Scanned pages/files
| Request | Server response | Status |
http://www.localbene.com/ | 200 OK Content-Length: 5209 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By CaptSalkus48 <html>
<meta name="google-site-verification" content="Hacked By CaptSalkus48"/> <meta http-equiv="Content-Language" content="en-us-id"> <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="author" content="CaptSalkus48 "> <meta name="description" content="CaptSalkus48 | Indonesian Cyber freedom"> <meta name="robots schedule" content= ...[5477 bytes skipped]... | ||
http://masterendi.googlecode.com/files/salju.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://masterendi.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://masterendi.googlecode.com/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://tuyulz-blogspot.googlecode.com/files/Anti%20Klik.js | 404 Not Found Content-Length: 1445 Content-Type: text/html | clean |
http://tuyulz-blogspot.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://www.localbene.com//www.google.com/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Wed, 04 Feb 2015 19:24:07 GMT Pragma: no-cache Location: http://www.localbene.com/www.google.com/ Server: Apache/2.2.22 Vary: User-Agent,Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Last-Modified: Wed, 04 Feb 2015 19:24:09 GMT Set-Cookie: PHPSESSID=9037a2ba52181eec6d8f06f9befa4d83; path=/ X-Pingback: http://www.localbene.com/xmlrpc.php X-Powered-By: PHP/5.3.29 | clean |
http://www.localbene.com/www.google.com/ | 404 Not Found Content-Length: 17477 Content-Type: text/html | clean |
http://www.localbene.com/wp-content/themes/parallelus-mingle/assets/js/libs/modernizr-1.6.min.js?ver=1.6 | 200 OK Content-Length: 9563 Content-Type: application/javascript | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js?ver=1.6.2 | 200 OK Content-Length: 91556 Content-Type: text/javascript | clean |
http://www.localbene.com/wp-content/themes/parallelus-mingle/assets/js/libs/swfobject.js?ver=2.2 | 200 OK Content-Length: 10220 Content-Type: application/javascript | clean |
http://www.localbene.com/wp-content/themes/parallelus-mingle/assets/js/libs/cufon-yui.js?ver=1.09 | 200 OK Content-Length: 18258 Content-Type: application/javascript | clean |
http://www.localbene.com/wp-content/themes/parallelus-mingle/assets/js/libs/jquery.cycle.all.min.js | 200 OK Content-Length: 31539 Content-Type: application/javascript | clean |
http://www.localbene.com/wp-content/themes/parallelus-mingle/assets/js/libs/ddsmoothmenu.js?ver=1.5 | 200 OK Content-Length: 9309 Content-Type: application/javascript | clean |
http://www.localbene.com/wp-content/themes/parallelus-mingle/assets/js/libs/jquery.colorbox-min.js?ver=1.3.16 | 200 OK Content-Length: 9281 Content-Type: application/javascript | clean |
http://www.localbene.com/wp-content/themes/parallelus-mingle/assets/js/libs/jquery.overlabel.min.js?ver=1.0 | 200 OK Content-Length: 1031 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: localbene.com
Result:
GET / HTTP/1.1
Host: localbene.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: localbene.com
Referer: http://www.google.com/search?q=localbene.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: localbene.com
Referer: http://www.google.com/search?q=localbene.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=localbene.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://localbene.com/
Result: localbene.com is not infected or malware details are not published yet.
Result: localbene.com is not infected or malware details are not published yet.