Scanned pages/files
Request | Server response | Status |
http://yfurther.com/ | 200 OK Content-Length: 931 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HaCkEd by nO lOv3 ...[171 bytes skipped]... t;link rel="SHORTCUT ICON" href="http://upload.wikimedia.org/wikipedia/commons/thumb/8/85/Algeria-Flag.gif/25px-Algeria-Flag.gif"> <meta name="description" content="| Hacking | Security | Systems | Linux "> </head><body bgcolor="#000000"> <p> <br> </p> <div align="center"> <font color="#41da3d" face="PAPYRUS" size="6"> HaCkEd by nO lOv3 </font><p align="center"> <img src="http://a8.sphotos.ak.fbcdn.net/hphotos-ak-snc6/269025_159000627506588_100001899554559_364126_4004159_n.jpg" border="0"><br> </p> <div align="center"> <font color="#808001" face="TIMES" size="6">1 2 3 viva l'AlGeRiE </font></div> </div> <p style="font-family: 'Courier New'; color: white;" align="center"> <fon ...[127 bytes skipped]... | ||
http://yfurther.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: yfurther.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 06 Feb 2015 19:06:06 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 931
Content-Type: text/html
Last-Modified: Wed, 08 Aug 2012 20:03:49 GMT
...931 bytes of data.
GET / HTTP/1.1
Host: yfurther.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 06 Feb 2015 19:06:06 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 931
Content-Type: text/html
Last-Modified: Wed, 08 Aug 2012 20:03:49 GMT
...931 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: yfurther.com
Referer: http://www.google.com/search?q=yfurther.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: yfurther.com
Referer: http://www.google.com/search?q=yfurther.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=yfurther.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://yfurther.com/
Result: yfurther.com is not infected or malware details are not published yet.
Result: yfurther.com is not infected or malware details are not published yet.