Scanned pages/files
Request | Server response | Status |
http://www.supersoccers.com/ | 200 OK Content-Length: 87426 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: hacked by Paydar ...[74096 bytes skipped]... the marquee's height var marqueeheight="120px" //Specify the marquee's marquee speed (larger is faster 1-10) var marqueespeed=1 //Pause marquee onMousever (0=no. 1=yes)? var pauseit=1 //Specify the marquee's content //Keep all content on ONE line, and backslash any single quotations (ie: that\'s great): var marqueecontent='<div align=left><a href=news.php?nid=9 class=news_head>hacked by Paydar</a><br><strong class=news_head> 04-10-2013 </strong><br><br>hacked by Paydar<br><br><br>Ashiyane Digital Security Team...<br><br><div align=right><strong><a href=news.php?nid=9 class=news_more><u>more »</u></a></strong> </div><br><img src=img/ff.jpg width=159 height=1><br><br><a href=news. ...[29317 bytes skipped]... | ||
http://www.supersoccers.com/myjs.js | 404 Not Found Content-Length: 324 Content-Type: text/html | clean |
http://www.supersoccers.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://www.statcounter.com/counter/counter.js | 200 OK Content-Length: 21363 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: supersoccers.com
Result:
GET / HTTP/1.1
Host: supersoccers.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: supersoccers.com
Referer: http://www.google.com/search?q=supersoccers.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: supersoccers.com
Referer: http://www.google.com/search?q=supersoccers.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=supersoccers.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://supersoccers.com/
Result: supersoccers.com is not infected or malware details are not published yet.
Result: supersoccers.com is not infected or malware details are not published yet.