Scanned pages/files
Request | Server response | Status |
http://www.fantasybanners.com/ | 200 OK Content-Length: 4859 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: #Hacked By Ramzi Null# <title>#Hacked By Ramzi Null#</title><link href="http://hacker-newbie.org/favicon.ico" rel="shortcut icon" type="image/x-icon" />
<style type='text/css'> body,td,th { font-family: Impact; font-size: 13px; color:#00FF00; } body { background-color:#121214; } a:link {color: #FFFFFF; text-decoration: none; } a:active {color: #FFFFFF; text-decoration: none; } a:visited {colo ...[5291 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js | 200 OK Content-Length: 72174 Content-Type: text/javascript | clean |
http://jqueryrotate.googlecode.com/svn/trunk/jQueryRotate.js | 200 OK Content-Length: 13892 Content-Type: text/plain | clean |
http://jqueryrotate.googlecode.com/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://jqueryrotate.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://www.p0wersurge.com/js/jquery-css-transform.js | 200 OK Content-Length: 4109 Content-Type: text/javascript | clean |
http://www.p0wersurge.com/js/rotate3Di.js | 200 OK Content-Length: 5389 Content-Type: text/javascript | clean |
http://www.fantasybanners.com//www.google.com/ | HTTP/1.1 302 Found Connection: close Date: Fri, 16 May 2014 21:10:07 GMT Location: http://fantasistent.com/404.html Server: Apache Vary: Accept-Encoding Content-Length: 216 Content-Type: text/html; charset=iso-8859-1 | clean |
http://fantasistent.com/404.html | 403 Bad Behavior Content-Length: 904 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: fantasybanners.com
Result:
GET / HTTP/1.1
Host: fantasybanners.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: fantasybanners.com
Referer: http://www.google.com/search?q=fantasybanners.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: fantasybanners.com
Referer: http://www.google.com/search?q=fantasybanners.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=fantasybanners.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://fantasybanners.com/
Result: fantasybanners.com is not infected or malware details are not published yet.
Result: fantasybanners.com is not infected or malware details are not published yet.