Scanned pages/files
Request | Server response | Status |
http://www.nudigital.tv/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 03 May 2014 14:57:10 GMT Location: http://nudigital.tv/ Server: Apache/2.2.24 (Unix) mod_ssl/2.2.24 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Content-Length: 0 Content-Type: text/html; charset=UTF-7 X-Pingback: http://nudigital.tv/xmlrpc.php X-Powered-By: PHP/5.3.26 | clean |
http://nudigital.tv/ | 200 OK Content-Length: 12552 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: +ADw-title+AD4-Hacked By Ayyildiz Tim+ADw-/title+AD4 ...[293 bytes skipped]... /><![endif]--> <!--[if !IE]><!--> <html lang="en-US" > <!--<![endif]--> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-7" /> <meta name="viewport" content="width=device-width; initial-scale=1.0; maximum-scale=1.0; user-scalable=0;"> <title>+ADw-/title+AD4APA-html+AD4APA-head+AD4 +ADw-title+AD4-Hacked By Ayyildiz Tim+ADw-/title+AD4 +ADw-head+AD4APA-link rel+AD0AIg-shortcut icon+ACI href+AD0AIg-http://s1307.hizliresim.com/1c/n/qk7kn.png+ACI-/+AD4APA-/head+AD4 +ADw-body bgcolor+AD0AIg-black+ACIAPg +ADw-center+AD4APA-br+AD4 +ADw-/script+AD4APA-style type+AD0AIg-text/css+ACIAPg +ADwAIQ--- .ahgcrewstyle +AHs color: +ACM-F00+ADs +AH0 .ahg +AHs color: +ACM-0F0+ADs +AH0 --+AD4 +ADw-/style+AD4 +ADw-/head+AD4 ...[13494 bytes skipped]... | ||
http://nudigital.tv/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93128 Content-Type: application/javascript | clean |
http://nudigital.tv/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://nudigital.tv/wp-content/themes/lightweight-personal/js/scripts.js?ver=1.0.0 | 200 OK Content-Length: 1152 Content-Type: application/javascript | clean |
http://nudigital.tv/wp-content/themes/lightweight-personal/js/html5.js?ver=3.6 | 200 OK Content-Length: 2452 Content-Type: application/javascript | clean |
http://www.nudigital.tv/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: nudigital.tv
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 03 May 2014 14:57:13 GMT
Server: Apache/2.2.24 (Unix) mod_ssl/2.2.24 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Type: text/html; charset=UTF-7
X-Pingback: http://nudigital.tv/xmlrpc.php
X-Powered-By: PHP/5.3.26
GET / HTTP/1.1
Host: nudigital.tv
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 03 May 2014 14:57:13 GMT
Server: Apache/2.2.24 (Unix) mod_ssl/2.2.24 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Type: text/html; charset=UTF-7
X-Pingback: http://nudigital.tv/xmlrpc.php
X-Powered-By: PHP/5.3.26
Second query (visit from search engine):
GET / HTTP/1.1
Host: nudigital.tv
Referer: http://www.google.com/search?q=nudigital.tv
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: nudigital.tv
Referer: http://www.google.com/search?q=nudigital.tv
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=nudigital.tv
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://nudigital.tv/
Result: nudigital.tv is not infected or malware details are not published yet.
Result: nudigital.tv is not infected or malware details are not published yet.