Scanned pages/files
Request | Server response | Status |
http://wedhs.org.uk/ | 200 OK Content-Length: 9665 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY ANONYMOUS ARMENIA ...[4714 bytes skipped]... nterested in the field of BME health and social research in Wales. Membership is free!</div> </div> <div id="frontImage"><img src="images/banner/banner1.jpg" alt="WERC" width="516" height="149"></div> <div id="rightcol"> <div id="rightHeader">Featured Content </div> <div id="rightBlock"> <p><strong>HACKED BY ANONYMOUS ARMENIA</strong><br> <a href="news.php?news_ID=47">Read</a><br> <p><strong>With ladies Rolex pearlmaster</strong><br> <a href="news.php?news_ID=46">Read</a><br> <p><strong>What can give for women:Used Rolex Watches</strong><br> <a href="news.php?news_ID=45">Read</a ...[5971 bytes skipped]... | ||
http://wedhs.org.uk/access.php | 200 OK Content-Length: 8240 Content-Type: text/html | clean |
http://wedhs.org.uk/admin/index.php | 200 OK Content-Length: 1848 Content-Type: text/html | clean |
http://wedhs.org.uk/test404page.js | 404 Not Found Content-Length: 1363 Content-Type: text/html | clean |
http://wedhs.org.uk/contact%20us/index.php | 200 OK Content-Length: 7097 Content-Type: text/html | clean |
http://wedhs.org.uk/contact%20us/../access.php | 200 OK Content-Length: 8240 Content-Type: text/html | clean |
http://wedhs.org.uk/contact%20us/../admin/index.php | 200 OK Content-Length: 1848 Content-Type: text/html | clean |
http://wedhs.org.uk/contact%20us/../contact%20us/index.php | 200 OK Content-Length: 7097 Content-Type: text/html | clean |
http://wedhs.org.uk/contact%20us/../contact%20us/../access.php | 200 OK Content-Length: 8240 Content-Type: text/html | clean |
http://wedhs.org.uk/contact%20us/../contact%20us/../admin/index.php | 200 OK Content-Length: 1848 Content-Type: text/html | clean |
http://wedhs.org.uk/contact%20us/../contact%20us/../contact%20us/index.php | 200 OK Content-Length: 7097 Content-Type: text/html | clean |
http://wedhs.org.uk/contact%20us/../contact%20us/../contact%20us/../access.php | 200 OK Content-Length: 8240 Content-Type: text/html | clean |
http://wedhs.org.uk/contact%20us/../contact%20us/../contact%20us/../admin/index.php | 200 OK Content-Length: 1848 Content-Type: text/html | clean |
http://wedhs.org.uk/contact%20us/../contact%20us/../contact%20us/../contact%20us/index.php | 200 OK Content-Length: 7097 Content-Type: text/html | clean |
http://wedhs.org.uk/contact%20us/../contact%20us/../contact%20us/../contact%20us/../access.php | 200 OK Content-Length: 8240 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: wedhs.org.uk
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 16 Nov 2015 17:11:28 GMT
Server: Apache
Content-Type: text/html
X-Powered-By: PHP/4.4.9
GET / HTTP/1.1
Host: wedhs.org.uk
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 16 Nov 2015 17:11:28 GMT
Server: Apache
Content-Type: text/html
X-Powered-By: PHP/4.4.9
Second query (visit from search engine):
GET / HTTP/1.1
Host: wedhs.org.uk
Referer: http://www.google.com/search?q=wedhs.org.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: wedhs.org.uk
Referer: http://www.google.com/search?q=wedhs.org.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=wedhs.org.uk
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://wedhs.org.uk/
Result: wedhs.org.uk is not infected or malware details are not published yet.
Result: wedhs.org.uk is not infected or malware details are not published yet.