Scanned pages/files
| Request | Server response | Status |
http://www.ilmortodelmese.com/ | 200 OK Content-Length: 48934 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: This domain has been hacked by L UT FI AN ...[32914 bytes skipped]... mscope='itemscope' itemtype='http://schema.org/BlogPosting'> <meta content='5705357809828969166' itemprop='blogId'/> <meta content='1095556309159533455' itemprop='postId'/> <a name='1095556309159533455'></a> <h3 class='post-title entry-title' itemprop='name'> <a href='http://www.ilmortodelmese.com/2011/11/this-domain-has-been-hacked-by-l-ut-fi.html'>This domain has been hacked by L UT FI AN</a> </h3> <div class='post-header'> <div class='post-header-line-1'></div> </div> <div class='post-body entry-content' id='post-body-1095556309159533455' itemprop='description articleBody'> <div dir="ltr" style="text-align: left;" trbidi="on">hahahaha...</div> <div style='clear: both;'></div> </div> <div class='post-footer'> <div class='post-f ...[23526 bytes skipped]... | ||
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 12716 Content-Type: application/javascript | clean |
https://www.blogger.com/static/v1/widgets/2885176887-widgets.js | 200 OK Content-Length: 90891 Content-Type: text/javascript | clean |
http://www.ilmortodelmese.com/2011/11/this-domain-has-been-hacked-by-l-ut-fi.html | 200 OK Content-Length: 60243 Content-Type: text/html | clean |
http://www.ilmortodelmese.com//www.blogblog.com/dynamicviews/4224c15c4e7c9321/js/comments.js/ | HTTP/1.1 302 Moved Temporarily Cache-Control: private, max-age=0 Connection: close Date: Wed, 12 Nov 2014 10:28:39 GMT Location: http://file.ilmortodelmese.com/www.blogblog.com/dynamicviews/4224c15c4e7c9321/js/comments.js/ Server: GSE Content-Type: text/html; charset=UTF-8 Expires: Wed, 12 Nov 2014 10:28:39 GMT Alternate-Protocol: 80:quic,p=0.01,80:quic,p=0.01 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
http://file.ilmortodelmese.com/www.blogblog.com/dynamicviews/4224c15c4e7c9321/js/comments.js/ | 500 Can't connect to file.ilmortodelmese.com:80 Content-Length: 198 Content-Type: text/plain | clean |
http://file.ilmortodelmese.com/test404page.js | 500 Can't connect to file.ilmortodelmese.com:80 Content-Length: 198 Content-Type: text/plain | clean |
https://www.blogger.com/static/v1/jsbin/3995214906-comment_from_post_iframe.js | 200 OK Content-Length: 13101 Content-Type: text/javascript | clean |
https://www.blogger.com/static/v1/widgets/3787075037-widgets.js | 200 OK Content-Length: 90786 Content-Type: text/javascript | clean |
http://www.ilmortodelmese.com/feeds/posts/default | 200 OK Content-Length: 2900 Content-Type: application/atom+xml | clean |
http://www.ilmortodelmese.com//www.blogger.com/rearrange?blogID=5705357809828969166&widgetType=Followers&widgetId=Followers1&action=editWidget§ionId=sidebar-right-1/ | HTTP/1.1 302 Moved Temporarily Cache-Control: private, max-age=0 Connection: close Date: Wed, 12 Nov 2014 10:28:41 GMT Location: http://file.ilmortodelmese.com/www.blogger.com/rearrange?blogID=5705357809828969166&widgetType=Followers&widgetId=Followers1&action=editWidget§ionId=sidebar-right-1/ Server: GSE Content-Type: text/html; charset=UTF-8 Expires: Wed, 12 Nov 2014 10:28:41 GMT Alternate-Protocol: 80:quic,p=0.01,80:quic,p=0.01 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
http://file.ilmortodelmese.com/www.blogger.com/rearrange?blogid=5705357809828969166&widgettype=followers&widgetid=followers1&action=editwidget§ionid=sidebar-right-1/ | 500 Can't connect to file.ilmortodelmese.com:80 Content-Length: 198 Content-Type: text/plain | clean |
http://www.ilmortodelmese.com/search?updated-min=2011-01-01T00:00:00-08:00&updated-max=2012-01-01T00:00:00-08:00&max-results=1 | 200 OK Content-Length: 49600 Content-Type: text/html | clean |
http://www.ilmortodelmese.com/2011_11_01_archive.html | 200 OK Content-Length: 49072 Content-Type: text/html | clean |
http://www.ilmortodelmese.com//www.google.com/js/bg/X5kdUZyupC9KX_WeU5hfyWt7lhUmYshtOfLiEn645Y4.js/ | HTTP/1.1 302 Moved Temporarily Cache-Control: private, max-age=0 Connection: close Date: Wed, 12 Nov 2014 10:28:43 GMT Location: http://file.ilmortodelmese.com/www.google.com/js/bg/X5kdUZyupC9KX_WeU5hfyWt7lhUmYshtOfLiEn645Y4.js/ Server: GSE Content-Type: text/html; charset=UTF-8 Expires: Wed, 12 Nov 2014 10:28:43 GMT Alternate-Protocol: 80:quic,p=0.01,80:quic,p=0.01 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
http://file.ilmortodelmese.com/www.google.com/js/bg/x5kduzyupc9kx_weu5hfywt7lhumyshtoflien645y4.js/ | 500 Can't connect to file.ilmortodelmese.com:80 Content-Length: 198 Content-Type: text/plain | clean |
http://www.ilmortodelmese.com/b/csi.js?h=X5kdUZyupC9KX_WeU5hfyWt7lhUmYshtOfLiEn645Y4 | 200 OK Content-Length: 23603 Content-Type: text/javascript | clean |
http://www.ilmortodelmese.com//www.blogger.com/rearrange?blogID=5705357809828969166&widgetType=BlogArchive&widgetId=BlogArchive1&action=editWidget§ionId=sidebar-right-1/ | HTTP/1.1 302 Moved Temporarily Cache-Control: private, max-age=0 Connection: close Date: Wed, 12 Nov 2014 10:28:44 GMT Location: http://file.ilmortodelmese.com/www.blogger.com/rearrange?blogID=5705357809828969166&widgetType=BlogArchive&widgetId=BlogArchive1&action=editWidget§ionId=sidebar-right-1/ Server: GSE Content-Type: text/html; charset=UTF-8 Expires: Wed, 12 Nov 2014 10:28:44 GMT Alternate-Protocol: 80:quic,p=0.01,80:quic,p=0.01 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
http://file.ilmortodelmese.com/www.blogger.com/rearrange?blogid=5705357809828969166&widgettype=blogarchive&widgetid=blogarchive1&action=editwidget§ionid=sidebar-right-1/ | 500 Can't connect to file.ilmortodelmese.com:80 Content-Length: 198 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ilmortodelmese.com
Result:
GET / HTTP/1.1
Host: ilmortodelmese.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: ilmortodelmese.com
Referer: http://www.google.com/search?q=ilmortodelmese.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ilmortodelmese.com
Referer: http://www.google.com/search?q=ilmortodelmese.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ilmortodelmese.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ilmortodelmese.com/
Result: ilmortodelmese.com is not infected or malware details are not published yet.
Result: ilmortodelmese.com is not infected or malware details are not published yet.