Scanned pages/files
Request | Server response | Status |
http://mycodingbooks.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 04 Jan 2015 00:19:24 GMT Location: http://www.mycodingbooks.com/ Server: Apache Vary: Accept-Encoding Content-Length: 237 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.mycodingbooks.com/ | 200 OK Content-Length: 12479 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HaCked By Ahmdosa HaCker ...[445 bytes skipped]... cookie forgery, XSS, RFI, RCE, LFI, SQLi, MySQLi, MSSQLi, PostGreSQLi, Oracle Injection, LDAP Injection, SSI, Full Disclosure, File Disclosure, AFD, Arbitrary File Download "/> <BODY BGCOLOR="black"> <body style="background-image: url(http://i1004.photobucket.com/albums/af163/imnu11/openbg.gif); background-repeat: repeat;" link="white" alink="white" vlink="white"> <TITLE>HaCked By Ahmdosa HaCker</TITLE> <body oncontextmenu='return false;'> <DIV align=center> <br> <SPAN style="FILTER: blur(add=1,direction=270,strength=30); HEIGHT: 30px"> <P><FONT color=#c0c0c0 size=3> <table style="border-width: 1px;" height="400" width="65%" bgcolor="#000000" border="1" bordercolor="#565051"> <tbody><tr> <td style="border-sty ...[13130 bytes skipped]... | ||
http://www.mycodingbooks.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mycodingbooks.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sun, 04 Jan 2015 00:19:24 GMT
Location: http://www.mycodingbooks.com/
Server: Apache
Vary: Accept-Encoding
Content-Length: 237
Content-Type: text/html; charset=iso-8859-1
...237 bytes of data.
GET / HTTP/1.1
Host: mycodingbooks.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sun, 04 Jan 2015 00:19:24 GMT
Location: http://www.mycodingbooks.com/
Server: Apache
Vary: Accept-Encoding
Content-Length: 237
Content-Type: text/html; charset=iso-8859-1
...237 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: mycodingbooks.com
Referer: http://www.google.com/search?q=mycodingbooks.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mycodingbooks.com
Referer: http://www.google.com/search?q=mycodingbooks.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mycodingbooks.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://mycodingbooks.com/
Result: mycodingbooks.com is not infected or malware details are not published yet.
Result: mycodingbooks.com is not infected or malware details are not published yet.