Scanned pages/files
| Request | Server response | Status |
http://blueprint4u.com/ | 200 OK Content-Length: 3786 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By. AnonnyM_S87 <link rel="SHORTCUT ICON" href="http://upload.wikimedia.org/wikipedia/commons/7/7e/Animated-Flag-Indonesia.gif">
<HTML> <HEAD> <TITLE>Hacked</TITLE><style> body {background-color:#000000;;} body{ background: url("http://s3.amazonaws.com/somewherein/assets/images/ondhokarer_rajputra_1338250431_1-bg.gif"); } </style> <SCRIPT language='JavaScript'>alert("Hacked By. AnonnyM_S87");</SCRIPT> <EMBED ALIGN='CENTER' AUTOSTART='TRUE' HEIGHT='0' LOOP='TRUE' SRC='onlylovemiss.netai.net/mp3/ind.swf' WIDTH='0'/> </HEAD> <script type='text/javascript'> var DADrightclicktheme = 'Dark'; var DADrightclickimage = 'http://i40.tinypic.com/21jd9nm.png';</script> <script type='text/javascript' src="http://tuyulz-blogspot.googlecode.com/files/Ant ...[3807 bytes skipped]... | ||
http://tuyulz-blogspot.googlecode.com/files/Anti%20Klik.js | 200 OK Content-Length: 2027 Content-Type: text/plain | clean |
http://tuyulz-blogspot.googlecode.com/files/ | 404 Not Found Content-Length: 1431 Content-Type: text/html | clean |
http://tuyulz-blogspot.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://tuyulz-blogspot.googlecode.com/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://wadah-tutorial.googlecode.com/files/leaf.js | 200 OK Content-Length: 3924 Content-Type: text/x-c++ | clean |
http://wadah-tutorial.googlecode.com/files/\"http://wadahtutorial.blogspot.com\" | 404 Not Found Content-Length: 1476 Content-Type: text/html | clean |
http://wadah-tutorial.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://blueprint4u.com//www.google.com/ | 404 Not Found Content-Length: 509 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: blueprint4u.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 15 Apr 2014 20:29:48 GMT
Server: Apache/2.2.24 (Unix) mod_ssl/2.2.24 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Type: text/html
X-Powered-By: PHP/5.3.26
GET / HTTP/1.1
Host: blueprint4u.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 15 Apr 2014 20:29:48 GMT
Server: Apache/2.2.24 (Unix) mod_ssl/2.2.24 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Type: text/html
X-Powered-By: PHP/5.3.26
Second query (visit from search engine):
GET / HTTP/1.1
Host: blueprint4u.com
Referer: http://www.google.com/search?q=blueprint4u.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: blueprint4u.com
Referer: http://www.google.com/search?q=blueprint4u.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=blueprint4u.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://blueprint4u.com/
Result: blueprint4u.com is not infected or malware details are not published yet.
Result: blueprint4u.com is not infected or malware details are not published yet.