Scanned pages/files
| Request | Server response | Status |
http://sandnseariders.com/ | 200 OK Content-Length: 4694 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By HollowNesia <html>
<head> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title>Hacked By HollowNesia</title> <link href='https://www.blogger.com/favicon-image.g? blogID=258916478380965151' rel='icon' type='image/x-icon'/> <meta content='Hacked By HollowNesia' name='description'/> <meta content='HollowNesia, Hacked By HollowNesia, UNITED INDONESIAN HACKERS,.' name='keywords'/> <meta c ...[5175 bytes skipped]... | ||
http://id-pemula-
javascript.googlecode.com/files/efek-salju.js | 500 Can't connect to id-pemula-
Content-Length: 214 Content-Type: text/plain | clean |
http://id-pemula-
javascript.googlecode.com/test404page.js | 500 Can't connect to id-pemula-
Content-Length: 214 Content-Type: text/plain | clean |
http://naughtyric.googlecode.com/files/jrRain.js | 404 Not Found Content-Length: 1440 Content-Type: text/html | clean |
http://naughtyric.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://sandnseariders.com//www.google.com/ | 404 Article not found Content-Length: 1400 Content-Type: text/html | clean |
http://sandnseariders.com/index.php | 200 OK Content-Length: 4694 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sandnseariders.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Fri, 26 Jun 2015 08:17:02 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 4bade230a3fd73d906000f54aa08fff8=3314ee6a36e31ccf4d0aa122093ef1e8; path=/
GET / HTTP/1.1
Host: sandnseariders.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Fri, 26 Jun 2015 08:17:02 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 4bade230a3fd73d906000f54aa08fff8=3314ee6a36e31ccf4d0aa122093ef1e8; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: sandnseariders.com
Referer: http://www.google.com/search?q=sandnseariders.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sandnseariders.com
Referer: http://www.google.com/search?q=sandnseariders.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sandnseariders.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sandnseariders.com/
Result: sandnseariders.com is not infected or malware details are not published yet.
Result: sandnseariders.com is not infected or malware details are not published yet.