Scanned pages/files
Request | Server response | Status |
http://littlehide.com/ | 200 OK Content-Length: 3317 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By XBaha Hacker ...[963 bytes skipped]... if NS6 if (window.sidebar){ document.onmousedown=disableselect document.onclick=reEnable } // //--> </SCRIPT> </style> <link rel="icon" type="image/png" href="http://th08.deviantart.net/fs71/150/f/2012/021/d/d/anonymous_icon_by_msbermudez_by_msbermudez-d4n566u.png" /> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <title>Hacked By XBaha Hacker</title> </head> <style type="text/css"> p:hover{ cursor:default; color:#0C0; } p{ font-size:24px; color:#0F0; font-family: "Courier New", Courier, monospace; } img { width:1000px; } .msg{ font-size:24px; color:#F00; font-family:"Palatino Linotype", "Book Antiqua", Palatino, serif; } a{ font-family: "Courier New", Courier, monospa ...[2447 bytes skipped]... | ||
http://littlehide.com/test404page.js | 404 Not Found Content-Length: 960 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: littlehide.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 29 Jul 2014 04:31:13 GMT
Server: Apache/2.2.26 (Unix)
Content-Type: text/html
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: littlehide.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 29 Jul 2014 04:31:13 GMT
Server: Apache/2.2.26 (Unix)
Content-Type: text/html
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: littlehide.com
Referer: http://www.google.com/search?q=littlehide.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: littlehide.com
Referer: http://www.google.com/search?q=littlehide.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=littlehide.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://littlehide.com/
Result: littlehide.com is not infected or malware details are not published yet.
Result: littlehide.com is not infected or malware details are not published yet.