Scanned pages/files
| Request | Server response | Status |
http://waytogo.no/ | HTTP/1.1 200 OK Date: Sun, 29 Nov 2015 14:11:49 GMT Accept-Ranges: bytes ETag: "628ec2928c25d11:2730" Server: Microsoft-IIS/6.0 Content-Length: 18015 Content-Location: http://waytogo.no/index.htm Content-Type: text/html Last-Modified: Mon, 23 Nov 2015 01:16:25 GMT | clean |
http://waytogo.no/index.htm | 200 OK Content-Length: 18015 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Bl4ck punisher <title> Hacked By Bl4ck punisher </title>
<meta name="description" content="Hacked By Bl4ck punisher"> <meta name="keywords" content="Hacked By Bl4ck punisher"> <link rel='stylesheet' id='validate-engine-css-css' href='http://www.esbrainoise.be/wp-content/plugins/wysija-newsletters/css/validationEngine.jquery.css' type='text/css' media='all' /> <link rel='stylesheet' id='nextgen_gallery_related_images-css' href ...[19537 bytes skipped]... | ||
https://engowe.com/ad.php?u=0faf50f19233d495bdda2c5de87f43f3&c=gpupdater&p=1 | 200 OK Content-Length: 10789 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-includes/js/jquery/jquery.js | 200 OK Content-Length: 95952 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-includes/js/jquery/jquery-migrate.min.js | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ajax.js | 404 Not Found Content-Length: 22739 Content-Type: text/html | clean |
http://www.esbrainoise.be/wp-includes/js/jquery/jquery.js?ver=166c523109822a1ef497f454aaa84eea | 200 OK Content-Length: 95952 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-includes/js/jquery/jquery-migrate.min.js?ver=166c523109822a1ef497f454aaa84eea | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=166c523109822a1ef497f454aaa84eea-2014.06.20 | 200 OK Content-Length: 15248 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=166c523109822a1ef497f454aaa84eea | 200 OK Content-Length: 11200 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/google-calendar-events/js/jquery.qtip.min.js?ver=166c523109822a1ef497f454aaa84eea | 200 OK Content-Length: 35489 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/google-calendar-events/js/gce-script.js?ver=166c523109822a1ef497f454aaa84eea | 200 OK Content-Length: 4374 Content-Type: application/javascript | clean |
http://s0.wp.com/wp-content/js/devicepx-jetpack.js?ver=166c523109822a1ef497f454aaa84eea | 200 OK Content-Length: 10372 Content-Type: application/x-javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/easy-fancybox/fancybox/jquery.fancybox-1.3.7.min.js?ver=166c523109822a1ef497f454aaa84eea | 200 OK Content-Length: 15701 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/easy-fancybox/jquery.easing.pack.js?ver=166c523109822a1ef497f454aaa84eea | 200 OK Content-Length: 3649 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/easy-fancybox/jquery.mousewheel.min.js?ver=166c523109822a1ef497f454aaa84eea | 200 OK Content-Length: 2777 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: waytogo.no
Result:
HTTP/1.1 200 OK
Date: Sun, 29 Nov 2015 14:11:49 GMT
Accept-Ranges: bytes
ETag: "628ec2928c25d11:2730"
Server: Microsoft-IIS/6.0
Content-Length: 18015
Content-Location: http://waytogo.no/index.htm
Content-Type: text/html
Last-Modified: Mon, 23 Nov 2015 01:16:25 GMT
...18015 bytes of data.
GET / HTTP/1.1
Host: waytogo.no
Result:
HTTP/1.1 200 OK
Date: Sun, 29 Nov 2015 14:11:49 GMT
Accept-Ranges: bytes
ETag: "628ec2928c25d11:2730"
Server: Microsoft-IIS/6.0
Content-Length: 18015
Content-Location: http://waytogo.no/index.htm
Content-Type: text/html
Last-Modified: Mon, 23 Nov 2015 01:16:25 GMT
...18015 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: waytogo.no
Referer: http://www.google.com/search?q=waytogo.no
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: waytogo.no
Referer: http://www.google.com/search?q=waytogo.no
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=waytogo.no
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://waytogo.no/
Result: waytogo.no is not infected or malware details are not published yet.
Result: waytogo.no is not infected or malware details are not published yet.