Scanned pages/files
Request | Server response | Status |
http://coolcitydeals.com/ | 200 OK Content-Length: 6770 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: _Hacked By Spyc0der__ ...[124 bytes skipped]... apable" content="yes"> <meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no"> <meta charset="utf-8"> <!-- FAVICON --> <link rel="shortcut icon" href="http://bohemiainteractive.net/cat.png"> <!-- PAGE TITLE --> <title>/>_Hacked By Spyc0der__</title> <!-- GOOGLE FONTS --> <link href='http://fonts.googleapis.com/css?family=Lato:300,400,700|Raleway:300,400,500|Open+Sans:300,400,600,700,800' rel='stylesheet' type='text/css'> <!-- STYLESHEETS --> <link href="http://bohemiainteractive.net/assets/css/bootstrap.min.css" rel="stylesheet" type="text/css" /> <link href="http://bohemiaint ...[7236 bytes skipped]... | ||
http://bohemiainteractive.net/assets/js/jquery-1.11.1.min.js | 500 Internal Server Error Content-Length: 535 Content-Type: text/html | clean |
http://bohemiainteractive.net/test404page.js | 500 Internal Server Error Content-Length: 535 Content-Type: text/html | clean |
http://bohemiainteractive.net/assets/js/bootstrap.min.js | 500 Internal Server Error Content-Length: 535 Content-Type: text/html | clean |
http://bohemiainteractive.net/assets/js/jquery.cycle.min.js | 500 Internal Server Error Content-Length: 535 Content-Type: text/html | clean |
http://bohemiainteractive.net/assets/js/jquery.parallax.min.js | 500 Internal Server Error Content-Length: 535 Content-Type: text/html | clean |
http://bohemiainteractive.net/assets/js/jquery.backstretch.min.js | 500 Internal Server Error Content-Length: 535 Content-Type: text/html | clean |
http://bohemiainteractive.net/assets/js/scripts.js | 500 Internal Server Error Content-Length: 535 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: coolcitydeals.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 01 Jun 2015 15:12:06 GMT
Accept-Ranges: bytes
ETag: "801275-1a72-5101ade5f19d0"
Server: Apache/2.4.9 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Length: 6770
Content-Type: text/html
Last-Modified: Sat, 28 Feb 2015 00:14:29 GMT
...6770 bytes of data.
GET / HTTP/1.1
Host: coolcitydeals.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 01 Jun 2015 15:12:06 GMT
Accept-Ranges: bytes
ETag: "801275-1a72-5101ade5f19d0"
Server: Apache/2.4.9 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Length: 6770
Content-Type: text/html
Last-Modified: Sat, 28 Feb 2015 00:14:29 GMT
...6770 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: coolcitydeals.com
Referer: http://www.google.com/search?q=coolcitydeals.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: coolcitydeals.com
Referer: http://www.google.com/search?q=coolcitydeals.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=coolcitydeals.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://coolcitydeals.com/
Result: coolcitydeals.com is not infected or malware details are not published yet.
Result: coolcitydeals.com is not infected or malware details are not published yet.