Scanned pages/files
Request | Server response | Status |
http://addviews.com/ | 200 OK Content-Length: 165160 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Google accounts hacked by using Google Docs/Drive ...[188249 bytes skipped]... <h3 class="module-title">Recent Forum Posts</h3> <div class="module-body"> <div class=" klatest "> <ul class="klatest-items"> <li class="klatest-item"> <ul class="klatest-itemdetails"> <li class="klatest-subject"> <a href="/forum/web/8-google-accounts-hacked-by-using-google-docs-drive#12" rel="follow">Google accounts hacked by using Google Docs/Drive</a></li> </ul> </li> <li class="klatest-item"> <ul class="klatest-itemdetails"> <li class="klatest-subject"> <a href="/forum/marmalade/7-marmalade-partner-webinar-series#11" rel="follow">Marmalade Partner Webinar Series</a></li> </ul> </li> </ul> <p class="klatest-more"><a href="/forum/topics/posts/mode-recent" rel="nofollow"> ...[16521 bytes skipped]... | ||
http://addviews.com/media/jui/js/jquery.min.js | 200 OK Content-Length: 93107 Content-Type: application/javascript | clean |
http://addviews.com/media/jui/js/jquery-noconflict.js | 200 OK Content-Length: 21 Content-Type: application/javascript | clean |
http://addviews.com/media/jui/js/jquery-migrate.min.js | 200 OK Content-Length: 7199 Content-Type: application/javascript | clean |
http://addviews.com/media/system/js/tabs-state.js | 200 OK Content-Length: 1829 Content-Type: application/javascript | clean |
http://addviews.com/plugins/content/jdownloads/jdownloads/lightbox/lightbox.js | 200 OK Content-Length: 12325 Content-Type: application/javascript | clean |
http://addviews.com/media/jui/js/bootstrap.min.js | 200 OK Content-Length: 29156 Content-Type: application/javascript | clean |
http://addviews.com/media/tabs/js/script.min.js | 200 OK Content-Length: 1040 Content-Type: application/javascript | clean |
http://addviews.com/media/system/js/mootools-core.js | 200 OK Content-Length: 83893 Content-Type: application/javascript | clean |
http://addviews.com/media/system/js/core.js | 200 OK Content-Length: 3821 Content-Type: application/javascript | clean |
http://addviews.com/media/system/js/mootools-more.js | 200 OK Content-Length: 236825 Content-Type: application/javascript | clean |
http://addviews.com/templates/mytarget/js/scroll.js | 200 OK Content-Length: 3787 Content-Type: application/javascript | clean |
http://addviews.com/templates/mytarget/js/jquery.flexslider-min.js | 200 OK Content-Length: 16959 Content-Type: application/javascript | clean |
http://addviews.com//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | 404 Category not found Content-Length: 1334 Content-Type: text/html | clean |
http://addviews.com/test404page.js | 404 Article not found Content-Length: 1333 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: addviews.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 06 Apr 2014 16:38:05 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: b1cdc796c1b5f00466e3a89856e1a841=fa7ff1c8e9c437a68cc88c5cf56eb432; path=/; HttpOnly
GET / HTTP/1.1
Host: addviews.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 06 Apr 2014 16:38:05 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: b1cdc796c1b5f00466e3a89856e1a841=fa7ff1c8e9c437a68cc88c5cf56eb432; path=/; HttpOnly
Second query (visit from search engine):
GET / HTTP/1.1
Host: addviews.com
Referer: http://www.google.com/search?q=addviews.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: addviews.com
Referer: http://www.google.com/search?q=addviews.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=addviews.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://addviews.com/
Result: addviews.com is not infected or malware details are not published yet.
Result: addviews.com is not infected or malware details are not published yet.