Scanned pages/files
| Request | Server response | Status |
http://gvidopuke.com/ | 200 OK Content-Length: 2632 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: [!] HaCkeD By ViRusx.EL [!] ...[105 bytes skipped]... dif]--> <!--[if IE 8 ]> <html lang="en" class="no-js ie8"> <![endif]--> <!--[if IE 9 ]> <html lang="en" class="no-js ie9"> <![endif]--> <div style="text-align: center"> <!--[if (gt IE 9)|!(IE)]><!--> <html lang="en" class="no-js"> <!--<![endif]--> <head> <meta charset="UTF-8"> <title>[!] HaCkeD By ViRusx.EL [!]</title> <meta name="keywords" content="ViRusx-EL ViRusx HACKED BY ViRusx TX AMZ "> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <script src="http://www.dr-juergens.com/themes/administration/js/libs/modernizr-1.7.min.js"></script> <style type="text/css"> background:#fff url(http://im86.gulfup.com/NuhCDw.jpg) no-repeat center center fixed; .style1 { color: # ...[2135 bytes skipped]... | ||
http://www.dr-juergens.com/themes/administration/js/libs/modernizr-1.7.min.js | 200 OK Content-Length: 9021 Content-Type: application/javascript | clean |
http://gvidopuke.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: gvidopuke.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 02 Jun 2015 00:48:56 GMT
Accept-Ranges: bytes
ETag: "1eab32f-a48-5107ed0ade3ec"
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Length: 2632
Content-Type: text/html
Last-Modified: Wed, 04 Mar 2015 23:28:56 GMT
...2632 bytes of data.
GET / HTTP/1.1
Host: gvidopuke.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 02 Jun 2015 00:48:56 GMT
Accept-Ranges: bytes
ETag: "1eab32f-a48-5107ed0ade3ec"
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Length: 2632
Content-Type: text/html
Last-Modified: Wed, 04 Mar 2015 23:28:56 GMT
...2632 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: gvidopuke.com
Referer: http://www.google.com/search?q=gvidopuke.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: gvidopuke.com
Referer: http://www.google.com/search?q=gvidopuke.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=gvidopuke.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://gvidopuke.com/
Result: gvidopuke.com is not infected or malware details are not published yet.
Result: gvidopuke.com is not infected or malware details are not published yet.