Scanned pages/files
Request | Server response | Status |
http://genesisnicheauthority.com/ | 200 OK Content-Length: 6866 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by MR.WWW ...[221 bytes skipped]... r/><meta http-equiv="content-type" content="text/html; charset=UTF-8"> <title>PHANTOMGHOST</title> <iframe width="0%" height="0" scrolling="no" frameborder="no" src="https://w.soundcloud.com/player/?url=https%3A//api.soundcloud.com/tracks/120390102&auto_play=true&hide_related=false&visual=true"></iframe><br /> <meta name="description" content="Hacked by MR.WWW" /> <meta http-equiv="Content-Type" content="text/ht"> <meta http-equiv="designer" content="idc-Team.net" /> <meta http-equiv="X-UA-Compatible" content="IE=EmulateIE7" /> <meta name="Language" content="Phantomghost"> <meta name="copyright" content="Hacked by Phantomghost"> <meta name="keywords" content="Hacked by Phantomghost"> <meta http-equiv="X-UA-Compatible" content="IE=6" /> <meta ...[7639 bytes skipped]... | ||
http://genesisnicheauthority.com/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Tue, 15 Apr 2014 08:05:09 GMT Pragma: no-cache Location: http://www.genesisnicheauthority.com/test404page.js Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: PHPSESSID=3271k6fbua91tp3gjjmonroqn4; path=/ Set-Cookie: wfvt_3055555697=534ce83832acd; expires=Tue, 15-Apr-2014 08:35:12 GMT; path=/ X-Pingback: http://www.genesisnicheauthority.com/xmlrpc.php | clean |
http://www.genesisnicheauthority.com/test404page.js | 404 Not Found Content-Length: 10832 Content-Type: text/html | clean |
http://www.genesisnicheauthority.com/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: text/javascript | clean |
http://www.genesisnicheauthority.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: text/javascript | clean |
http://www.genesisnicheauthority.com/wp-content/plugins/page-expiration-robot-pro/js/swfobject.js?ver=3.8.1 | 200 OK Content-Length: 6911 Content-Type: text/javascript | clean |
http://genesisnicheauthority.com//s7.addthis.com/js/300/addthis_widget.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Tue, 15 Apr 2014 08:05:17 GMT Pragma: no-cache Location: http://www.genesisnicheauthority.com/s7.addthis.com/js/300/addthis_widget.js/ Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: PHPSESSID=nvji68c73aoc3b1vco8rv7hup7; path=/ Set-Cookie: wfvt_3055555697=534ce8402cbd5; expires=Tue, 15-Apr-2014 08:35:20 GMT; path=/ X-Pingback: http://www.genesisnicheauthority.com/xmlrpc.php | clean |
http://www.genesisnicheauthority.com/s7.addthis.com/js/300/addthis_widget.js/ | 404 Not Found Content-Length: 10832 Content-Type: text/html | clean |
http://www.genesisnicheauthority.com/wp-content/plugins/page-expiration-robot-pro/js/swfobject.js?ver=3.8.3 | 200 OK Content-Length: 6911 Content-Type: text/javascript | clean |
http://www.genesisnicheauthority.com/wp-content/plugins/page-expiration-robot-pro/js/jquery.lwtCountdown-1.0.js?ver=1.4.4 | 200 OK Content-Length: 5250 Content-Type: text/javascript | clean |
http://www.genesisnicheauthority.com/wp-content/plugins/page-expiration-robot-pro/js/swfobject.js?ver=1.4.4 | 200 OK Content-Length: 6911 Content-Type: text/javascript | clean |
http://www.genesisnicheauthority.com/wp-content/themes/twentyfourteen/js/functions.js?ver=20131209 | 200 OK Content-Length: 3380 Content-Type: text/javascript | clean |
http://www.genesisnicheauthority.com/wp-content/plugins/jcwp-copy-paste-blocker/jcorgcpbjs.js?ver=3.8.3 | 200 OK Content-Length: 986 Content-Type: text/javascript | clean |
http://www.genesisnicheauthority.com/wp-content/plugins/jcwp-copy-paste-blocker/jcorgcpbjs.js?ver=3.8.1 | 200 OK Content-Length: 986 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: genesisnicheauthority.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 15 Apr 2014 08:05:08 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 6866
Content-Type: text/html
Last-Modified: Sun, 13 Apr 2014 16:47:56 GMT
...6866 bytes of data.
GET / HTTP/1.1
Host: genesisnicheauthority.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 15 Apr 2014 08:05:08 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 6866
Content-Type: text/html
Last-Modified: Sun, 13 Apr 2014 16:47:56 GMT
...6866 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: genesisnicheauthority.com
Referer: http://www.google.com/search?q=genesisnicheauthority.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: genesisnicheauthority.com
Referer: http://www.google.com/search?q=genesisnicheauthority.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=genesisnicheauthority.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://genesisnicheauthority.com/
Result: genesisnicheauthority.com is not infected or malware details are not published yet.
Result: genesisnicheauthority.com is not infected or malware details are not published yet.