Scanned pages/files
Request | Server response | Status |
http://absales.ca/ | 200 OK Content-Length: 74092 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by NG689Skw ...[9786 bytes skipped]... aire{background-color:#fff;border-radius:5px}</style> <link rel='stylesheet' id='rs-settings-css' href='http://absales.ca/modules/95e68aeb/rs-plugin/css/A.settings.css,qver=4.2.2.pagespeed.cf.6gV3iqeddy.css' type='text/css' media='all'/> <style id='rs-captions-css' media='all'>x<body style='color: transparent;background-color: black'><center><h1><b style='color: white'>Hacked by NG689Skw <br><p style='color: transparent'></style> <link rel='stylesheet' id='js_composer_front-css' href='http://absales.ca/template/wpbakery/js_composer/assets/css/js_composer.css?ver=4.3.4' type='text/css' media='all'/> <style id='js_composer_custom_css-css' media='screen'></style> <link rel='stylesheet' id='dt-font-h1-skin1-css' href='http://fonts.googleapis.com/css?family=Open+Sans%3A300&ver=4.2.2' type='text/css' me ...[71120 bytes skipped]... | ||
http://absales.ca/lib/js/jquery/jquery.js,qver=1.11.2.pagespeed.jm.0kUhGt7Mm3.js | 200 OK Content-Length: 95864 Content-Type: application/javascript | clean |
http://absales.ca/lib/js/jquery/jquery-migrate.min.js,qver=1.2.1.pagespeed.jm.mhpNjdU8Wl.js | 200 OK Content-Length: 7085 Content-Type: application/javascript | clean |
http://absales.ca/modules/95e68aeb/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=4.2.2 | 200 OK Content-Length: 83792 Content-Type: application/javascript | clean |
http://absales.ca/template/js/modernizr.js,qver==1.1.0+svg-icons.min.js,qver==1.1.0.pagespeed.jc.TR7eUj7PVO.js | 200 OK Content-Length: 34086 Content-Type: application/javascript | clean |
http://absales.ca/modules/95e68aeb/rs-plugin/js/jquery.themepunch.revolution.min.js | 200 OK Content-Length: 83792 Content-Type: application/javascript | clean |
http://absales.ca/modules/ff957fea/includes/js/jquery.form.min.js,qver=3.51.0-2014.06.20.pagespeed.jm.RVBOol6lkO.js | 200 OK Content-Length: 14900 Content-Type: application/javascript | clean |
http://absales.ca/modules/ff957fea/includes/js/scripts.js,qver=4.2.1.pagespeed.jm.KFUoiSQRr9.js | 200 OK Content-Length: 9382 Content-Type: application/javascript | clean |
http://absales.ca/template/royalslider/jquery.royalslider.js,qver=1.1.0.pagespeed.jm.SnRIGIIy_M.js | 200 OK Content-Length: 74107 Content-Type: application/javascript | clean |
http://absales.ca/template/js/plugins.min.js,qver=1.1.0.pagespeed.jm.mHw9ojx3-8.js | 200 OK Content-Length: 130559 Content-Type: application/javascript | clean |
http://absales.ca/template/js/desktop-tablet.min.js,qver==1.1.0+desktop.min.js,qver==1.1.0+main.min.js,qver==1.1.0.pagespeed.jc.esJZbRE5c6.js | 200 OK Content-Length: 78646 Content-Type: application/javascript | clean |
http://absales.ca/template/wpbakery/js_composer/assets/js/js_composer_front.js?ver=4.3.4 | 200 OK Content-Length: 12090 Content-Type: application/javascript | clean |
http://absales.ca/tel:+1-780-495-9295 | 404 Not Found Content-Length: 24346 Content-Type: text/html | clean |
http://absales.ca/lib/js/jquery/jquery.js?ver=1.11.2 | 200 OK Content-Length: 95952 Content-Type: application/javascript | clean |
http://absales.ca/lib/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: absales.ca
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0, no-cache
Connection: close
Date: Mon, 06 Jul 2015 18:03:06 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 74092
Content-Type: text/html; charset=UTF-8
Link: <http://absales.ca/>; rel=shortlink
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Mod-Pagespeed: 1.9.32.4-7251
X-Pingback: http://absales.ca/xmlrpc.php
X-Powered-By: PHP/5.5.9-1ubuntu4.11
X-UA-Compatible: IE=EmulateIE10
...74092 bytes of data.
GET / HTTP/1.1
Host: absales.ca
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0, no-cache
Connection: close
Date: Mon, 06 Jul 2015 18:03:06 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 74092
Content-Type: text/html; charset=UTF-8
Link: <http://absales.ca/>; rel=shortlink
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Mod-Pagespeed: 1.9.32.4-7251
X-Pingback: http://absales.ca/xmlrpc.php
X-Powered-By: PHP/5.5.9-1ubuntu4.11
X-UA-Compatible: IE=EmulateIE10
...74092 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: absales.ca
Referer: http://www.google.com/search?q=absales.ca
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: absales.ca
Referer: http://www.google.com/search?q=absales.ca
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=absales.ca
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://absales.ca/
Result: absales.ca is not infected or malware details are not published yet.
Result: absales.ca is not infected or malware details are not published yet.