Scanned pages/files
Request | Server response | Status |
http://jelvinger.com/ | 200 OK Content-Length: 591 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: hacked by hassan <html>
<head> <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <title>hacked by hassan</title> </head> <body bgcolor="#000000"> <p align="center"> <img src="http://nsa30.casimages.com/img/2013/01/12/130112035430246034.jpg"></p> <p align="center"><font size="7" color="#FFFF00" face="Lucida Fax"><b>Hassan MrMounine</b></font></p> <p align="center"><b><a href="https://www.facebook.com/mrmounine.hassan.96"> <font face="Lucida Fax" size="1" color="#0000FF"> https://www.facebook.com/mrmounine.hassan.96</font></a></b></p> </body> </html> | ||
http://jelvinger.com/test404page.js | 403 Forbidden Content-Length: 216 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: jelvinger.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 04 Dec 2015 10:52:29 GMT
Accept-Ranges: bytes
ETag: "3024d60-24f-4e3b854f84f13"
Server: Apache
Content-Length: 591
Content-Type: text/html
Last-Modified: Mon, 12 Aug 2013 04:12:25 GMT
...591 bytes of data.
GET / HTTP/1.1
Host: jelvinger.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 04 Dec 2015 10:52:29 GMT
Accept-Ranges: bytes
ETag: "3024d60-24f-4e3b854f84f13"
Server: Apache
Content-Length: 591
Content-Type: text/html
Last-Modified: Mon, 12 Aug 2013 04:12:25 GMT
...591 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: jelvinger.com
Referer: http://www.google.com/search?q=jelvinger.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: jelvinger.com
Referer: http://www.google.com/search?q=jelvinger.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=jelvinger.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://jelvinger.com/
Result: jelvinger.com is not infected or malware details are not published yet.
Result: jelvinger.com is not infected or malware details are not published yet.