Scanned pages/files
Request | Server response | Status |
http://e-theology.net/ | 200 OK Content-Length: 565 Content-Type: text/html | clean |
http://e-theology.net/cgi-bin/ | 403 Forbidden Content-Length: 506 Content-Type: text/html | clean |
http://e-theology.net/test404page.js | 404 Not Found Content-Length: 508 Content-Type: text/html | clean |
http://e-theology.net/church/ | 200 OK Content-Length: 5166 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY ViRusx <html lang="en"><head>
<title>HACKED BY ViRusx</title> <meta name="description" content="Why Hacked Website? Website Hacked by V!Rusx.EL= "I AM Moroccan Defend my country against (Islamophobes) + (Polisario terrorists) + (the racists) + (The Atheists) + (the corrupt) and all those who want to divide us" (our belief) = God, Homeland, "> <link rel="stylesheet" href="http://domain-sales-list. ...[5919 bytes skipped]... | ||
http://www.modernizedmedia.com/cache/a84313665bbe3158c53cad23dd8457df.js | 200 OK Content-Length: 172443 Content-Type: text/javascript | clean |
http://e-theology.net/eseminar/ | 200 OK Content-Length: 434 Content-Type: text/html | clean |
http://e-theology.net/eseminar/cgi-bin/ | 200 OK Content-Length: 417 Content-Type: text/html | clean |
http://e-theology.net/moving.page/ | 200 OK Content-Length: 5166 Content-Type: text/html | clean |
http://e-theology.net/suspended.page/ | 200 OK Content-Length: 5166 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: e-theology.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 26 Jul 2015 07:08:07 GMT
Server: Apache/2.2.22 (Unix) mod_ssl/2.2.22 OpenSSL/1.0.0-fips DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 mod_fcgid/2.3.6
Content-Length: 565
Content-Type: text/html;charset=ISO-8859-1
...565 bytes of data.
GET / HTTP/1.1
Host: e-theology.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 26 Jul 2015 07:08:07 GMT
Server: Apache/2.2.22 (Unix) mod_ssl/2.2.22 OpenSSL/1.0.0-fips DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 mod_fcgid/2.3.6
Content-Length: 565
Content-Type: text/html;charset=ISO-8859-1
...565 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: e-theology.net
Referer: http://www.google.com/search?q=e-theology.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: e-theology.net
Referer: http://www.google.com/search?q=e-theology.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=e-theology.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://e-theology.net/
Result: e-theology.net is not infected or malware details are not published yet.
Result: e-theology.net is not infected or malware details are not published yet.