Scanned pages/files
Request | Server response | Status |
http://www.transferspetersburg.ru/ | 200 OK Content-Length: 1625 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Moroccan Revolution Team <html>
<head> <meta http-equiv="Content-Language" content="fr"> <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <title>Hacked By Moroccan Revolution Team</title> </head> <body background="http://zomgplay.com/wp-content/uploads/2014/01/Tom-Clancy-Ghost-Recon-Online-Artic.jpg"> <p align="center"><img border="0" src="http://www.rofof.com/img/8td25mg.gif" width="350" height="310"></p> <hr> <p align="center"><b><font size="7" face="Agency FB" color="#003300">Hacked By</font>&l ...[1488 bytes skipped]... | ||
http://www.transferspetersburg.ru/test404page.js | 200 OK Content-Length: 1625 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: transferspetersburg.ru
Result:
GET / HTTP/1.1
Host: transferspetersburg.ru
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: transferspetersburg.ru
Referer: http://www.google.com/search?q=transferspetersburg.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: transferspetersburg.ru
Referer: http://www.google.com/search?q=transferspetersburg.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=transferspetersburg.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://transferspetersburg.ru/
Result: transferspetersburg.ru is not infected or malware details are not published yet.
Result: transferspetersburg.ru is not infected or malware details are not published yet.