Scanned pages/files
Request | Server response | Status |
http://creamycash.com/ | 200 OK Content-Length: 944 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.giffoniacademy.it/counter.php?id=11544252"></script> | ||
http://creamycash.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Sun, 01 Jun 2014 08:23:07 GMT Location: http://www.nakedhosting.com/error/index.html Server: Apache Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.nakedhosting.com/error/index.html | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sun, 01 Jun 2014 08:23:08 GMT Pragma: no-cache Location: http://nakedhosting.com/error/index.html Server: Apache Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: PHPSESSID=58e7fb319926ec91b93adc8a471b27a6; path=/ Set-Cookie: sabai_user_device=pc; expires=Tue, 01-Jul-2014 08:23:08 GMT; path=/; httponly X-Pingback: http://nakedhosting.com/xmlrpc.php X-Powered-By: PHP/5.3.28 | clean |
http://nakedhosting.com/error/index.html | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sun, 01 Jun 2014 08:23:08 GMT Pragma: no-cache Location: http://nakedhosting.com Server: Apache Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: PHPSESSID=430240817a6350879f126af7d068ddaa; path=/ Set-Cookie: sabai_user_device=pc; expires=Tue, 01-Jul-2014 08:23:09 GMT; path=/; httponly X-Pingback: http://nakedhosting.com/xmlrpc.php X-Powered-By: PHP/5.3.28 | clean |
http://nakedhosting.com/ | 200 OK Content-Length: 81214 Content-Type: text/html | clean |
http://nakedhosting.com/wp-content/themes/nakedhosting/js/custom.js | 200 OK Content-Length: 312 Content-Type: application/javascript | clean |
http://creamycash.com/wp-content/themes/nakedhosting/js/eventTracking.js | HTTP/1.1 302 Found Connection: close Date: Sun, 01 Jun 2014 08:23:10 GMT Location: http://www.nakedhosting.com/error/index.html Server: Apache Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.nakedhosting.com/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sun, 01 Jun 2014 08:23:11 GMT Pragma: no-cache Location: http://nakedhosting.com/test404page.js Server: Apache Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: PHPSESSID=c99e6343f146bbaaf1105b3452a7ba80; path=/ Set-Cookie: sabai_user_device=pc; expires=Tue, 01-Jul-2014 08:23:11 GMT; path=/; httponly X-Pingback: http://nakedhosting.com/xmlrpc.php X-Powered-By: PHP/5.3.28 | clean |
http://nakedhosting.com/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sun, 01 Jun 2014 08:23:11 GMT Pragma: no-cache Location: http://nakedhosting.com Server: Apache Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: PHPSESSID=3a3d9ca5d8d5da18fd0267d396d389a6; path=/ Set-Cookie: sabai_user_device=pc; expires=Tue, 01-Jul-2014 08:23:12 GMT; path=/; httponly X-Pingback: http://nakedhosting.com/xmlrpc.php X-Powered-By: PHP/5.3.28 | clean |
http://nakedhosting.com/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 96402 Content-Type: application/javascript | clean |
http://nakedhosting.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://nakedhosting.com/wp-content/themes/enfold/js/avia-compat.js?ver=1 | 200 OK Content-Length: 748 Content-Type: application/javascript | clean |
http://nakedhosting.com/wp-content/themes/enfold/config-layerslider/LayerSlider/js/layerslider.kreaturamedia.jquery.js?ver=4.6.5 | 200 OK Content-Length: 48722 Content-Type: application/javascript | clean |
http://nakedhosting.com/wp-content/themes/enfold/config-layerslider/LayerSlider/js/jquery-easing-1.3.js?ver=1.3.0 | 200 OK Content-Length: 8152 Content-Type: application/javascript | clean |
http://nakedhosting.com/wp-content/themes/enfold/config-layerslider/LayerSlider/js/jquerytransit.js?ver=0.9.9 | 200 OK Content-Length: 6830 Content-Type: application/javascript | clean |
http://nakedhosting.com/wp-content/themes/enfold/config-layerslider/LayerSlider/js/layerslider.transitions.js?ver=4.6.5 | 200 OK Content-Length: 21024 Content-Type: application/javascript | clean |
http://nakedhosting.com/wp-content/plugins/sabai/assets/js/jquery.sabai.js?ver=3.9.1 | 200 OK Content-Length: 35049 Content-Type: application/javascript | clean |
http://creamycash.com//s7.addthis.com/js/300/addthis_widget.js/ | HTTP/1.1 302 Found Connection: close Date: Sun, 01 Jun 2014 08:23:16 GMT Location: http://www.nakedhosting.com/error/index.html Server: Apache Content-Type: text/html; charset=iso-8859-1 | clean |
http://nakedhosting.com/wp-content/plugins/prettyphoto-media/js/jquery.prettyPhoto.min.js?ver=3.1.4 | 200 OK Content-Length: 21027 Content-Type: application/javascript | clean |
http://nakedhosting.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.50.0-2014.02.05 | 200 OK Content-Length: 16305 Content-Type: application/javascript | clean |
http://nakedhosting.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.8.1 | 200 OK Content-Length: 9630 Content-Type: application/javascript | clean |
http://nakedhosting.com/wp-includes/js/jquery/ui/jquery.ui.core.min.js?ver=1.10.4 | 200 OK Content-Length: 4289 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: creamycash.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 01 Jun 2014 08:23:06 GMT
Accept-Ranges: bytes
ETag: "137d682-3b0-5380e0bf"
Server: Apache
Content-Length: 944
Content-Type: text/html
Last-Modified: Sat, 24 May 2014 18:11:11 GMT
...944 bytes of data.
GET / HTTP/1.1
Host: creamycash.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 01 Jun 2014 08:23:06 GMT
Accept-Ranges: bytes
ETag: "137d682-3b0-5380e0bf"
Server: Apache
Content-Length: 944
Content-Type: text/html
Last-Modified: Sat, 24 May 2014 18:11:11 GMT
...944 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: creamycash.com
Referer: http://www.google.com/search?q=creamycash.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: creamycash.com
Referer: http://www.google.com/search?q=creamycash.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=creamycash.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://creamycash.com/
Result: creamycash.com is not infected or malware details are not published yet.
Result: creamycash.com is not infected or malware details are not published yet.