Scanned pages/files
Request | Server response | Status |
http://cherubsnest.com/ | 200 OK Content-Length: 93833 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: +ADw-title+AD4-HackeD By Matrix Dz+ADw-/title+AD4 <!DOCTYPE html> <!--[if IE 8 ]><html class="ie ie8" lang="en-US"> <![endif]--> <!--[if (gte IE 9)|!(IE)]><!--><html lang="en-US"> <!--<![endif]--><head> <meta charset="UTF-7" /> <meta name="viewport" content="width=device-width, initial-scale=1, minimum-scale=1, maximum-scale=1, user-scalable=no" /> <title>+ADw-/title+AD4 +ADw-title+AD4-HackeD By Matrix Dz+ADw-/title+AD4 +ADw-meta http-equiv+AD0AIg-content-type+ACI content+AD0AIg-text/html+ADs charset+AD0-iso-8859-9+ACI-/+AD4 +ADw-title+AD4APA-/title+AD4 +ADw-meta http-equiv+AD0AIg-Content-Type+ACI content+AD0AIg-text/html+ADs charset+AD0-UTF-8+ACIAPgA8-title+AD4-HackeD By Matrix Dz+ADw-/title+AD4 +ADw-script src+AD0AIg-https://ajax.googleapis.com/ajax/libs/jquery/1.6.1/jquery.min.js+ACI type+AD0AIg-te ...[106260 bytes skipped]... | ||
https://maps.googleapis.com/maps/api/js?sensor=false | 200 OK Content-Length: 65496 Content-Type: text/javascript | clean |
http://cherubsnest.com/wp-includes/js/jquery/jquery.js?ver=1.11.2 | 200 OK Content-Length: 95952 Content-Type: application/javascript | clean |
http://cherubsnest.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://cherubsnest.com/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.tools.min.js?ver=4.6.5 | 200 OK Content-Length: 98513 Content-Type: application/javascript | clean |
http://cherubsnest.com/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=4.6.5 | 200 OK Content-Length: 109886 Content-Type: application/javascript | clean |
http://cherubsnest.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20 | 200 OK Content-Length: 15248 Content-Type: application/javascript | clean |
http://cherubsnest.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.1.2 | 200 OK Content-Length: 11192 Content-Type: application/javascript | clean |
http://cherubsnest.com//cherubsnest.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=2.3.8/ | 404 Not Found Content-Length: 401 Content-Type: text/html | clean |
http://cherubsnest.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://cherubsnest.com//cherubsnest.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.60/ | 404 Not Found Content-Length: 410 Content-Type: text/html | clean |
http://cherubsnest.com//cherubsnest.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=2.3.8/ | 404 Not Found Content-Length: 401 Content-Type: text/html | clean |
http://cherubsnest.com//cherubsnest.com/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1/ | 404 Not Found Content-Length: 408 Content-Type: text/html | clean |
http://cherubsnest.com//cherubsnest.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=2.3.8/ | 404 Not Found Content-Length: 404 Content-Type: text/html | clean |
https://www.youtube.com/iframe_api | 200 OK Content-Length: 745 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: cherubsnest.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 24 Dec 2015 15:44:34 GMT
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-7
Link: <http://cherubsnest.com/>; rel=shortlink
Ngpass_ngall: 1
X-Pingback: http://cherubsnest.com/xmlrpc.php
GET / HTTP/1.1
Host: cherubsnest.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 24 Dec 2015 15:44:34 GMT
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-7
Link: <http://cherubsnest.com/>; rel=shortlink
Ngpass_ngall: 1
X-Pingback: http://cherubsnest.com/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: cherubsnest.com
Referer: http://www.google.com/search?q=cherubsnest.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: cherubsnest.com
Referer: http://www.google.com/search?q=cherubsnest.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=cherubsnest.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://cherubsnest.com/
Result: cherubsnest.com is not infected or malware details are not published yet.
Result: cherubsnest.com is not infected or malware details are not published yet.