Scanned pages/files
| Request | Server response | Status |
http://pascalnicolai.com/ | 200 OK Content-Length: 24380 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By /.BROPRINCESSWAP* Please Click Here ...[13488 bytes skipped]... olid '+clickb+'px; background: '+clickbg+'; width: '+clickw+'px; height: '+clickh+'; cursor: pointer;"> <tr> <td align="middle">'+clickt+'</td> </tr> </table> </div> ');}} // --> <!-- var clickw=270; var clickh=20; var clickb=2; var clickc="#0000FF"; var clickbg="black"; // Background color var clickt="-=[ <blink>Hacked By /.BROPRINCESSWAP* Please Click Here</blink>] =-"; // Text to display var clickFont="font-family:Tahoma,arial,helvetica; font-size:10pt; font-weight:bold; color:white"; // The font style of the text new initReveal(0,'black','black',1,1,'lime','lime',3,10,true); // --> <!-- function tb5_makeArray(n){ this.length = n; return this.length; } tb5_messages = new tb5_makeArray(3); tb5_messages[0] = "..:[ Dont Panik ..Im Sorry ]:.."; tb5_messages[1] = "..:[ -= /.BROPRI ...[13233 bytes skipped]... | ||
http://pascalnicolai.com/media/system/js/core.js | 200 OK Content-Length: 3616 Content-Type: application/javascript | clean |
http://pascalnicolai.com/media/system/js/mootools-core.js | 200 OK Content-Length: 83987 Content-Type: application/javascript | clean |
http://pascalnicolai.com/media/system/js/caption.js | 200 OK Content-Length: 800 Content-Type: application/javascript | clean |
http://pascalnicolai.com/media/system/js/mootools-more.js | 200 OK Content-Length: 224389 Content-Type: application/javascript | clean |
http://davidwalsh.name/dw-content/mootools-1.3.js | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=1 Connection: close Date: Wed, 27 Aug 2014 09:14:32 GMT Location: http://davidwalsh.name/demo/mootools-1.3.js Server: nginx Vary: Accept-Encoding Content-Length: 316 Content-Type: text/html; charset=iso-8859-1 Expires: Wed, 27 Aug 2014 09:14:33 GMT | clean |
http://davidwalsh.name/demo/mootools-1.3.js | 200 OK Content-Length: 80351 Content-Type: application/x-javascript | clean |
http://pascalnicolai.com/templates/siteground-j16-22/js/CreateHTML5Elements.js | 200 OK Content-Length: 388 Content-Type: application/javascript | clean |
http://pascalnicolai.com/templates/siteground-j16-22/js/jquery-1.4.4.min.js | 200 OK Content-Length: 79762 Content-Type: application/javascript | clean |
http://pascalnicolai.com/templates/siteground-j16-22/js/sgmenu.js | 200 OK Content-Length: 1085 Content-Type: application/javascript | clean |
http://pascalnicolai.com/templates/siteground-j16-22/js/AnimateBG.js | 200 OK Content-Length: 674 Content-Type: application/javascript | clean |
http://pascalnicolai.com/index.php/about%20us | 200 OK Content-Length: 6739 Content-Type: text/html | clean |
http://pascalnicolai.com/index.php/contact%20us | 200 OK Content-Length: 7598 Content-Type: text/html | clean |
http://pascalnicolai.com/media/system/js/validate.js | 200 OK Content-Length: 2646 Content-Type: application/javascript | clean |
http://pascalnicolai.com/index.php/news | 200 OK Content-Length: 6691 Content-Type: text/html | clean |
http://pascalnicolai.com/index.php/using-joomla/extensions/components/content-component/article-category-list/8-beginners | 200 OK Content-Length: 11430 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: pascalnicolai.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Wed, 27 Aug 2014 09:14:27 GMT
Pragma: no-cache
Accept-Ranges: bytes
Server: Apache
Content-Length: 24380
Content-Type: text/html; charset=utf-8
Host-Header: 192fc2e7e50945beb8231a492d6a8024
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: a126a4f8656d06525497b90a6212094a=f677k6cfldchih41kjlch2i5s7; path=/
X-Cache: SGCACHE-MISS
X-Forwarded-For: 78.158.11.226
X-Host: pascalnicolai.com
X-Url: /
...24380 bytes of data.
GET / HTTP/1.1
Host: pascalnicolai.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Wed, 27 Aug 2014 09:14:27 GMT
Pragma: no-cache
Accept-Ranges: bytes
Server: Apache
Content-Length: 24380
Content-Type: text/html; charset=utf-8
Host-Header: 192fc2e7e50945beb8231a492d6a8024
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: a126a4f8656d06525497b90a6212094a=f677k6cfldchih41kjlch2i5s7; path=/
X-Cache: SGCACHE-MISS
X-Forwarded-For: 78.158.11.226
X-Host: pascalnicolai.com
X-Url: /
...24380 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: pascalnicolai.com
Referer: http://www.google.com/search?q=pascalnicolai.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: pascalnicolai.com
Referer: http://www.google.com/search?q=pascalnicolai.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pascalnicolai.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://pascalnicolai.com/
Result: pascalnicolai.com is not infected or malware details are not published yet.
Result: pascalnicolai.com is not infected or malware details are not published yet.