Scanned pages/files
Request | Server response | Status |
http://packandpack.com/ | 200 OK Content-Length: 2858 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By ./Ru74K Loves Linda <body oncontextmenu='return false;' onkeydown='return false;' onmousedown='return false;'> <center><font face="Pirata One" size="6" color="red" class="a">Hacked By ./Ru74K Loves Linda </font></center><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><script type="text/javascript">//<![CDATA[ window.__CF=window.__CF||{};window.__CF.AJS={};//]]> </script> <me ...[2829 bytes skipped]... | ||
http://packandpack.com//ajax.cloudflare.com/cdn-
cgi/nexp/v=49212922/apps1.min.js/ | 404 Not Found Content-Length: 378 Content-Type: text/html | clean |
http://packandpack.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://ifc.or.id/css/angkasa.js | 500 Can't connect to ifc.or.id:80 Content-Length: 184 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: packandpack.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 16 Feb 2015 21:14:08 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 2858
Content-Type: text/html
Last-Modified: Thu, 18 Dec 2014 00:17:36 GMT
...2858 bytes of data.
GET / HTTP/1.1
Host: packandpack.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 16 Feb 2015 21:14:08 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 2858
Content-Type: text/html
Last-Modified: Thu, 18 Dec 2014 00:17:36 GMT
...2858 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: packandpack.com
Referer: http://www.google.com/search?q=packandpack.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: packandpack.com
Referer: http://www.google.com/search?q=packandpack.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=packandpack.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://packandpack.com/
Result: packandpack.com is not infected or malware details are not published yet.
Result: packandpack.com is not infected or malware details are not published yet.