New scan:

Malware Scanner report for dd.vexa.com

Malicious/Suspicious/Total urls checked
0/0/4
Blacklists
OK
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/1
Deface / Content modification
Found
Probably the website is defaced. The following signature was found:

HackeD By MuhmadEmad  (48 websites defaced)

See details below

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Scanned pages/files

RequestServer responseStatus
http://dd.vexa.com/
200 OK
Content-Length: 22410
Content-Type: text/html
suspicious
Deface/Content modification. The following signature was found: HackeD By MuhmadEmad


<html dir="rtl">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
<title>HackeD By MuhmadEmad</title>
</head>
<center><FONT color=#000000>
<font size="7">HackeD By <i>MuhamadEmad</font></pre></div>
<style type="text/css">
body{

background: url(http://im70.gulfup.com/uPuxEN.jpg) no-repeat center center fixed;

-webkit-background-size: cover;
-moz-background-size: cover;
-o-background-size: cover; <
...[29308 bytes skipped]...


http://dd.vexa.com/test404page.js
404 Not Found
Content-Length: 12839
Content-Type: text/html
clean
http://code.jquery.com/jquery-1.9.1.js
200 OK
Content-Length: 268381
Content-Type: application/x-javascript
clean
http://suspended.hostgator.com/js/simple-expand.min.js
200 OK
Content-Length: 2782
Content-Type: application/javascript
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: dd.vexa.com

Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 14 Jan 2015 17:08:49 GMT
Accept-Ranges: bytes
Server: nginx/1.6.2
Content-Length: 22410
Content-Type: text/html
Last-Modified: Fri, 28 Nov 2014 00:50:52 GMT

...22410 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: dd.vexa.com
Referer: http://www.google.com/search?q=dd.vexa.com

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=dd.vexa.com

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://dd.vexa.com/

Result: dd.vexa.com is not infected or malware details are not published yet.