Scanned pages/files
| Request | Server response | Status |
http://furl.in/ | 200 OK Content-Length: 458 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: ./Hacked By T-Rex1337 <html><head>
<title>./Hacked By T-Rex1337</title> <link rel="shortcut icon" href="http://www.abflags.com/_flags/flags-of-the-world/Indonesia%20flag/Indonesia%20flag-XS-anim.gif"/> </head> <style> body { background-color:#000000; } </style> <center> <br> <br> <br><br><br><br><br><br><br> <div><div> <font color="white"><font face="Agency Fb"><font size=20>Hacked By T-Rex1337</font></font></font><br><br> </center></div> </body> </html> | ||
http://furl.in/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: furl.in
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 02 May 2014 11:36:04 GMT
Server: nginx
Content-Length: 458
Content-Type: text/html
X-Powered-By: PHP/5.3.27
...458 bytes of data.
GET / HTTP/1.1
Host: furl.in
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 02 May 2014 11:36:04 GMT
Server: nginx
Content-Length: 458
Content-Type: text/html
X-Powered-By: PHP/5.3.27
...458 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: furl.in
Referer: http://www.google.com/search?q=furl.in
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: furl.in
Referer: http://www.google.com/search?q=furl.in
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=furl.in
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://furl.in/
Result: furl.in is not infected or malware details are not published yet.
Result: furl.in is not infected or malware details are not published yet.