Scanned pages/files
| Request | Server response | Status |
http://hiteleven.com/ | 200 OK Content-Length: 859 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Leon ! <!-- saved from url=(0031)http://www.borgosantandrea.org/ -->
<html><head><meta http-equiv="Content-Type" content="text/html; charset=windows-1254"><title>Hacked by Leon !</title> </head><body bgcolor="black"> <br></br> <center> <img src="http://img841.imageshack.us/img841/6038/df51gdf56g41df54gdf5g4.png"><br> <b></br> <b></br> <b></br> <font color="red" size="4" face="Calibri">Hacked By |-Leon-|</font><br> <font color="darkred" size="4" face="Calibri ...[497 bytes skipped]... | ||
http://hiteleven.com/test404page.js | 404 Not Found Content-Length: 6930 Content-Type: text/html | clean |
http://hiteleven.com/wp-includes/js/jquery/jquery.js?ver=1.11.2 | 200 OK Content-Length: 95952 Content-Type: application/javascript | clean |
http://hiteleven.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://hiteleven.com/wp-content/themes/responsive/core/js/responsive-modernizr.min.js?ver=2.6.1 | 200 OK Content-Length: 19080 Content-Type: application/javascript | clean |
http://hiteleven.com/wp-content/themes/responsive/core/js/responsive-scripts.min.js?ver=1.2.6 | 200 OK Content-Length: 9999 Content-Type: application/javascript | clean |
http://hiteleven.com/wp-content/themes/responsive/core/js/jquery.placeholder.min.js?ver=2.0.7 | 200 OK Content-Length: 3304 Content-Type: application/javascript | clean |
http://hiteleven.com/how-to-download-file/ | 200 OK Content-Length: 9683 Content-Type: text/html | clean |
http://hiteleven.com/wp-includes/js/comment-reply.min.js?ver=4.2.3 | 200 OK Content-Length: 757 Content-Type: application/javascript | clean |
http://hiteleven.com/author/admin/ | 200 OK Content-Length: 34064 Content-Type: text/html | clean |
http://hiteleven.com/hack-top-eleven-top-eleven-play/ | 200 OK Content-Length: 15822 Content-Type: text/html | clean |
http://hiteleven.com/category/uncategorized/ | 200 OK Content-Length: 32732 Content-Type: text/html | clean |
http://hiteleven.com/cheat-football-manager-hack-money-top-eleven-new-update-02-may-2015-top-eleven-football-manager/ | 200 OK Content-Length: 12767 Content-Type: text/html | clean |
http://hiteleven.com/author/ | 404 Not Found Content-Length: 6930 Content-Type: text/html | clean |
http://hiteleven.com/no-surveys-mw3-aimbot-download-xbox-360-ps3-pc-mw3-hacks-for-ps3-no-download/ | 200 OK Content-Length: 13015 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hiteleven.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 24 Jul 2015 16:56:05 GMT
Accept-Ranges: bytes
ETag: "35b-55a77db8-f3c7cdc70396cc9e"
Server: LiteSpeed
Content-Length: 859
Content-Type: text/html
Last-Modified: Thu, 16 Jul 2015 09:47:36 GMT
...859 bytes of data.
GET / HTTP/1.1
Host: hiteleven.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 24 Jul 2015 16:56:05 GMT
Accept-Ranges: bytes
ETag: "35b-55a77db8-f3c7cdc70396cc9e"
Server: LiteSpeed
Content-Length: 859
Content-Type: text/html
Last-Modified: Thu, 16 Jul 2015 09:47:36 GMT
...859 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: hiteleven.com
Referer: http://www.google.com/search?q=hiteleven.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hiteleven.com
Referer: http://www.google.com/search?q=hiteleven.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hiteleven.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://hiteleven.com/
Result: hiteleven.com is not infected or malware details are not published yet.
Result: hiteleven.com is not infected or malware details are not published yet.