Scanned pages/files
| Request | Server response | Status |
http://auburnovation.com/ | 200 OK Content-Length: 2476 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Hakim Torres ...[617 bytes skipped]... eight="0" src="https://www.youtube.com/v/4p1CJwTNC9M&autoplay=1" frameborder="0" allowfullscreen></iframe> <font color=White face=courier size=3> <center><p><br><p><img width="200" height="266" src="http://fc03.deviantart.net/fs70/i/2012/005/7/9/palestine_flag_by_bnbadis-d4lf8q0.jpg"> <br> <p><big><big> Hacked By Hakim Torres </big></big><p> <b></b> <br><p><br> <font color=white face=courier size=3>~ <font color=green face=courier size=3>Nothing</font><font color=yellow face=courier size=3>Security</font><font color=blue face=courier size=3>Perfect</font> ~<p> <font color=grey face=courier size=3> Gr33tz To : <center><pre>[ <marquee align="cente ...[1551 bytes skipped]... | ||
http://auburnovation.com/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 07 Feb 2015 04:44:05 GMT Location: http://auburnovation.com/test404page.js/ Server: Apache/2.2.21 (Unix) mod_ssl/2.2.21 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Content-Length: 427 Content-Type: text/html; charset=iso-8859-1 | clean |
http://auburnovation.com/test404page.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 07 Feb 2015 04:44:05 GMT Location: http://auburnovation.com/index.php/?symphony-page=test404page.js/ Server: Apache/2.2.21 (Unix) mod_ssl/2.2.21 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Content-Length: 452 Content-Type: text/html; charset=iso-8859-1 | clean |
http://auburnovation.com/index.php/?symphony-page=test404page.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 07 Feb 2015 04:44:05 GMT Location: http://auburnovation.com/404.shtml/ Server: Apache/2.2.21 (Unix) mod_ssl/2.2.21 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Content-Length: 422 Content-Type: text/html; charset=iso-8859-1 | clean |
http://auburnovation.com/404.shtml/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 07 Feb 2015 04:44:06 GMT Location: http://auburnovation.com/index.php/?symphony-page=404.shtml/ Server: Apache/2.2.21 (Unix) mod_ssl/2.2.21 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Content-Length: 447 Content-Type: text/html; charset=iso-8859-1 | clean |
http://auburnovation.com/index.php/?symphony-page=404.shtml/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 07 Feb 2015 04:44:06 GMT Location: http://auburnovation.com/404.shtml/ Server: Apache/2.2.21 (Unix) mod_ssl/2.2.21 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Content-Length: 422 Content-Type: text/html; charset=iso-8859-1 | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: auburnovation.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 07 Feb 2015 04:44:04 GMT
Accept-Ranges: bytes
ETag: "f3a0f6a-9ac-5043a5a5ef70b"
Server: Apache/2.2.21 (Unix) mod_ssl/2.2.21 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Length: 2476
Content-Type: text/html
Last-Modified: Mon, 29 Sep 2014 20:45:54 GMT
...2476 bytes of data.
GET / HTTP/1.1
Host: auburnovation.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 07 Feb 2015 04:44:04 GMT
Accept-Ranges: bytes
ETag: "f3a0f6a-9ac-5043a5a5ef70b"
Server: Apache/2.2.21 (Unix) mod_ssl/2.2.21 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Length: 2476
Content-Type: text/html
Last-Modified: Mon, 29 Sep 2014 20:45:54 GMT
...2476 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: auburnovation.com
Referer: http://www.google.com/search?q=auburnovation.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: auburnovation.com
Referer: http://www.google.com/search?q=auburnovation.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=auburnovation.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://auburnovation.com/
Result: auburnovation.com is not infected or malware details are not published yet.
Result: auburnovation.com is not infected or malware details are not published yet.