Scanned pages/files
Request | Server response | Status |
http://www.kwivir.net/ | 200 OK Content-Length: 904 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 5x5 src: http://www.youtube.com/embed/m_tjxz4ys_u?wmode=opaque&autoplay=1&start=31 <iframe class="bright"width="5" height="5" wmode="transparent" src="http://www.youtube.com/embed/m_tjxz4ys_u?wmode=opaque&autoplay=1&start=31" frameborder="0" allowfullscreen autoplay="1"> Deface/Content modification. The following signature was found: Hacked By xc0d30ffx <html>
<script>alert("Hacked By xc0d30ffx")</script> <!DOCTYPE html> <head> <title>Hacked By Team_CC</title> <style> body { background:#E64522; color:#fff; } iframe { opacity:0;} </style> </head> <body> <center> <h1 style="padding-to ...[733 bytes skipped]... | ||
http://www.kwivir.net/test404page.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: kwivir.net
Result:
GET / HTTP/1.1
Host: kwivir.net
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: kwivir.net
Referer: http://www.google.com/search?q=kwivir.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: kwivir.net
Referer: http://www.google.com/search?q=kwivir.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=kwivir.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://kwivir.net/
Result: kwivir.net is not infected or malware details are not published yet.
Result: kwivir.net is not infected or malware details are not published yet.