://ssscasino.com/wp-content/themes/Pluto/js/jquery.tubular.js?ver=1.1 | 200 OK Content-Length: 1990 Content-Type: application/javascript | clean |
http://ssscasino.com/wp-content/themes/Pluto/js/jquery.validate.js?ver=1.1 | 200 OK Content-Length: 25365 Content-Type: application/javascript | clean |
http://ssscasino.com/wp-content/themes/Pluto/js/jquery.history.js?ver=1.1 | 200 OK Content-Length: 6466 Content-Type: application/javascript | clean |
http://ssscasino.com/wp-content/themes/Pluto/js/browser.js?ver=1.1 | 200 OK Content-Length: 2614 Content-Type: application/javascript | clean |
http://ssscasino.com/wp-content/themes/Pluto/js/hint.js?ver=1.1 | 200 OK Content-Length: 987 Content-Type: application/javascript | clean |
http://ssscasino.com/wp-content/themes/Pluto/js/jquery.backstretch.js?ver=1.1 | 200 OK Content-Length: 1210 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ssscasino.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 06 Feb 2015 19:30:05 GMT
Accept-Ranges: bytes
Server: nginx/1.6.2
Content-Length: 2312
Content-Type: text/html
Last-Modified: Fri, 12 Dec 2014 16:16:41 GMT
...2312 bytes of data.
GET / HTTP/1.1
Host: ssscasino.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 06 Feb 2015 19:30:05 GMT
Accept-Ranges: bytes
Server: nginx/1.6.2
Content-Length: 2312
Content-Type: text/html
Last-Modified: Fri, 12 Dec 2014 16:16:41 GMT
...2312 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: ssscasino.com
Referer: http://www.google.com/search?q=ssscasino.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ssscasino.com
Referer: http://www.google.com/search?q=ssscasino.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ssscasino.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ssscasino.com/
Result: ssscasino.com is not infected or malware details are not published yet.
Result: ssscasino.com is not infected or malware details are not published yet.