Scanned pages/files
Request | Server response | Status |
http://thhi-avondschool.be/ | 200 OK Content-Length: 8993 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By 1337 h@x0r <title>Hacked By 1337 h@x0r</title> </head> <body> <link rel="shortcut icon" href="http://focsoft.blogspot.com/favicon.ico"> <div align="center"> <audio loop autoplay> <source src="https://c2lo.reverbnation.com/audio_player/download_song_direct/10850220/3b1e66b1b8c1147e9750b03552f0e71e" type="audio/mpeg"> </audio> <tr> <div class="miniblock"><font face="c ...[9916 bytes skipped]... | ||
http://thhi-avondschool.be/test404page.js | 404 Not Found Content-Length: 965 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: thhi-avondschool.be
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 24 May 2015 04:59:55 GMT
Pragma: no-cache
Server: Apache/2.0.54 (Fedora)
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=538d3b464985e5730b5cb8e6eee1f69c; path=/
X-Powered-By: PHP/5.3.28
GET / HTTP/1.1
Host: thhi-avondschool.be
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 24 May 2015 04:59:55 GMT
Pragma: no-cache
Server: Apache/2.0.54 (Fedora)
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=538d3b464985e5730b5cb8e6eee1f69c; path=/
X-Powered-By: PHP/5.3.28
Second query (visit from search engine):
GET / HTTP/1.1
Host: thhi-avondschool.be
Referer: http://www.google.com/search?q=thhi-avondschool.be
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: thhi-avondschool.be
Referer: http://www.google.com/search?q=thhi-avondschool.be
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=thhi-avondschool.be
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://thhi-avondschool.be/
Result: thhi-avondschool.be is not infected or malware details are not published yet.
Result: thhi-avondschool.be is not infected or malware details are not published yet.