Scanned pages/files
Request | Server response | Status |
http://www.airdriehousebuyers.ca/ | 200 OK Content-Length: 357 Content-Type: text/html | clean |
http://www.airdriehousebuyers.ca/Apple/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 27 Mar 2015 06:36:19 GMT Location: index2.html Server: nginx/1.6.2 Content-Length: 0 Content-Type: text/html | clean |
http://www.airdriehousebuyers.ca/Apple/index2.html | 200 OK Content-Length: 28293 Content-Type: text/html | clean |
http://www.airdriehousebuyers.ca/Apple/js/jquery-1.8.2.min.js | 200 OK Content-Length: 93436 Content-Type: application/javascript | clean |
http://www.airdriehousebuyers.ca/Apple/js/languages/jquery.validationEngine-en.js | 200 OK Content-Length: 7855 Content-Type: application/javascript | clean |
http://www.airdriehousebuyers.ca/Apple/js/jquery.validationEngine.js | 200 OK Content-Length: 72617 Content-Type: application/javascript | clean |
http://www.airdriehousebuyers.ca/test404page.js | 404 Not Found Content-Length: 12839 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.9.1.js | 200 OK Content-Length: 268381 Content-Type: application/x-javascript | clean |
http://suspended.hostgator.com/js/simple-expand.min.js | 200 OK Content-Length: 2782 Content-Type: text/javascript | clean |
http://www.airdriehousebuyers.ca/a.zip | 200 OK Content-Length: 240738 Content-Type: application/zip | clean |
http://www.airdriehousebuyers.ca/shippuden.php | 200 OK Content-Length: 20065 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: ..:: HACKED BY #Delfow::.. ...[2428 bytes skipped]... ;/style> <div id="music"><object type="application/x-shockwave-flash" data="https://www.youtube.com/v/4q1t4J4c0Dw%26feature=youtu.be%26feature=related%26autoplay=1" height="0" width="0"> <param name="movie" value=""> <param name="bgcolor" value="#000000"><param name="FlashVars" value=" &autoplay=1"></object> </div> <meta name="keywords" content="..:: HACKED BY #Delfow::.."> <meta name="description" content="..:: Hacked By #Delfow ::.."> <link rel="SHORTCUT ICON" href="http://im75.gulfup.com/mIAZB.png"> <style> .shakeimage{ position:relative } </style><title>..:: Hacked By |Dz| Kiko_Milano::..</title> </head><body onload="scrlsts()" style="text-align: center; background-color: rgb(0, 0, 0);"> <div align="center"> <tabl ...[18766 bytes skipped]... |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: airdriehousebuyers.ca
Result:
GET / HTTP/1.1
Host: airdriehousebuyers.ca
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: airdriehousebuyers.ca
Referer: http://www.google.com/search?q=airdriehousebuyers.ca
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: airdriehousebuyers.ca
Referer: http://www.google.com/search?q=airdriehousebuyers.ca
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=airdriehousebuyers.ca
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://airdriehousebuyers.ca/
Result: airdriehousebuyers.ca is not infected or malware details are not published yet.
Result: airdriehousebuyers.ca is not infected or malware details are not published yet.