Scanned pages/files
Request | Server response | Status |
http://www.mbconf.org/ | 200 OK Content-Length: 2377 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by KinG <!DOCTYPE html>
<html> <head> <title>Hacked by KinG</title> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <link rel="shortcut icon" type="image/ico" href="http://cld.persiangig.com/preview/8PH6OQ7GMN/favicon-hacked.png" /> <meta name="robots" content="index, follow"> <meta name="author" content="Mohammad D4ta"> <meta name="description" content="This Site has been Hacked by KinG - Iranian Hackers" > ...[2415 bytes skipped]... | ||
http://www.mbconf.org/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 14 Jul 2015 04:20:05 GMT Location: http://www.mbconf.org Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_bwlimited/1.4 PHP/5.4.37 Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://www.mbconf.org/xmlrpc.php X-Powered-By: PHP/5.4.37 | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mbconf.org
Result:
GET / HTTP/1.1
Host: mbconf.org
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: mbconf.org
Referer: http://www.google.com/search?q=mbconf.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mbconf.org
Referer: http://www.google.com/search?q=mbconf.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mbconf.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://mbconf.org/
Result: mbconf.org is not infected or malware details are not published yet.
Result: mbconf.org is not infected or malware details are not published yet.