Scanned pages/files
Request | Server response | Status |
http://surveyassistants.com/ | 200 OK Content-Length: 6119 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: .:: [Hacked By E2] ::. <!-- http://i.imgur.com/M8dFnMg.png --> <!-- Simple code by Eagle Eye <h1> <span style="color:#00ff00;size:50px" />[</span> Hack3d By E4gl3 Ey3 <span style="color:#00ff00;size:50px" />]</span> </h1> --> <html> <head> <title>.:: [Hacked By E2] ::.</title> <body bgcolor="#000000"> <link rel="shortcut icon" href="http://icons.iconarchive.com/icons/zeusbox/halloween/32/skull-icon.png" /> <DIV align="right"><FONT style="FONT-SIZE: 20pt" face="Courier" color="red"><center><br /><center><script> farbbibliothek = new Array(); farbbibliothek[0] = new Arra ...[7172 bytes skipped]... | ||
http://surveyassistants.com/test404page.js | 404 Not Found Content-Length: 2674 Content-Type: text/html | clean |
http://cdn.dsultra.com/js/registrar.js | 200 OK Content-Length: 1688 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: surveyassistants.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 08 Jan 2015 12:27:34 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
GET / HTTP/1.1
Host: surveyassistants.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 08 Jan 2015 12:27:34 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: surveyassistants.com
Referer: http://www.google.com/search?q=surveyassistants.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: surveyassistants.com
Referer: http://www.google.com/search?q=surveyassistants.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=surveyassistants.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://surveyassistants.com/
Result: surveyassistants.com is not infected or malware details are not published yet.
Result: surveyassistants.com is not infected or malware details are not published yet.