Scanned pages/files
Request | Server response | Status |
http://tinamarie.co.uk/ | 200 OK Content-Length: 2319 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked BY R00T X Force ...[553 bytes skipped]... le7{font-size:xx-large}.style8{color:#FF0000}.style11{font-size:x-large}.style12{color:#FF0000;font-size:x-large;}.style14{color:#000000;font-weight:bold;text-shadow:1px 1px 3px #FFF,-2px -1px 1px #FF0000;}.style16{color:#00FF00}.style17{color:#0000FF}.style18{color:#FFFF00}.style19{color:#333333}--></style></head> <body><center><h1 class="style7" style="text-shadow: 3px 3px 8px #FFF">Hacked BY R00T X Force</h1><p><img src="http://s1.directupload.net/images/140227/y6kcu9ao.jpg" width="245" height="201"><br><br><span class="style7"><font color="#FFF" style="text-shadow: 1px 1px 1px #FFFF00"><a href="http://www.facebook.com/BLACKSMITH.HACKERS">BlackSmith Hacker's Team </a></font></span><br><br><span class="style8 style7" style="text-shadow: 3px 1px 11px #00FF00">/# BANGLADESHI HACKER #/</ ...[1298 bytes skipped]... | ||
http://1.2.3.4/bmi-int-js/bmi.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://1.2.3.4/test404page.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tinamarie.co.uk
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 03 Sep 2014 13:12:36 GMT
Server: nginx
Content-Length: 2319
Content-Type: text/html
X-Powered-By: PHP/5.2.17
...2319 bytes of data.
GET / HTTP/1.1
Host: tinamarie.co.uk
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 03 Sep 2014 13:12:36 GMT
Server: nginx
Content-Length: 2319
Content-Type: text/html
X-Powered-By: PHP/5.2.17
...2319 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: tinamarie.co.uk
Referer: http://www.google.com/search?q=tinamarie.co.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tinamarie.co.uk
Referer: http://www.google.com/search?q=tinamarie.co.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tinamarie.co.uk
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tinamarie.co.uk/
Result: tinamarie.co.uk is not infected or malware details are not published yet.
Result: tinamarie.co.uk is not infected or malware details are not published yet.