Scanned pages/files
Request | Server response | Status |
http://yehoshuahass.com/ | HTTP/1.1 200 OK Date: Tue, 06 Oct 2015 06:32:23 GMT Accept-Ranges: bytes ETag: "f2b0bd85c8bad01:6fbbb" Server: Microsoft-IIS/6.0 Content-Length: 7539 Content-Location: http://yehoshuahass.com/Index.html Content-Type: text/html Last-Modified: Fri, 10 Jul 2015 04:25:59 GMT MicrosoftOfficeWebServer: 5.0_Pub Set-Cookie: cookiesession1=HN93VEIAFP22KWCTRSLGB4J27HLJBHGI;Path=/;HttpOnly X-Powered-By: PleskWin X-Powered-By: ASP.NET | clean |
http://yehoshuahass.com/index.html | 200 OK Content-Length: 7539 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: // Hacked By : Scriptkiddie ...[328 bytes skipped]... eewall.com/mmc_uploads/1780-nice-white-wallpaper.jpg); margin-left: 0px; margin-top: 0px; margin-right: 0px; margin-bottom: 0px; background-position:right top; background-repeat:no-repeat; background-size:110% } .style1 { font-family: Arial, Helvetica, sans-serif; font-size: 12px; } </style> <script type="text/javascript"> // Hacked By : Scriptkiddie TypingText = function(element, interval, cursor, finishedCallback) { if((typeof document.getElementById == "undefined") || (typeof element.innerHTML == "undefined")) { this.running = true; return; } this.element = element; this.finishedCallback = (finishedCallback ? finishedCallback : function() { return; }); this.interval = (typeof interval == "undefined" ? 100 : interval); this.origText = this.eleme ...[7785 bytes skipped]... | ||
http://yehoshuahass.com/test404page.js | 404 Not Found Content-Length: 1070 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: yehoshuahass.com
Result:
HTTP/1.1 200 OK
Date: Tue, 06 Oct 2015 06:32:23 GMT
Accept-Ranges: bytes
ETag: "f2b0bd85c8bad01:6fbbb"
Server: Microsoft-IIS/6.0
Content-Length: 7539
Content-Location: http://yehoshuahass.com/Index.html
Content-Type: text/html
Last-Modified: Fri, 10 Jul 2015 04:25:59 GMT
MicrosoftOfficeWebServer: 5.0_Pub
Set-Cookie: cookiesession1=HN93VEIAFP22KWCTRSLGB4J27HLJBHGI;Path=/;HttpOnly
X-Powered-By: PleskWin
X-Powered-By: ASP.NET
...7539 bytes of data.
GET / HTTP/1.1
Host: yehoshuahass.com
Result:
HTTP/1.1 200 OK
Date: Tue, 06 Oct 2015 06:32:23 GMT
Accept-Ranges: bytes
ETag: "f2b0bd85c8bad01:6fbbb"
Server: Microsoft-IIS/6.0
Content-Length: 7539
Content-Location: http://yehoshuahass.com/Index.html
Content-Type: text/html
Last-Modified: Fri, 10 Jul 2015 04:25:59 GMT
MicrosoftOfficeWebServer: 5.0_Pub
Set-Cookie: cookiesession1=HN93VEIAFP22KWCTRSLGB4J27HLJBHGI;Path=/;HttpOnly
X-Powered-By: PleskWin
X-Powered-By: ASP.NET
...7539 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: yehoshuahass.com
Referer: http://www.google.com/search?q=yehoshuahass.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: yehoshuahass.com
Referer: http://www.google.com/search?q=yehoshuahass.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=yehoshuahass.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://yehoshuahass.com/
Result: yehoshuahass.com is not infected or malware details are not published yet.
Result: yehoshuahass.com is not infected or malware details are not published yet.