Scanned pages/files
Request | Server response | Status |
http://publicspeakingpower.com/ | 200 OK Content-Length: 115553 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: +ADw-/title+AD4-HACKED BY AMAR+AF4-SHG +ACY JoKeR+AF4-SHG <!DOCTYPE html> <html dir="ltr" lang="en-US"> <head> <meta charset="UTF-7" /> <meta name="viewport" content="width=device-width, initial-scale=1" /> <link rel="stylesheet" type="text/css" href="http://publicspeakingpower.com/wp-content/thesis/skins/classic-r/css.css?1680ba" media="screen, projection" /> <title>+ADw-/title+AD4-HACKED BY AMAR+AF4-SHG +ACY JoKeR+AF4-SHG +ACM-SHKUPIHACKERSGROUP ./Albanian Attackers+ADw-DIV style+AD0AIg-DISPLAY: none+ACIAPgA8-xmp+AD4- — How To Become A Powerful Public Speaker</title> <meta name="description" content="How To Become A Powerful Public Speaker" /> <meta name="robots" content="noodp, noydir" /> <link rel="canonical" href="http://publicspeakingpower.com" /> <link rel="alt ...[131133 bytes skipped]... | ||
http://publicspeakingpower.com/wp-includes/js/jquery/jquery.js?1680ba | 200 OK Content-Length: 95977 Content-Type: application/x-javascript | clean |
http://publicspeakingpower.com/wp-includes/js/jquery/jquery-migrate.min.js?1680ba | 200 OK Content-Length: 7200 Content-Type: application/x-javascript | clean |
http://publicspeakingpower.com//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?1680ba/ | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=604800 Connection: close Date: Sat, 05 Dec 2015 16:50:03 GMT Pragma: no-cache Location: http://publicspeakingpower.com/pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?1680ba/ Server: nginx Vary: User-Agent,Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-7 Expires: Sat, 12 Dec 2015 16:50:03 GMT Ngpass_ngstatic: 1 X-Pingback: http://publicspeakingpower.com/xmlrpc.php X-Powered-By: W3 Total Cache/0.9.4.1 | clean |
http://publicspeakingpower.com/pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?1680ba/ | 404 Not Found Content-Length: 117083 Content-Type: text/html | clean |
http://publicspeakingpower.com/wp-includes/js/comment-reply.min.js?1680ba | 200 OK Content-Length: 757 Content-Type: application/x-javascript | clean |
http://publicspeakingpower.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?1680ba | 200 OK Content-Length: 15248 Content-Type: application/x-javascript | clean |
http://publicspeakingpower.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?1680ba | 200 OK Content-Length: 11585 Content-Type: application/x-javascript | clean |
http://publicspeakingpower.com/wp-content/plugins/powerpress/player.min.js?1680ba | 200 OK Content-Length: 5543 Content-Type: application/x-javascript | clean |
http://publicspeakingpower.com/free | 200 OK Content-Length: 15068 Content-Type: text/html | clean |
http://publicspeakingpower.com/static/lp942/public/js/leadpage.js?1680ba | 404 Not Found Content-Length: 117083 Content-Type: text/html | clean |
http://publicspeakingpower.com/archives/ | 200 OK Content-Length: 10478 Content-Type: text/html | clean |
http://publicspeakingpower.com/contact/ | 200 OK Content-Length: 12500 Content-Type: text/html | clean |
http://publicspeakingpower.com/wp-admin/ | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sat, 05 Dec 2015 16:50:15 GMT Pragma: no-cache Location: http://publicspeakingpower.com/wp-login.php?redirect_to=http%3A%2F%2Fpublicspeakingpower.com%2Fwp-admin%2F&reauth=1 Server: nginx Vary: User-Agent,Accept-Encoding Content-Length: 0 Content-Type: text/html Expires: Wed, 11 Jan 1984 05:00:00 GMT Ngpass_ngall: 1 | clean |
http://publicspeakingpower.com/wp-login.php?redirect_to=http%3a%2f%2fpublicspeakingpower.com%2fwp-admin%2f&reauth=1 | 404 Not Found Content-Length: 8034 Content-Type: text/html | clean |
http://publicspeakingpower.com/test404page.js | 404 Not Found Content-Length: 8006 Content-Type: text/html | clean |
http://publicspeakingpower.com/static/lp942/public/js/itpc://publicspeakingpower.com/feed/podcast/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sat, 05 Dec 2015 16:50:19 GMT Pragma: no-cache Location: http://publicspeakingpower.com/static/lp942/public/js/itpc:/publicspeakingpower.com/feed/podcast/ Server: nginx Vary: User-Agent,Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-7 Expires: Wed, 11 Jan 1984 05:00:00 GMT Ngpass_ngall: 1 X-Pingback: http://publicspeakingpower.com/xmlrpc.php X-Powered-By: W3 Total Cache/0.9.4.1 | clean |
http://publicspeakingpower.com/static/lp942/public/js/itpc:/publicspeakingpower.com/feed/podcast/ | 404 Not Found Content-Length: 117052 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: publicspeakingpower.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=3246, public, public
Connection: close
Date: Sat, 05 Dec 2015 16:49:59 GMT
Pragma: public
Accept-Ranges: bytes
ETag: "1c361-52629550e0ea9"
Server: nginx
Vary: Accept-Encoding
Vary: Accept-Encoding,Cookie
Content-Length: 115553
Content-Type: text/html; charset=UTF-8
Expires: Sat, 05 Dec 2015 17:44:06 GMT
Last-Modified: Sat, 05 Dec 2015 16:44:06 GMT
Ngpass_ngall: 1
X-Powered-By: W3 Total Cache/0.9.4.1
...115553 bytes of data.
GET / HTTP/1.1
Host: publicspeakingpower.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=3246, public, public
Connection: close
Date: Sat, 05 Dec 2015 16:49:59 GMT
Pragma: public
Accept-Ranges: bytes
ETag: "1c361-52629550e0ea9"
Server: nginx
Vary: Accept-Encoding
Vary: Accept-Encoding,Cookie
Content-Length: 115553
Content-Type: text/html; charset=UTF-8
Expires: Sat, 05 Dec 2015 17:44:06 GMT
Last-Modified: Sat, 05 Dec 2015 16:44:06 GMT
Ngpass_ngall: 1
X-Powered-By: W3 Total Cache/0.9.4.1
...115553 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: publicspeakingpower.com
Referer: http://www.google.com/search?q=publicspeakingpower.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: publicspeakingpower.com
Referer: http://www.google.com/search?q=publicspeakingpower.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=publicspeakingpower.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://publicspeakingpower.com/
Result: publicspeakingpower.com is not infected or malware details are not published yet.
Result: publicspeakingpower.com is not infected or malware details are not published yet.