Scanned pages/files
Request | Server response | Status |
http://ti-ro.com/ | 200 OK Content-Length: 3302 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by AnonGhost <!DOCTYPE HTML PUBLIC '-//W3C//DTD HTML 4.01 Transitional//EN'><html><head><title>Hacked by AnonGhost</title><style type="text/css"><!-- body
{font-size: 8px; font-family: gothic; background-color: #000000; color: #58FAF4; scrollbar-highlight-color: #ff0000; scrollbar-shadow-color: #58FAF4; scrollbar-3dlight-color: #000000; scrollbar-arrow-color: #000000; scrollbar-track-color: #000000; scrollbar-darkshadow-color: #000000; scrollbar-face-color: #000000;}.main_table{ padding: 3px; background-color: #000000; te ...[3154 bytes skipped]... | ||
http://ti-ro.com/test404page.js | 404 Not Found Content-Length: 5 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ti-ro.com
Result:
HTTP/1.1 200 OK
Date: Tue, 15 Jul 2014 11:33:02 GMT
Accept-Ranges: bytes
ETag: "a4cd2412f9acf1:0"
Server: Microsoft-IIS/7.0
Content-Length: 3302
Content-Type: text/html
Last-Modified: Mon, 07 Jul 2014 18:12:53 GMT
X-Powered-By: ASP.NET
...3302 bytes of data.
GET / HTTP/1.1
Host: ti-ro.com
Result:
HTTP/1.1 200 OK
Date: Tue, 15 Jul 2014 11:33:02 GMT
Accept-Ranges: bytes
ETag: "a4cd2412f9acf1:0"
Server: Microsoft-IIS/7.0
Content-Length: 3302
Content-Type: text/html
Last-Modified: Mon, 07 Jul 2014 18:12:53 GMT
X-Powered-By: ASP.NET
...3302 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: ti-ro.com
Referer: http://www.google.com/search?q=ti-ro.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ti-ro.com
Referer: http://www.google.com/search?q=ti-ro.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ti-ro.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ti-ro.com/
Result: ti-ro.com is not infected or malware details are not published yet.
Result: ti-ro.com is not infected or malware details are not published yet.