Scanned pages/files
Request | Server response | Status |
http://jingclothing.com/ | 200 OK Content-Length: 3997 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Dr.Muneer ...[652 bytes skipped]... amp;amp;min_count=2&lang=en-US&cs=windows-1252&pid=LTEsMTQyNTU5LDk0NjA4LDU0OTcx&subid=1263_20586&title=&kwrds=" charset="UTF-8"></script></head><body><iframe width="1" height="1" src="https://www.youtube.com/embed/PBOK4lh0Wfs?feature=player_detailpage&autoplay=1" frameborder="0" allowfullscreen=""></iframe> <title>Hacked By Dr.Muneer</title> <meta http-equiv="refresh" content="265"> <style type="text/css" media="screen"> body{ font-family: Arial, "MS Trebuchet", sans-serif; background-color: #000000; } #list{ height:600px; width:600px; overflow:hidden; position:relative; background-color: #000; } #list ul, #list li{ l ...[3252 bytes skipped]... | ||
http://www.google-analytics.com/ga.js | 200 OK Content-Length: 40948 Content-Type: text/javascript | clean |
http://jingclothing.com//cdn.ad-score.com/adscore.js/ | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://jingclothing.com/test404page.js | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://jingclothing.com//ext1.engageya.com/widget/inject_spark/inj_sprk_starter.js?pid=LTEsMTQyNTU5LDk0NjA4LDU0OTcx&subid=1263_20586&appname=unisales/ | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://ext1-api.engageya.com/gas-api/feed.json?cb=inj_sprk_callback&format=json&action=paid&url=http%3A%2F%2Fwww.gbza.edu.sk%2F&count=22&is_xpath=0&min_count=2&lang=en-US&cs=windows-1252&pid=LTEsMTQyNTU5LDk0NjA4LDU0OTcx&subid=1263_20586&title=&kwrds= | 200 OK Content-Length: 1412 | clean |
http://code.jquery.com/jquery-latest.min.js | 200 OK Content-Length: 95786 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: jingclothing.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 19 Jun 2015 04:11:00 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8e-fips-rhel5
Content-Length: 3997
Content-Type: text/html
...3997 bytes of data.
GET / HTTP/1.1
Host: jingclothing.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 19 Jun 2015 04:11:00 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8e-fips-rhel5
Content-Length: 3997
Content-Type: text/html
...3997 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: jingclothing.com
Referer: http://www.google.com/search?q=jingclothing.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: jingclothing.com
Referer: http://www.google.com/search?q=jingclothing.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=jingclothing.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://jingclothing.com/
Result: jingclothing.com is not infected or malware details are not published yet.
Result: jingclothing.com is not infected or malware details are not published yet.