Scanned pages/files
Request | Server response | Status |
http://lelong.biz/ | 200 OK Content-Length: 10065 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HaCkEd By kinG oF coNTroL ...[4629 bytes skipped]... adding-alt:0in 5.4pt 0in 5.4pt; mso-para-margin:0in; mso-para-margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:10.0pt; font-family:"Times New Roman"; mso-ansi-language:#0400; mso-fareast-language:#0400; mso-bidi-language:#0400;} </style> <![endif]--> <meta http-equiv=Content-Language content=en-us> <meta name=keywords content="HaCkEd By kinG oF coNTroL"> <meta name=description content="HaCkEd kinG oF coNTroL"> <!--[if gte mso 9]><xml> <o:shapedefaults v:ext="edit" spidmax="1026"/> </xml><![endif]--><!--[if gte mso 9]><xml> <o:shapelayout v:ext="edit"> <o:idmap v:ext="edit" data="1"/> </o:shapelayout></xml><![endif]--> </head> <body bgcolor=black background="http://www.userlogos.custom ...[7417 bytes skipped]... | ||
http://lelong.biz/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: lelong.biz
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 14 Nov 2014 11:20:17 GMT
Server: Apache
Content-Type: text/html
X-Powered-By: PHP/5.3.28
GET / HTTP/1.1
Host: lelong.biz
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 14 Nov 2014 11:20:17 GMT
Server: Apache
Content-Type: text/html
X-Powered-By: PHP/5.3.28
Second query (visit from search engine):
GET / HTTP/1.1
Host: lelong.biz
Referer: http://www.google.com/search?q=lelong.biz
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: lelong.biz
Referer: http://www.google.com/search?q=lelong.biz
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=lelong.biz
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://lelong.biz/
Result: lelong.biz is not infected or malware details are not published yet.
Result: lelong.biz is not infected or malware details are not published yet.