Scanned pages/files
| Request | Server response | Status |
http://rjleeperco.com/ | 200 OK Content-Length: 35669 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked BY Mary4m ...[21549 bytes skipped]... <td align="left" valign="top"> </td> </tr> <tr> <td align="left" valign="top"> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td class="middleheading" width="48%"> <table width="100%"> <tr><td width="48%" class="middleheading" valign="top">Hacked BY Mary4m</td></tr> <tr><td align="left" valign="top" class="middletext2">Hacked BY Mary4m</td></tr> <tr><td align="left" valign="top" class="middletext2"><a href="cms.php?cms_id=19"><img src="images/more.jpg" alt="more" title="more" width="138" height="27" border="0" /></a></td></tr> </table> </td> <td width="3%" class="middletext" valign="top">< ...[22810 bytes skipped]... | ||
http://rjleeperco.com/library/js/jquery.min.js | 200 OK Content-Length: 92633 Content-Type: application/x-javascript | clean |
http://rjleeperco.com/library/js/jquery.flexslider.js | 200 OK Content-Length: 53793 Content-Type: application/x-javascript | clean |
http://rjleeperco.com/js/flowplayer.min.js | 200 OK Content-Length: 36363 Content-Type: application/x-javascript | clean |
http://rjleeperco.com/js/video.js | 200 OK Content-Length: 58537 Content-Type: application/x-javascript | clean |
http://rjleeperco.com/library/js/jquery-1.2.2.pack.js | 200 OK Content-Length: 29318 Content-Type: application/x-javascript | clean |
http://rjleeperco.com/library/js/contentfader.js | 200 OK Content-Length: 2385 Content-Type: application/x-javascript | clean |
http://rjleeperco.com/jquery-1.5.js | 200 OK Content-Length: 220156 Content-Type: application/x-javascript | clean |
http://rjleeperco.com/galleryview-2.1.1/js/jquery-1.3.2.min.js | 200 OK Content-Length: 57254 Content-Type: application/x-javascript | clean |
http://rjleeperco.com/galleryview-2.1.1/js/jquery.easing.1.3.js | 200 OK Content-Length: 8097 Content-Type: application/x-javascript | clean |
http://rjleeperco.com/galleryview-2.1.1/js/jquery-galleryview-1.1/jquery.galleryview-1.1.js | 200 OK Content-Length: 18529 Content-Type: application/x-javascript | clean |
http://rjleeperco.com/galleryview-2.1.1/js/jquery-galleryview-1.1/jquery.timers-1.1.2.js | 200 OK Content-Length: 3389 Content-Type: application/x-javascript | clean |
http://rjleeperco.com/fadeinfadeout/contentslider.js | 200 OK Content-Length: 10725 Content-Type: application/x-javascript | clean |
http://www.leeperconstruction.com/library/js/user_bottom.js | 200 OK Content-Length: 511 Content-Type: application/x-javascript | clean |
http://rjleeperco.com/index.php | 200 OK Content-Length: 35524 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: rjleeperco.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Date: Sat, 30 May 2015 17:33:58 GMT
Pragma: no-cache
Server: Microsoft-IIS/6.0
Content-Length: 35669
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=4fcfe64ea8af3e58e549ef295fa012d8; path=/
X-Powered-By: PleskWin
X-Powered-By: ASP.NET
X-Powered-By: PHP/4.4.7
...35669 bytes of data.
GET / HTTP/1.1
Host: rjleeperco.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Date: Sat, 30 May 2015 17:33:58 GMT
Pragma: no-cache
Server: Microsoft-IIS/6.0
Content-Length: 35669
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=4fcfe64ea8af3e58e549ef295fa012d8; path=/
X-Powered-By: PleskWin
X-Powered-By: ASP.NET
X-Powered-By: PHP/4.4.7
...35669 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: rjleeperco.com
Referer: http://www.google.com/search?q=rjleeperco.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: rjleeperco.com
Referer: http://www.google.com/search?q=rjleeperco.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=rjleeperco.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://rjleeperco.com/
Result: rjleeperco.com is not infected or malware details are not published yet.
Result: rjleeperco.com is not infected or malware details are not published yet.