Scanned pages/files
| Request | Server response | Status |
http://www.alavitravel.com/ | 200 OK Content-Length: 2180 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HaCked by 3NEEDAN HaCkEr ...[1244 bytes skipped]... ; background-repeat:no-repeat; background-position:center center; color:#ffffff; } </style> <span style="font-weight:bold; text-shadow:white 0px 0px 8px; color:black"> <div align="center"> <img src="http://up.dev-point.com/uploads1/29f59645b1641.png"height="350" width="600"> <center><font size="7" color="white"><font face="Iceland"> HaCked by 3NEEDAN HaCkEr</font></center></font size="7" color="white"> <br> <hr size=3 width=38% color="#FFFFFF" align=center> </div> <center> <b> <pre> <font face="Iceland"><font size="5" color="white"> Security = OFF | | | Patch Your System !! </pre> </center> <br> <span id=2 style="font-weight:bold; text-shadow:white 0px 0px 8px; color:black"> <cen ...[651 bytes skipped]... | ||
http://www.alavitravel.com/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Thu, 01 Oct 2015 19:52:29 GMT Pragma: no-cache Location: http://alavitravel.com/test404page.js Server: Apache mod_fcgid/2.3.7 mod_auth_pgsql/2.0.3 Vary: User-Agent,Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: PHPSESSID=1qoeddjb3fqoohve3kpf7bog46; path=/ X-Pingback: http://alavitravel.com/xmlrpc.php X-Powered-By: PHP/5.3.29 | clean |
http://alavitravel.com/test404page.js | 404 Not Found Content-Length: 21146 Content-Type: text/html | clean |
https://ajax.googleapis.com/ajax/libs/jquery/1.7.0/jquery.min.js?ver=1.7.0 | 200 OK Content-Length: 94020 Content-Type: text/javascript | clean |
http://alavitravel.com/wp-content/themes/slash/js/cufon-yui.js?ver=4.2.5 | 200 OK Content-Length: 18258 Content-Type: application/javascript | clean |
http://alavitravel.com/wp-content/themes/slash/fonts/DejaVu_Serif_Condensed_700.font.js?ver=4.2.5 | 200 OK Content-Length: 302303 Content-Type: application/javascript | clean |
http://alavitravel.com/wp-content/themes/slash/js/cufon-colors.js?ver=4.2.5 | 200 OK Content-Length: 2208 Content-Type: application/javascript | clean |
http://alavitravel.com/wp-content/themes/slash/js/jquery.easing.1.3.js?ver=1.3 | 200 OK Content-Length: 8345 Content-Type: application/javascript | clean |
http://alavitravel.com/wp-content/themes/slash/js/plugins/highslide/highslide-full.js?ver=4.2.5 | 200 OK Content-Length: 96134 Content-Type: application/javascript | clean |
http://alavitravel.com/wp-content/themes/slash/js/plugins/highslide/highslide.config.js?ver=4.2.5 | 200 OK Content-Length: 5124 Content-Type: application/javascript | clean |
http://alavitravel.com/wp-content/themes/slash/js/plugins/placeholder/jquery.placeholder.js?ver=4.2.5 | 200 OK Content-Length: 2426 Content-Type: application/javascript | clean |
http://alavitravel.com/wp-content/themes/slash/js/plugins/validator/jquery.validationEngine.js?ver=4.2.5 | 200 OK Content-Length: 22456 Content-Type: application/javascript | clean |
http://alavitravel.com/wp-content/themes/slash/js/plugins/validator/z.trans.en.js?ver=4.2.5 | 200 OK Content-Length: 2063 Content-Type: application/javascript | clean |
http://alavitravel.com/wp-content/themes/slash/js/jquery.wipetouch.js?ver=4.2.5 | 200 OK Content-Length: 11665 Content-Type: application/javascript | clean |
http://alavitravel.com/wp-content/themes/slash/js/jquery.isotope.min.js?ver=4.2.5 | 200 OK Content-Length: 15085 Content-Type: application/javascript | clean |
http://alavitravel.com/wp-content/themes/slash/js/scripts.js?ver=4.2.5 | 200 OK Content-Length: 53719 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: alavitravel.com
Result:
GET / HTTP/1.1
Host: alavitravel.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: alavitravel.com
Referer: http://www.google.com/search?q=alavitravel.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: alavitravel.com
Referer: http://www.google.com/search?q=alavitravel.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=alavitravel.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://alavitravel.com/
Result: alavitravel.com is not infected or malware details are not published yet.
Result: alavitravel.com is not infected or malware details are not published yet.