Scanned pages/files
| Request | Server response | Status |
http://beximco-respiratory.com/administrator | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 16 Oct 2014 00:35:16 GMT Location: http://beximco-respiratory.com/administrator/ Server: nginx/1.6.2 Content-Length: 326 Content-Type: text/html; charset=iso-8859-1 | clean |
http://beximco-respiratory.com/administrator/ | 200 OK Content-Length: 1875 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HaCked by x.An0nPH <html> <head> <title>HaCked by x.An0nPH</title> <!-- Created by ~xAn0nPH --> <link href='http://fonts.googleapis.com/css?family=Iceland' rel='stylesheet' type='text/css'> <link rel="SHORTCUT ICON" href="http://3.bp.blogspot.com/-jxTNgfmUFh8/Uw0-_9jokwI/AAAAAAAAAcg/dg-jqdy6A9M/s1600/anonymousx.gif" type="image/x-icon"/> <style type="text/css">body, a:hover {cursor: url(http://cur.cursors-4u.net/cursors/cur-11/cur1054.cur), u ...[1759 bytes skipped]... | ||
http://beximco-respiratory.com/test404page.js | 404 Not Found Content-Length: 12839 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.9.1.js | 200 OK Content-Length: 268381 Content-Type: application/x-javascript | clean |
http://suspended.hostgator.com/js/simple-expand.min.js | 200 OK Content-Length: 2782 Content-Type: application/javascript | clean |
http://beximco-respiratory.com/ | 200 OK Content-Length: 36112 Content-Type: text/html | clean |
http://beximco-respiratory.com/templates/jab12/js/template.js.php | 200 OK Content-Length: 217051 Content-Type: application/x-javascript | clean |
http://beximco-respiratory.com/templates/jab12/js/modernizr.js | 200 OK Content-Length: 13725 Content-Type: application/javascript | clean |
http://beximco-respiratory.com/templates/jab12/js/bootstrap-tab.js | 200 OK Content-Length: 3496 Content-Type: application/javascript | clean |
http://beximco-respiratory.com/templates/jab12/js/jquery.cookie.js | 404 Not Found Content-Length: 12839 Content-Type: text/html | clean |
http://beximco-respiratory.com/templates/jab12/js/ | 200 OK Content-Length: 44 Content-Type: text/html | clean |
http://beximco-respiratory.com/modules/mod_je_parallax/js/modernizr.custom.28468.js | 200 OK Content-Length: 7521 Content-Type: application/javascript | clean |
http://beximco-respiratory.com/modules/mod_je_parallax/js/jquery.cslider.js | 200 OK Content-Length: 7160 Content-Type: application/javascript | clean |
http://beximco-respiratory.com/modules/mod_je_popuplogin/js/jquery.lightbox_me.js | 200 OK Content-Length: 10890 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: beximco-respiratory.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Thu, 16 Oct 2014 00:35:20 GMT
Pragma: no-cache
Server: nginx/1.6.2
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 032bbf7078cae1d7edeec046ef1f958a=75963154f47e44814d5cd582b6d553a1; path=/
GET / HTTP/1.1
Host: beximco-respiratory.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Thu, 16 Oct 2014 00:35:20 GMT
Pragma: no-cache
Server: nginx/1.6.2
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 032bbf7078cae1d7edeec046ef1f958a=75963154f47e44814d5cd582b6d553a1; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: beximco-respiratory.com
Referer: http://www.google.com/search?q=beximco-respiratory.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: beximco-respiratory.com
Referer: http://www.google.com/search?q=beximco-respiratory.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=beximco-respiratory.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://beximco-respiratory.com/
Result: beximco-respiratory.com is not infected or malware details are not published yet.
Result: beximco-respiratory.com is not infected or malware details are not published yet.