Scanned pages/files
Request | Server response | Status |
http://fundmadonnalily.com/ | 200 OK Content-Length: 3363 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: | Hacked By | | Rebel Team Hackers | <html dir="rtl">
<head> <meta http-equiv="Content-Language" content="en-us"> <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <title>| Hacked By | | Rebel Team Hackers |</title> <meta name="description" content="#Op_world"> </head> <embed src="https://www.youtube.com/v/Ixttv54VTTQ&autoplay=1" type="application/x-shockwave-flash" wmode="transparent" width="1" height="1"></embed><body bgcolor="#000000"><p align="center"> <img border="0" src="https://s3.amazonaws.com/media.wbur.org/wordpress/11/files/2012/09/0914_flag- ...[3555 bytes skipped]... | ||
http://fundmadonnalily.com/test404page.js | 404 Not Found Content-Length: 297 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: fundmadonnalily.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 29 May 2015 00:20:55 GMT
Server: Apache/2.2.22 (Debian)
Vary: Accept-Encoding
Content-Type: text/html; charset=WINDOWS-1251
X-Powered-By: PHP/5.4.39-0+deb7u2
GET / HTTP/1.1
Host: fundmadonnalily.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 29 May 2015 00:20:55 GMT
Server: Apache/2.2.22 (Debian)
Vary: Accept-Encoding
Content-Type: text/html; charset=WINDOWS-1251
X-Powered-By: PHP/5.4.39-0+deb7u2
Second query (visit from search engine):
GET / HTTP/1.1
Host: fundmadonnalily.com
Referer: http://www.google.com/search?q=fundmadonnalily.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: fundmadonnalily.com
Referer: http://www.google.com/search?q=fundmadonnalily.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=fundmadonnalily.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://fundmadonnalily.com/
Result: fundmadonnalily.com is not infected or malware details are not published yet.
Result: fundmadonnalily.com is not infected or malware details are not published yet.