Scanned pages/files
Request | Server response | Status |
http://newlightpictures.net/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 16 Sep 2015 00:46:20 GMT Location: http://www.newlightpictures.net/ Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-7 X-Pingback: http://www.newlightpictures.net/xmlrpc.php X-Powered-By: PleskLin | clean |
http://www.newlightpictures.net/ | 200 OK Content-Length: 18194 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: +ADw-/title+AD4-Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By ab <!DOCTYPE html> <html xmlns="http://www.w3.org/1999/xhtml" lang="en-US"> <head> <meta charset="UTF-7" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <title>+ADw-/title+AD4-Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger v+ADw-DIV style+AD0AIg-DISPLAY: none+ACIAPgA8-xmp+AD4- | We are an Algarve-based audiovisual production company with all the tools and expertise to create outstanding films. Creativity and resourcefulness are at t ...[20969 bytes skipped]... | ||
http://www.newlightpictures.net/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://www.newlightpictures.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.newlightpictures.net/wp-content/themes/ThisWay/js/froogaloop.js | 200 OK Content-Length: 8561 Content-Type: application/javascript | clean |
http://www.newlightpictures.net/wp-content/themes/ThisWay/plugins/ajax-comment-posting/acp.js | 200 OK Content-Length: 4028 Content-Type: application/javascript | clean |
http://www.newlightpictures.net/wp-includes/js/comment-reply.min.js?ver=4.1.8 | 200 OK Content-Length: 757 Content-Type: application/javascript | clean |
http://www.newlightpictures.net/wp-content/themes/ThisWay/js/jquery.easing.1.3.js | 200 OK Content-Length: 8097 Content-Type: application/javascript | clean |
http://www.newlightpictures.net/wp-content/themes/ThisWay/js/prettyPhoto/js/jquery.prettyPhoto.js | 200 OK Content-Length: 22060 Content-Type: application/javascript | clean |
http://www.newlightpictures.net/wp-content/themes/ThisWay/js/jquery.quicksand.js | 200 OK Content-Length: 18262 Content-Type: application/javascript | clean |
http://maps.googleapis.com/maps/api/js?sensor=true | 200 OK Content-Length: 4340 Content-Type: text/javascript | clean |
http://www.newlightpictures.net/wp-content/themes/ThisWay/js/jquery.validate.min.js | 200 OK Content-Length: 25361 Content-Type: application/javascript | clean |
http://www.newlightpictures.net/wp-content/themes/ThisWay/js/jquery.history.js | 200 OK Content-Length: 6467 Content-Type: application/javascript | clean |
http://www.newlightpictures.net/wp-content/themes/ThisWay/main.js | 200 OK Content-Length: 34333 Content-Type: application/javascript | clean |
http://www.newlightpictures.net/wp-content/themes/ThisWay/js/jquery.form.js | 200 OK Content-Length: 28038 Content-Type: application/javascript | clean |
http://newlightpictures.net/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Wed, 16 Sep 2015 00:46:27 GMT Pragma: no-cache Location: http://www.newlightpictures.net/test404page.js Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-7 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://www.newlightpictures.net/xmlrpc.php X-Powered-By: PleskLin | clean |
http://www.newlightpictures.net/test404page.js | 404 Not Found Content-Length: 126 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: newlightpictures.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 16 Sep 2015 00:46:20 GMT
Location: http://www.newlightpictures.net/
Server: Apache
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=UTF-7
X-Pingback: http://www.newlightpictures.net/xmlrpc.php
X-Powered-By: PleskLin
...0 bytes of data.
GET / HTTP/1.1
Host: newlightpictures.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 16 Sep 2015 00:46:20 GMT
Location: http://www.newlightpictures.net/
Server: Apache
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=UTF-7
X-Pingback: http://www.newlightpictures.net/xmlrpc.php
X-Powered-By: PleskLin
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: newlightpictures.net
Referer: http://www.google.com/search?q=newlightpictures.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: newlightpictures.net
Referer: http://www.google.com/search?q=newlightpictures.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=newlightpictures.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://newlightpictures.net/
Result: newlightpictures.net is not infected or malware details are not published yet.
Result: newlightpictures.net is not infected or malware details are not published yet.