Scanned pages/files
Request | Server response | Status |
http://rivercitychurchny.com/ | 200 OK Content-Length: 10364 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by @rooterror ...[9294 bytes skipped]... e> td{align: center; font-family: Bradley Hand ITC; font-size: 18pt; color: black} a{align: center; font-family: Bradley Hand ITC; font-size: 12pt; color: red} </style> <center> <img src="http://i.imgur.com/qPeGt.png" width="250" height="200"> <div id="example1"> <p id="example2"> <font size="7" face="Orbitron" color='#04B404'>Hacked by @rooterror</font> <br> <font size="7" face="Orbitron" color='#FFFFF'>BREAK SECURITY HACKERS</font> <br> <font size="4" face="Orbitron" color='#585858'><font color='red'>[</font> Mexican Defacer <font color='red'>]</font> <hr size=3 width= 25% color="#424242" align=center> <font size='7' face="Orbitron" color='red'>the network security is a myth</font> <br><br> ...[1522 bytes skipped]... | ||
http://rivercitychurchny.com/test404page.js | 404 Not Found Content-Length: 11812 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.9.1.js | 200 OK Content-Length: 268381 Content-Type: application/javascript | clean |
http://rivercitychurchny.com/cgi-sys/js/simple-expand.min.js | 200 OK Content-Length: 2782 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: rivercitychurchny.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 09 Jul 2015 05:54:09 GMT
Server: nginx/1.8.0
Content-Type: text/html
GET / HTTP/1.1
Host: rivercitychurchny.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 09 Jul 2015 05:54:09 GMT
Server: nginx/1.8.0
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: rivercitychurchny.com
Referer: http://www.google.com/search?q=rivercitychurchny.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: rivercitychurchny.com
Referer: http://www.google.com/search?q=rivercitychurchny.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=rivercitychurchny.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://rivercitychurchny.com/
Result: rivercitychurchny.com is not infected or malware details are not published yet.
Result: rivercitychurchny.com is not infected or malware details are not published yet.