Scanned pages/files
Request | Server response | Status |
http://gravitationalresearch.com/ | 200 OK Content-Length: 52266 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED by Spammers ! ) ...[47461 bytes skipped]... ;"> http://dustygraves.com/ </span><br /> <br /> <br /> <br /> <span style="font-family: arial black,avant garde;"><span style="color: #000000;">HUNTING DINOSAURS AT TIMMIES . . .</span> <span color="#008040" style="color: #008040;">Tim Hortons Website, - <br /> my photos (constantly</span><a><span color="#008040" style="color: #008040;">HACKED by Spammers ! )</span><br /> </a><span style="color: #0000ff;"><a href="http://www.everycup.ca/profile/5025720" title="HUNTING_DINOSAURS_AT_TIMMIES" target="_blank"><span style="color: #0000ff;">HUNTING_DINOSAURS_AT_TIMMIES</span></a></span></span><br /><span style="font-family: arial black,avant garde; color: #000000;"> http://www.everycup.ca/profile/5025720 </span><br /> <br /> <br /> <sp ...[14041 bytes skipped]... | ||
http://gravitationalresearch.com/javascripts/jquery_modified.js | 200 OK Content-Length: 93313 Content-Type: application/x-javascript | clean |
http://gravitationalresearch.com/javascripts/plugins/jquery.ui.js | 200 OK Content-Length: 237802 Content-Type: application/x-javascript | clean |
http://gravitationalresearch.com/javascripts/i18n.js | 200 OK Content-Length: 22411 Content-Type: application/x-javascript | clean |
http://gravitationalresearch.com/javascripts/i18n/en.js | 200 OK Content-Length: 10602 Content-Type: application/x-javascript | clean |
http://gravitationalresearch.com/javascripts/asterion.js?1449180645 | 200 OK Content-Length: 303504 Content-Type: application/x-javascript | clean |
http://gravitationalresearch.com/test404page.js | 200 OK Content-Length: 52260 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: gravitationalresearch.com
Result:
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, must-revalidate
Connection: close
Date: Wed, 23 Dec 2015 07:09:37 GMT
ETag: "7567fd8d6d4ad090e6c5f947c7fb8b46"
Server: LiteSpeed
Content-Length: 52266
Content-Type: text/html; charset=UTF-8
Set-Cookie: visit=1; path=/
X-Runtime: 242
...52266 bytes of data.
GET / HTTP/1.1
Host: gravitationalresearch.com
Result:
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, must-revalidate
Connection: close
Date: Wed, 23 Dec 2015 07:09:37 GMT
ETag: "7567fd8d6d4ad090e6c5f947c7fb8b46"
Server: LiteSpeed
Content-Length: 52266
Content-Type: text/html; charset=UTF-8
Set-Cookie: visit=1; path=/
X-Runtime: 242
...52266 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: gravitationalresearch.com
Referer: http://www.google.com/search?q=gravitationalresearch.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: gravitationalresearch.com
Referer: http://www.google.com/search?q=gravitationalresearch.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=gravitationalresearch.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://gravitationalresearch.com/
Result: gravitationalresearch.com is not infected or malware details are not published yet.
Result: gravitationalresearch.com is not infected or malware details are not published yet.