Scanned pages/files
Request | Server response | Status |
http://rivernorthkitchen.com/ | 200 OK Content-Length: 1922 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: hacked by Shooter <html><head><title>hacked by Shooter</title></head><body>
<meta name="publisher" content="Jimmy Haxor" /> <link href="http://s2.picofile.com/file/7193383117/mzrs06adn1l1m0nw0738111.gif" rel="SHORTCUT ICON"> <style> body { background-image: url('http://8pic.ir/images/za6hjmk7zmm3rectm6r1.jpg'); background-attachment: fixed; background-repeat: no-repeat; background-size: ...[1901 bytes skipped]... | ||
http://rivernorthkitchen.com/test404page.js | 404 Not Found Content-Length: 652 Content-Type: text/html | clean |
http://cdn.dsultra.com/js/registrar.js | 200 OK Content-Length: 1688 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: rivernorthkitchen.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Thu, 24 Dec 2015 08:18:11 GMT
Content-Length: 1922
Content-Type: text/html
Set-Cookie: ASPSESSIONIDSSBDTDBA=KKPJDIJBHGHEHANIHCBLDCNL; path=/
X-Powered-By: ASP.NET
...1922 bytes of data.
GET / HTTP/1.1
Host: rivernorthkitchen.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Thu, 24 Dec 2015 08:18:11 GMT
Content-Length: 1922
Content-Type: text/html
Set-Cookie: ASPSESSIONIDSSBDTDBA=KKPJDIJBHGHEHANIHCBLDCNL; path=/
X-Powered-By: ASP.NET
...1922 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: rivernorthkitchen.com
Referer: http://www.google.com/search?q=rivernorthkitchen.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: rivernorthkitchen.com
Referer: http://www.google.com/search?q=rivernorthkitchen.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=rivernorthkitchen.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://rivernorthkitchen.com/
Result: rivernorthkitchen.com is not infected or malware details are not published yet.
Result: rivernorthkitchen.com is not infected or malware details are not published yet.