Scanned pages/files
Request | Server response | Status |
http://mojotheme.com/ | 200 OK Content-Length: 6529 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By S@NT3T3 <html> <head/><meta property="og:description" content="Hacked By S@NT3T3"/> <meta property="og:image" content="https://fbexternal-a.akamaihd.net/safe_image.php?d=AQCXgGM48FMkSoTy&w=484&h=253&url=https%3A%2F%2Fscontent-b-mxp.xx.fbcdn.net%2Fhphotos-xpf1%2Fv%2Ft1.0-9%2F10345734_759384690812579_475267003920715854_n.jpg%3Foh%3D4577ba3b46df6e89f994ca0ab41b7f5d%26oe%3D556CB5EA&cfs=1"/> <meta charset="UTF-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge,chr ...[7404 bytes skipped]... | ||
http://mojotheme.com/test404page.js | 200 OK Content-Length: 6543 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mojotheme.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0, no-cache
Connection: close
Date: Sun, 25 Jan 2015 07:18:32 GMT
Server: Apache/2.4.10 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Vary: Accept-Encoding
Content-Length: 6529
Content-Type: text/html
X-Mod-Pagespeed: 1.8.31.5-4307
X-Powered-By: PHP/5.4.34
...6529 bytes of data.
GET / HTTP/1.1
Host: mojotheme.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0, no-cache
Connection: close
Date: Sun, 25 Jan 2015 07:18:32 GMT
Server: Apache/2.4.10 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Vary: Accept-Encoding
Content-Length: 6529
Content-Type: text/html
X-Mod-Pagespeed: 1.8.31.5-4307
X-Powered-By: PHP/5.4.34
...6529 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: mojotheme.com
Referer: http://www.google.com/search?q=mojotheme.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mojotheme.com
Referer: http://www.google.com/search?q=mojotheme.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mojotheme.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://mojotheme.com/
Result: mojotheme.com is not infected or malware details are not published yet.
Result: mojotheme.com is not infected or malware details are not published yet.