Scanned pages/files
| Request | Server response | Status |
http://www.blacksheepz.org/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 21 Jul 2015 06:25:06 GMT Location: http://blacksheepz.org/ Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-7 X-Pingback: http://blacksheepz.org/xmlrpc.php X-Powered-By: PleskLin | clean |
http://blacksheepz.org/ | 200 OK Content-Length: 4431 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: +ADw-/title+AD4-Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By ab <!doctype html> <html class="no-js" lang="en-US" > <head> <meta charset="utf-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <title>+ADw-/title+AD4-Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger v+ADw-DIV style+AD0AIg-DISPLAY: none+ACIAPgA8-xmp+AD4- | </title> <link rel="stylesheet" href="http://blacksheepz.org/wp-content/themes/blacksheepz_2014/css/app.css" /> <lin ...[4294 bytes skipped]... | ||
http://blacksheepz.org/wp-content/themes/blacksheepz_2014/js/modernizr/modernizr.min.js | 200 OK Content-Length: 11084 Content-Type: application/javascript | clean |
http://blacksheepz.org/wp-content/themes/blacksheepz_2014/js/jquery/dist/jquery.min.js | 200 OK Content-Length: 84280 Content-Type: application/javascript | clean |
http://blacksheepz.org/wp-content/themes/blacksheepz_2014/js/app.js | 200 OK Content-Length: 90296 Content-Type: application/javascript | clean |
http://www.blacksheepz.org/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Tue, 21 Jul 2015 06:25:12 GMT Pragma: no-cache Location: http://blacksheepz.org/test404page.js Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-7 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://blacksheepz.org/xmlrpc.php X-Powered-By: PleskLin | clean |
http://blacksheepz.org/test404page.js | 404 Not Found Content-Length: 4770 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: blacksheepz.org
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 21 Jul 2015 06:25:09 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-7
Link: <http://blacksheepz.org/>; rel=shortlink
X-Pingback: http://blacksheepz.org/xmlrpc.php
X-Powered-By: PleskLin
GET / HTTP/1.1
Host: blacksheepz.org
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 21 Jul 2015 06:25:09 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-7
Link: <http://blacksheepz.org/>; rel=shortlink
X-Pingback: http://blacksheepz.org/xmlrpc.php
X-Powered-By: PleskLin
Second query (visit from search engine):
GET / HTTP/1.1
Host: blacksheepz.org
Referer: http://www.google.com/search?q=blacksheepz.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: blacksheepz.org
Referer: http://www.google.com/search?q=blacksheepz.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=blacksheepz.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://blacksheepz.org/
Result: blacksheepz.org is not infected or malware details are not published yet.
Result: blacksheepz.org is not infected or malware details are not published yet.