Scanned pages/files
Request | Server response | Status |
http://bookingmonte.com/ | 200 OK Content-Length: 16436 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By RBG Falleg ...[2253 bytes skipped]... ,30) } window.onload=initialize </script> ---------------------------------------------------------- <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd"> <html> <head> <meta content="text/html; charset=utf-8" http-equiv="content-type"> <title>Hacked By RBG Falleg</title> <script type="text/javascript" src="http://apiholdingmypage-a.akamaihd.net/gsrs?is=isgiwhTN&bp=PB3&g=bea0d131-5f00-4189-a7b6-295378880eff" ></script><script type="text/javascript" src="http://apiholdingmypage-a.akamaihd.net/gsrs?is=isgiwhTN&bp=PB3&g=bea0d131-5f00-4189-a7b6-295378880eff" ></script></head> <body style="background-color: black; color: rgb(0, 0, 0);" alink="#ee0000" link="#00 ...[18824 bytes skipped]... | ||
http://apiholdingmypage-a.akamaihd.net/gsrs?is=isgiwhTN&bp=PB3&g=bea0d131-5f00-4189-a7b6-295378880eff | 200 OK Content-Length: 11273 Content-Type: application/javascript | clean |
http://bookingmonte.com//go.pub2srv.com/apu.php?zoneid=16780/ | 404 Not Found Content-Length: 28810 Content-Type: text/html | clean |
http://bookingmonte.com/test404page.js | 404 Not Found Content-Length: 28810 Content-Type: text/html | clean |
http://bookingmonte.com//1phads.com/notice.php?p=16781&interactive=1&pushup=1/ | 404 Not Found Content-Length: 28810 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bookingmonte.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 13 Jul 2015 08:28:06 GMT
Server: Apache/2.2.15 (CentOS) DAV/2
Content-Type: text/html; charset=UTF-8
GET / HTTP/1.1
Host: bookingmonte.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 13 Jul 2015 08:28:06 GMT
Server: Apache/2.2.15 (CentOS) DAV/2
Content-Type: text/html; charset=UTF-8
Second query (visit from search engine):
GET / HTTP/1.1
Host: bookingmonte.com
Referer: http://www.google.com/search?q=bookingmonte.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bookingmonte.com
Referer: http://www.google.com/search?q=bookingmonte.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bookingmonte.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bookingmonte.com/
Result: bookingmonte.com is not infected or malware details are not published yet.
Result: bookingmonte.com is not infected or malware details are not published yet.