Scanned pages/files
Request | Server response | Status |
http://bernarddahl.com/ | 200 OK Content-Length: 374 Content-Type: text/html | clean |
http://bernarddahl.com/cpanel | 200 OK Content-Length: 8975 Content-Type: text/html | clean |
http://bernarddahl.com/test404page.js | 200 OK Content-Length: 12889 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY E404 ...[555 bytes skipped]... rd 11\"> <link rel=File-List href=\"index_files/filelist.xml\"> <link rel=Edit-Time-Data href=\"index_files/editdata.mso\"> <!--[if !mso]> <style> v\\:* {behavior:url(#default#VML);} o\\:* {behavior:url(#default#VML);} w\\:* {behavior:url(#default#VML);} .shape {behavior:url(#default#VML);} </style> <![endif]--> <title>HACKED BY E404</title> <style> st1\\:*{behavior:url(#ieooui) } </style> <![endif]> <style> <!--.STYLE28 {font-weight: none;} .STYLE38 {font-weight: none;} /* Font Definitions */ @font-face {font-family:Tahoma; panose-1:2 11 6 4 3 5 4 4 2 4; mso-font-charset:0; mso-generic-font-family:swiss; mso-font-pitch:variable; mso-font-signature:-520078593 -1 ...[14038 bytes skipped]... |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bernarddahl.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 12 Jun 2015 06:20:58 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 374
Content-Type: text/html
Last-Modified: Fri, 04 Apr 2008 18:23:42 GMT
...374 bytes of data.
GET / HTTP/1.1
Host: bernarddahl.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 12 Jun 2015 06:20:58 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 374
Content-Type: text/html
Last-Modified: Fri, 04 Apr 2008 18:23:42 GMT
...374 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: bernarddahl.com
Referer: http://www.google.com/search?q=bernarddahl.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bernarddahl.com
Referer: http://www.google.com/search?q=bernarddahl.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bernarddahl.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bernarddahl.com/
Result: bernarddahl.com is not infected or malware details are not published yet.
Result: bernarddahl.com is not infected or malware details are not published yet.