Scanned pages/files
Request | Server response | Status |
http://poolservicelasvegas.net/ | 200 OK Content-Length: 6107 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By JusTic4 ...[368 bytes skipped]... ; <head> <meta http-equiv=Content-Type content="text/html; charset=Windows-1254"> <meta name=ProgId content=Word.Document> <meta name=Generator content="Microsoft Word 11"> <meta name=Originator content="Microsoft Word 11"> <link rel=Edit-Time-Data href="index_dosyalar/editdata.mso"> <title>Hacked By JusTic4</title> <!--[if gte mso 9]><xml> <o:DocumentProperties> <o:Author>@</o:Author> <o:Template>Normal</o:Template> <o:LastAuthor>@</o:LastAuthor> <o:Revision>5</o:Revision> <o:TotalTime>7</o:TotalTime> <o:Created>2011-12-22T14:29:00Z</o:Created> <o:LastSaved>2011- ...[7378 bytes skipped]... | ||
http://poolservicelasvegas.net/test404page.js | 404 Not Found Content-Length: 21 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: poolservicelasvegas.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 06 Jul 2015 19:27:03 GMT
Vary: Accept-Encoding, User-Agent
Content-Length: 6107
Content-Type: text/html
Set-Cookie: TS0194eee0=010bd78044d7cab7cadf37d04c95ecde2ac7a58a0f6b3004acafa7ce0673e3227ae49622ee; Path=/
...6107 bytes of data.
GET / HTTP/1.1
Host: poolservicelasvegas.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 06 Jul 2015 19:27:03 GMT
Vary: Accept-Encoding, User-Agent
Content-Length: 6107
Content-Type: text/html
Set-Cookie: TS0194eee0=010bd78044d7cab7cadf37d04c95ecde2ac7a58a0f6b3004acafa7ce0673e3227ae49622ee; Path=/
...6107 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: poolservicelasvegas.net
Referer: http://www.google.com/search?q=poolservicelasvegas.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: poolservicelasvegas.net
Referer: http://www.google.com/search?q=poolservicelasvegas.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=poolservicelasvegas.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://poolservicelasvegas.net/
Result: poolservicelasvegas.net is not infected or malware details are not published yet.
Result: poolservicelasvegas.net is not infected or malware details are not published yet.