Scanned pages/files
Request | Server response | Status |
http://bigfootpk.com/ | 200 OK Content-Length: 858 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HaCked by Abdellah Elmaghribi <!DOCTYPE html> <html> <body> <head> <title>HaCked by Abdellah Elmaghribi</title> </head> <style> html { background: url(http://im54.gulfup.com/rNTNhb.jpg) no-repeat center center fixed; -webkit-background-size: cover; -moz-background-size: cover; -o-background-size: cover; background-size: cover; } </style> </body> <link href='http://fonts.googleapis.com/css?family=Ubuntu+Mono:400,700' rel='stylesheet' t ...[533 bytes skipped]... | ||
http://bigfootpk.com/test404page.js | 404 Not Found Content-Length: 3612 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bigfootpk.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 13 Aug 2015 11:19:08 GMT
Accept-Ranges: bytes
ETag: "1acdad-35a-50d4623b591d9"
Server: Apache
Content-Length: 858
Content-Type: text/html
Last-Modified: Thu, 22 Jan 2015 23:36:21 GMT
...858 bytes of data.
GET / HTTP/1.1
Host: bigfootpk.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 13 Aug 2015 11:19:08 GMT
Accept-Ranges: bytes
ETag: "1acdad-35a-50d4623b591d9"
Server: Apache
Content-Length: 858
Content-Type: text/html
Last-Modified: Thu, 22 Jan 2015 23:36:21 GMT
...858 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: bigfootpk.com
Referer: http://www.google.com/search?q=bigfootpk.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bigfootpk.com
Referer: http://www.google.com/search?q=bigfootpk.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bigfootpk.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bigfootpk.com/
Result: bigfootpk.com is not infected or malware details are not published yet.
Result: bigfootpk.com is not infected or malware details are not published yet.