Scanned pages/files
Request | Server response | Status |
http://techno-heart.com/ | 200 OK Content-Length: 162688 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY BLACK SPIDER <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html lang="en"><!-- "HACKED BY BLACK SPIDER" --><head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <title>HACKED BY BLACK SPIDER</title> <style type="text/css"> body{background:#000;margin:0;padding:0;color:yellowgreen;} .header{text-align:center;font-family:'Orbitron', sans-serif;margin:10px 0 0 0;width:100%;} .header h2,h5{margin:0;padding:0;} .clear{clear:both;} ...[172319 bytes skipped]... | ||
http://techno-heart.com/test404page.js | 404 Not Found Content-Length: 13 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: techno-heart.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 02 Dec 2015 06:26:30 GMT
Accept-Ranges: bytes
ETag: "5041300-27b80-51859abc46477"
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Length: 162688
Content-Type: text/html
Last-Modified: Fri, 12 Jun 2015 22:31:36 GMT
...162688 bytes of data.
GET / HTTP/1.1
Host: techno-heart.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 02 Dec 2015 06:26:30 GMT
Accept-Ranges: bytes
ETag: "5041300-27b80-51859abc46477"
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Length: 162688
Content-Type: text/html
Last-Modified: Fri, 12 Jun 2015 22:31:36 GMT
...162688 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: techno-heart.com
Referer: http://www.google.com/search?q=techno-heart.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: techno-heart.com
Referer: http://www.google.com/search?q=techno-heart.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=techno-heart.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://techno-heart.com/
Result: techno-heart.com is not infected or malware details are not published yet.
Result: techno-heart.com is not infected or malware details are not published yet.