Scanned pages/files
Request | Server response | Status |
http://wimb.org/ | 200 OK Content-Length: 7672 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: This Site Has Been Hacked By Docteur Hm ...[359 bytes skipped]... -inspector-hide-shortcut__, .__web-inspector-hide-shortcut__ * { visibility: hidden !important; } .__web-inspector-hidebefore-shortcut__::before { visibility: hidden !important; } .__web-inspector-hideafter-shortcut__::after { visibility: hidden !important; }</style> <title>_____e ___a_e_</title> </head><body><br> <meta name="description" content="This Site Has Been Hacked By Docteur Hm"> <meta name="keywords" content="This Site Has Been Hacked by Docteur Hm, Hacked by Docteur Hm, Defaced by Docteur Hm, Docteur Hm Was Here"> <meta name="robot" content="index,follow"> <meta name="copyright" content="Copyright ? 2013 Docteur Hm. All Rights Reserved."> <meta name="author" content="Docteur Hm"> <meta name="language" content="English"> <meta name="revisit-after" content="1"> ...[8040 bytes skipped]... | ||
http://wimb.org/test404page.js | 404 Not Found Content-Length: 5194 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: wimb.org
Result:
HTTP/1.1 200 OK
Date: Sun, 06 Dec 2015 09:35:28 GMT
Server: Microsoft-IIS/7.5
Content-Length: 7672
Content-Type: text/html
X-Powered-By: PHP/5.3.29
X-Powered-By: ASP.NET
...7672 bytes of data.
GET / HTTP/1.1
Host: wimb.org
Result:
HTTP/1.1 200 OK
Date: Sun, 06 Dec 2015 09:35:28 GMT
Server: Microsoft-IIS/7.5
Content-Length: 7672
Content-Type: text/html
X-Powered-By: PHP/5.3.29
X-Powered-By: ASP.NET
...7672 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: wimb.org
Referer: http://www.google.com/search?q=wimb.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: wimb.org
Referer: http://www.google.com/search?q=wimb.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=wimb.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://wimb.org/
Result: wimb.org is not infected or malware details are not published yet.
Result: wimb.org is not infected or malware details are not published yet.