Scanned pages/files
Request | Server response | Status |
http://rudolfdewit.com/ | 200 OK Content-Length: 4679 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by BlackHeart <!DOCTYPE html> <!--[if lt IE 7 ]><html class="ie ie6" lang="en"> <![endif]--> <!--[if IE 7 ]><html class="ie ie7" lang="en"> <![endif]--> <!--[if IE 8 ]><html class="ie ie8" lang="en"> <![endif]--> <!--[if (gte IE 9)|!(IE)]><!--> <html lang="en"> <!--<![endif]--> <head> <meta charset="utf-8"> <title> Hacked by BlackHeart </title> <meta http-equiv="Content-Type" content="text/html; charset=utf8" /> <meta name="Author" content="BlackHeart"/> <meta name="copyright" content="#TheBlackList"/> <meta name="description" content="A List of Geniuses"/> <meta name="keywords" content="BlackHeart, Hacked By BlackHeart, #TheBlackList"/> <meta name="robots" content="ARCHIVE"/> &l ...[5179 bytes skipped]... | ||
http://www.11-76.com/themes/sky/js/jquery-1.11.2.min.js | 200 OK Content-Length: 95931 Content-Type: application/javascript | clean |
http://www.11-76.com/themes/sky/js/jquery.nicescroll.3.5.4.js | 200 OK Content-Length: 115641 Content-Type: application/javascript | clean |
http://www.11-76.com/themes/sky/js/sky.js | 200 OK Content-Length: 7539 Content-Type: application/javascript | clean |
http://rudolfdewit.com/test404page.js | 500 Internal Server Error Content-Length: 754 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: rudolfdewit.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 20 Oct 2015 13:14:32 GMT
Accept-Ranges: bytes
Server: nginx/1.8.0
Content-Length: 4679
Content-Type: text/html; charset=UTF-8
Last-Modified: Fri, 10 Jul 2015 22:12:45 GMT
...4679 bytes of data.
GET / HTTP/1.1
Host: rudolfdewit.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 20 Oct 2015 13:14:32 GMT
Accept-Ranges: bytes
Server: nginx/1.8.0
Content-Length: 4679
Content-Type: text/html; charset=UTF-8
Last-Modified: Fri, 10 Jul 2015 22:12:45 GMT
...4679 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: rudolfdewit.com
Referer: http://www.google.com/search?q=rudolfdewit.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: rudolfdewit.com
Referer: http://www.google.com/search?q=rudolfdewit.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=rudolfdewit.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://rudolfdewit.com/
Result: rudolfdewit.com is not infected or malware details are not published yet.
Result: rudolfdewit.com is not infected or malware details are not published yet.