Scanned pages/files
Request | Server response | Status |
http://bayareaconsumers.com/ | 200 OK Content-Length: 362 Content-Type: text/html | clean |
http://bayareaconsumers.com/@-mkd.html | 200 OK Content-Length: 5979 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: SYSTEM HACKED BY HASSAN MRMOUNINE MKD GROUP ...[4339 bytes skipped]... } } //]]> </script> </head> <body class="maintenance-body" onload="display()"> <div id="maintenance-box"> <img src="http://s3.amazonaws.com/askfm-static/maintenance/loader-dark.gif" class="maintenance-loader" alt=""> <div class="maintenance-row"><span class="maintenance-headline">SYSTEM HACKED BY HASSAN MRMOUNINE MKD GROUP</span></div> <div class="maintenance-timer">Retry in ------> <span id="seconds">52</span> SECONDS</div> </div> <div id="socicons"> <a href="https://twitter.com/xxx" class="socicon_Twitter" target="_blank"></a> <a href="https://www.facebook.com/xxxx" class="socicon_Facebook" target="_blank"></a> </div> ...[1933 bytes skipped]... | ||
http://bayareaconsumers.com/test404page.js | 404 Not Found Content-Length: 401 Content-Type: text/html | clean |
http://bayareaconsumers.com/cgi-bin/ | 403 Forbidden Content-Length: 399 Content-Type: text/html | clean |
http://bayareaconsumers.com/favicon.ico | 200 OK Content-Length: 43 Content-Type: image/vnd.microsoft.icon | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bayareaconsumers.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 29 Nov 2015 08:35:29 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 362
Content-Type: text/html;charset=ISO-8859-1
...362 bytes of data.
GET / HTTP/1.1
Host: bayareaconsumers.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 29 Nov 2015 08:35:29 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 362
Content-Type: text/html;charset=ISO-8859-1
...362 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: bayareaconsumers.com
Referer: http://www.google.com/search?q=bayareaconsumers.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bayareaconsumers.com
Referer: http://www.google.com/search?q=bayareaconsumers.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bayareaconsumers.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bayareaconsumers.com/
Result: bayareaconsumers.com is not infected or malware details are not published yet.
Result: bayareaconsumers.com is not infected or malware details are not published yet.