Scanned pages/files
Request | Server response | Status |
http://jschlueter.com/ | 200 OK Content-Length: 3871 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED By m4g!c_mUn5h! <link rel="SHORTCUT ICON" href="http://www.crossed-flag-pins.com/animated-flag-gif/gifs/Bangladesh_120-animated-flag-gifs.gif"><title>HACKED By m4g!c_mUn5h!</title> <html> <link href="http://fonts.googleapis.com/css?family=Orbitron:700" rel="stylesheet" type="text/css"> <link href='http://fonts.googleapis.com/css?family=Orbitron:700' rel='stylesheet' type='text/css'> <meta content="HACKED By m4g!c_mUn5h!" property="og:title" /> <!-- Zone-H Mirror Accept Notified By m4g!c_mUn5h! --> <meta content="text/html;charse ...[4013 bytes skipped]... | ||
http://jschlueter.com//go.pub2srv.com/apu.php?zoneid=16780/ | 404 Not Found Content-Length: 220 Content-Type: text/html | clean |
http://jschlueter.com/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
http://jschlueter.com//1phads.com/notice.php?p=16781&interactive=1&pushup=1/ | 404 Not Found Content-Length: 219 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: jschlueter.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 19 Sep 2015 03:22:21 GMT
Server: Apache/2.2.16 (Debian) mod_ssl/2.2.16 OpenSSL/0.9.8o
Vary: Accept-Encoding
Content-Type: text/html
X-Powered-By: PHP/5.3.3-7+squeeze23
GET / HTTP/1.1
Host: jschlueter.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 19 Sep 2015 03:22:21 GMT
Server: Apache/2.2.16 (Debian) mod_ssl/2.2.16 OpenSSL/0.9.8o
Vary: Accept-Encoding
Content-Type: text/html
X-Powered-By: PHP/5.3.3-7+squeeze23
Second query (visit from search engine):
GET / HTTP/1.1
Host: jschlueter.com
Referer: http://www.google.com/search?q=jschlueter.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: jschlueter.com
Referer: http://www.google.com/search?q=jschlueter.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=jschlueter.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://jschlueter.com/
Result: jschlueter.com is not infected or malware details are not published yet.
Result: jschlueter.com is not infected or malware details are not published yet.