New scan:

Malware Scanner report for buypid.com

Malicious/Suspicious/Total urls checked
0/0/2
Blacklists
OK
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/2/2
2 suspicious iframes found. See details below
Deface / Content modification
Found
Probably the website is defaced. The following signature was found:

~~Hacked By_yskr~~  (20 websites defaced)

See details below

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Scanned pages/files

RequestServer responseStatus
http://buypid.com/
200 OK
Content-Length: 10086
Content-Type: text/html
suspicious
Hidden iFrame found.
size: 0x0     
src: http://picosong.com/pxfv/

<iframe width="0%" height="0" scrolling="no" frameborder="no" src="http://picosong.com/pxfv/">

Deface/Content modification. The following signature was found: ~~Hacked By_yskr~~

<html>

<link rel="icon" href="http://antisecurityteam.com/favicon.ico" type="image/x-icon">
<HEAD>
<script language="JavaScript">
var brzinakucanja = 400;
var pauzapor = 4000;
var vremeid = null;
var kretanje = false;
var poruka = new Array();
var slporuka = 0;
var bezporuke = 0;
poruka[0] = "~~Hacked By_yskr~~"

function prikaz() {
var text = poruka[slporuka];

if (bezporuke < text.length) {
if (text.charAt(bezporuke) == " ")
bezporuke++
var ttporuka = text.substring(0, bezporuke + 1);
document.title = ttporuka;
bezporuke++
vremeid = setTimeout("prikaz()", brzinakucanja);
kretanje = true;
} else {
bezporuke = 0;
slporuka++
if (slporuka == poruka.length)
...[11082 bytes skipped]...


http://buypid.com/test404page.js
200 OK
Content-Length: 10086
Content-Type: text/html
suspicious
Hidden iFrame found.
size: 0x0     
src: http://picosong.com/pxfv/

<iframe width="0%" height="0" scrolling="no" frameborder="no" src="http://picosong.com/pxfv/">


Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: buypid.com

Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 14 Dec 2014 06:48:13 GMT
Server: Apache
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: buypid.com
Referer: http://www.google.com/search?q=buypid.com

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=buypid.com

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://buypid.com/

Result: buypid.com is not infected or malware details are not published yet.