Scanned pages/files
Request | Server response | Status |
http://bistoori.com/ | 200 OK Content-Length: 2076 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: [#] Hacked By people_hurt ...[741 bytes skipped]... gn=center> <img src="http://s1.postimg.org/qo65uq13j/incef_new.png" width="500" height="333" border="0" />" <br> <strong><font face="Bradley Hand ITC" size="2.5" color="white">Nothing is impossible. Anything can happen as long as we believe.</font></strong> <br> <br> <font face="Tahoma" size="3" color="white"><b>[#] Hacked By people_hurt <img alt="" src="http://l.yimg.com/us.yimg.com/i/mesg/emoticons7/111.gif"></b></font> <hr width="579px" style="color:red"> <font face="" color="red"><b>Official Members : </b></font><font face="Courier New" size="2" font color="white"><marquee width="80%" scrollamount="5">Mr.DellatioNx196 ~ dEnny_Attacker ~ SickPeoples ~ SvN_NeVerMore ~ Ardana_ID ~ Achan Dot ID ~ CaptSalkus48 ~ peo ...[973 bytes skipped]... | ||
http://bistoori.com/test404page.js | 200 OK Content-Length: 2076 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bistoori.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 11 Dec 2014 19:17:07 GMT
Server: Apache
Content-Type: text/html
X-Powered-By: PHP/5.5.19
GET / HTTP/1.1
Host: bistoori.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 11 Dec 2014 19:17:07 GMT
Server: Apache
Content-Type: text/html
X-Powered-By: PHP/5.5.19
Second query (visit from search engine):
GET / HTTP/1.1
Host: bistoori.com
Referer: http://www.google.com/search?q=bistoori.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bistoori.com
Referer: http://www.google.com/search?q=bistoori.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bistoori.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bistoori.com/
Result: bistoori.com is not infected or malware details are not published yet.
Result: bistoori.com is not infected or malware details are not published yet.