Scanned pages/files
| Request | Server response | Status |
http://lowltown.com/ | 200 OK Content-Length: 6041 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: hacked by erreur 404 ...[4766 bytes skipped]... tById('" + this.element.id + "').typingText.run()", this.interval); } else { this.currentText = ""; this.currentChar = 0; this.running = false; this.finishedCallback(); } } /*]]>*/</script> <body> <div id="container"> <div id="content-container"> <div id="content"> <h2>hacked by erreur 404 </h2> <p class="hacker"> </p> <p id="message" class="notes"> Code Name : erreur 404 <br /> Age : 17 years old<br /> Langue : English Frensh Arabic Turkish <br /> Message : i am algeria hacker i muslims i hack the word <br /> <br /> <br /> <br /> </strong><br /> <br /> <font color="ma ...[1374 bytes skipped]... | ||
http://lowltown.com/test404page.js | 404 Not Found Content-Length: 24568 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js | 200 OK Content-Length: 93868 Content-Type: text/javascript | clean |
http://lowltown.com/wp-content/plugins/plugin/script.js?ver=1.0 | 404 Not Found Content-Length: 24597 Content-Type: text/html | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 19468 Content-Type: text/javascript | clean |
http://lowltown.com/wp-includes/js/thickbox/thickbox.js?ver=3.1-20111117 | 200 OK Content-Length: 12501 Content-Type: application/javascript | clean |
http://lowltown.com/wp-content/plugins/contact-form-7/jquery.form.js?ver=2.96 | 200 OK Content-Length: 29139 Content-Type: application/javascript | clean |
http://lowltown.com/wp-content/plugins/contact-form-7/scripts.js?ver=3.1.1 | 200 OK Content-Length: 6208 Content-Type: application/javascript | clean |
http://lowltown.com/contact-us/ | 200 OK Content-Length: 6055 Content-Type: text/html | clean |
http://lowltown.com/privacy-policy/ | 200 OK Content-Length: 6059 Content-Type: text/html | clean |
http://lowltown.com/category/all-sports/ | 200 OK Content-Length: 6054 Content-Type: text/html | clean |
http://lowltown.com/category/atdhe-live-sports/ | 200 OK Content-Length: 6061 Content-Type: text/html | clean |
http://lowltown.com/category/atdhe-sports/ | 200 OK Content-Length: 6056 Content-Type: text/html | clean |
http://lowltown.com/category/chicago-sports/ | 200 OK Content-Length: 6058 Content-Type: text/html | clean |
http://lowltown.com/category/college-ball-scores/ | 200 OK Content-Length: 6063 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: lowltown.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 10 Jan 2015 04:36:33 GMT
Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 mod_qos/10.10
Content-Type: text/html; charset=UTF-8
X-Pingback: http://lowltown.com/xmlrpc.php
X-Powered-By: PHP/5.4.30
GET / HTTP/1.1
Host: lowltown.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 10 Jan 2015 04:36:33 GMT
Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 mod_qos/10.10
Content-Type: text/html; charset=UTF-8
X-Pingback: http://lowltown.com/xmlrpc.php
X-Powered-By: PHP/5.4.30
Second query (visit from search engine):
GET / HTTP/1.1
Host: lowltown.com
Referer: http://www.google.com/search?q=lowltown.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: lowltown.com
Referer: http://www.google.com/search?q=lowltown.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=lowltown.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://lowltown.com/
Result: lowltown.com is not infected or malware details are not published yet.
Result: lowltown.com is not infected or malware details are not published yet.