Scanned pages/files
Request | Server response | Status |
http://www.007hsw.com/ | HTTP/1.1 200 OK Date: Wed, 29 Apr 2015 00:55:33 GMT Accept-Ranges: bytes ETag: "b0a94680817fd01:56c" Server: Microsoft-IIS/6.0 Content-Length: 3093 Content-Location: http://www.007hsw.com/Default.htm Content-Type: text/html Last-Modified: Sat, 25 Apr 2015 17:58:57 GMT | clean |
http://www.007hsw.com/default.htm | 200 OK Content-Length: 3093 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x0 src: http://www.youtube.com/embed/eg1vof0zqag?feature=player_embedded&_s&loop=1&autoplay=1 <iframe frameborder="0" height="0" src="http://www.youtube.com/embed/eg1vof0zqag?feature=player_embedded&_s&loop=1&autoplay=1" width="0"> Deface/Content modification. The following signature was found: Hacked by KkK1337 <!DOCTYPE html>
<html lang="en"> <title>Hacked by KkK1337</title> <head> <link href='http://fonts.googleapis.com/css?family=Electrolize' rel='stylesheet' type='text/css'> <link rel="stylesheet" href="http://www.israelc.com/wp-content/plugins/wp-construction-mode/inc/style/style.css"> <link rel="stylesheet" href="http://www.israelc.com/wp-content/plugins/wp-construction-mode/inc/style/font-awesome.min.css"> <iframe frameborder="0" ...[3070 bytes skipped]... | ||
http://www.007hsw.com/test404page.js | HTTP/1.1 200 OK Date: Wed, 29 Apr 2015 00:55:35 GMT Accept-Ranges: bytes ETag: "b0a94680817fd01:56c" Server: Microsoft-IIS/6.0 Content-Length: 3093 Content-Location: http://www.007hsw.com/Default.htm Content-Type: text/html Last-Modified: Sat, 25 Apr 2015 17:58:57 GMT | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 007hsw.com
Result:
GET / HTTP/1.1
Host: 007hsw.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: 007hsw.com
Referer: http://www.google.com/search?q=007hsw.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 007hsw.com
Referer: http://www.google.com/search?q=007hsw.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=007hsw.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://007hsw.com/
Result: 007hsw.com is not infected or malware details are not published yet.
Result: 007hsw.com is not infected or malware details are not published yet.