Scanned pages/files
Request | Server response | Status |
http://dl3-cam.com/ | 200 OK Content-Length: 21930 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HackeD By Team FBi <html dir="rtl">
<head> <meta http-equiv="Content-Language" content="en-us"> <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <title>HackeD By Team FBi</title> <meta name="keywords" content="Hacked By Team FBi"> <meta name="description" content="HackeD By Team FBi"> </head> <body bgcolor="#000000"> <p align="center"><font size="5"> <img border="0" src="http://im45.gulfup.com/Hwb9x8.jpg" width="640" height="480"><br> </font><font face="ae_AlMateen" size="7" color="#C0C0C0 ...[31075 bytes skipped]... | ||
http://dl3-cam.com/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Wed, 17 Dec 2014 14:19:14 GMT Pragma: no-cache Location: http://www.dl3-cam.com/test404page.js Server: cloudflare-nginx Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT CF-Cache-Status: MISS CF-RAY: 19a3c122ddc90aea-WAW Set-Cookie: __cfduid=df19209f1c15edb285b9f493fcea860801418825953; expires=Thu, 17-Dec-15 14:19:13 GMT; path=/; domain=.dl3-cam.com; HttpOnly X-Pingback: http://www.dl3-cam.com/xmlrpc.php | clean |
http://www.dl3-cam.com/test404page.js | 404 Not Found Content-Length: 33829 Content-Type: text/html | clean |
http://www.dl3-cam.com/wp-content/themes/dl33caam_hexll/js/jquery.js | 200 OK Content-Length: 78085 Content-Type: application/javascript | clean |
http://www.dl3-cam.com/wp-content/themes/dl33caam_hexll/js/jquery.easing.1.3.js | 200 OK Content-Length: 8097 Content-Type: application/javascript | clean |
http://www.dl3-cam.com/wp-content/themes/dl33caam_hexll/js/links.js | 200 OK Content-Length: 866 Content-Type: application/javascript | clean |
http://www.dl3-cam.com/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://www.dl3-cam.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.dl3-cam.com/wp-content/plugins/sociable/js/sociable.js?ver=4.0.1 | 200 OK Content-Length: 1959 Content-Type: application/javascript | clean |
http://www.dl3-cam.com/wp-content/plugins/sociable/js/vuible.js?ver=4.0.1 | 200 OK Content-Length: 370 Content-Type: application/javascript | clean |
http://www.dl3-cam.com/wp-content/plugins/sociable/js/addtofavorites.js?ver=4.0.1 | 200 OK Content-Length: 602 Content-Type: application/javascript | clean |
http://apis.google.com/js/plusone.js | 200 OK Content-Length: 12803 Content-Type: application/javascript | clean |
http://www.dl3-cam.com/wp-content/themes/dl33caam_hexll/js//hexll.js | 200 OK Content-Length: 1361 Content-Type: application/javascript | clean |
http://dl3-cam.com/index.php | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 17 Dec 2014 14:19:18 GMT Location: http://www.dl3-cam.com/ Server: cloudflare-nginx Vary: Accept-Encoding,User-Agent Content-Type: text/html; charset=UTF-8 CF-RAY: 19a3c13b4e430aea-WAW Set-Cookie: __cfduid=dc9f367e4b319cb40876c41b87535ec1b1418825957; expires=Thu, 17-Dec-15 14:19:17 GMT; path=/; domain=.dl3-cam.com; HttpOnly Set-Cookie: wordpress_6b3ecd44084387ca530758c978c694a7=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/wp-content/plugins; httponly Set-Cookie: wordpress_6b3ecd44084387ca530758c978c694a7=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/wp-admin; httponly Set-Cookie: wordpress_logged_in_6b3ecd44084387ca530758c978c694a7=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; httponly X-Pingback: http://www.dl3-cam.com/xmlrpc.php | clean |
http://www.dl3-cam.com/ | 200 OK Content-Length: 21930 Content-Type: text/html | clean |
http://dl3-cam.com/rss.xml | 200 OK Content-Length: 301328 Content-Type: application/xml | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: dl3-cam.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 17 Dec 2014 14:19:13 GMT
ETag: W/"1903200-55aa-50a66192da522"
Server: cloudflare-nginx
Vary: Accept-Encoding,User-Agent
Content-Type: text/html
Last-Modified: Wed, 17 Dec 2014 09:28:28 GMT
CF-RAY: 19a3c1210d680aea-WAW
Set-Cookie: __cfduid=df19209f1c15edb285b9f493fcea860801418825953; expires=Thu, 17-Dec-15 14:19:13 GMT; path=/; domain=.dl3-cam.com; HttpOnly
GET / HTTP/1.1
Host: dl3-cam.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 17 Dec 2014 14:19:13 GMT
ETag: W/"1903200-55aa-50a66192da522"
Server: cloudflare-nginx
Vary: Accept-Encoding,User-Agent
Content-Type: text/html
Last-Modified: Wed, 17 Dec 2014 09:28:28 GMT
CF-RAY: 19a3c1210d680aea-WAW
Set-Cookie: __cfduid=df19209f1c15edb285b9f493fcea860801418825953; expires=Thu, 17-Dec-15 14:19:13 GMT; path=/; domain=.dl3-cam.com; HttpOnly
Second query (visit from search engine):
GET / HTTP/1.1
Host: dl3-cam.com
Referer: http://www.google.com/search?q=dl3-cam.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: dl3-cam.com
Referer: http://www.google.com/search?q=dl3-cam.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=dl3-cam.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://dl3-cam.com/
Result: dl3-cam.com is not infected or malware details are not published yet.
Result: dl3-cam.com is not infected or malware details are not published yet.