Scanned pages/files
Request | Server response | Status |
http://furnaces-n-boilers.com/ | 200 OK Content-Length: 49831 Content-Type: text/html | clean |
https://googledrive.com/host/0B1EwvrStfIUwaDJfaGM1RTc3MU0 | 200 OK Content-Length: 3174 Content-Type: application/x-javascript | clean |
http://masterendi.googlecode.com/files/salju.js | 200 OK Content-Length: 3302 Content-Type: text/plain | clean |
http://masterendi.googlecode.com/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://masterendi.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://furnaces-n-boilers.com/wp-includes/js/jquery/jquery.js?ver=1.4.4 | 200 OK Content-Length: 78620 Content-Type: application/javascript | clean |
http://furnaces-n-boilers.com/wp-content/plugins/collapsing-pages/collapsFunctions.js?ver=1.6 | 200 OK Content-Length: 5061 Content-Type: application/javascript | clean |
http://furnaces-n-boilers.com/wp-includes/js/comment-reply.js?ver=20090102 | 200 OK Content-Length: 786 Content-Type: application/javascript | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 19916 Content-Type: text/javascript | clean |
http://static.ak.fbcdn.net/connect.php/js/FB.Share | 200 OK Content-Length: 168409 Content-Type: application/x-javascript | clean |
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 11664 Content-Type: application/javascript | clean |
http://furnaces-n-boilers.com//www.google.com/ | 200 OK Content-Length: 3151 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY 403 F0RB1DD3N_ ]=-- ...[752 bytes skipped]... tp://i.imgur.com/dg6G1xZ.png"></center> <script type="text/javascript" src="https://googledrive.com/host/0B1EwvrStfIUwaDJfaGM1RTc3MU0"></script> <div class="style2" ALIGN="CENTER"><p id="message"><font color="#FFFFFF" style="text-shadow: 0 0 0.2em #00D2FF, 0 0 0.2em #00B8E0, 0 0 0.2em #009DBF, 0 0 0.2em #0086A3;" size="5" face="Papyrus">--=[ HACKED BY 403 F0RB1DD3N_ ]=--</font><br/><div class="style2" ALIGN="CENTER"><p id="message"><font color="#FFFFFF" style="text-shadow: 0 0 0.2em #00D2FF, 0 0 0.2em #00B8E0, 0 0 0.2em #009DBF, 0 0 0.2em #0086A3;" size="4" face="Papyrus">" we are just a team that need of compactness and solidarity "</font> <script type="text/javascript"> new TypingText(document.getElementById("message"), 170, function(i){ var ar ...[2212 bytes skipped]... |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: furnaces-n-boilers.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 Jun 2014 19:12:06 GMT
Server: nginx
Content-Type: text/html
GET / HTTP/1.1
Host: furnaces-n-boilers.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 Jun 2014 19:12:06 GMT
Server: nginx
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: furnaces-n-boilers.com
Referer: http://www.google.com/search?q=furnaces-n-boilers.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: furnaces-n-boilers.com
Referer: http://www.google.com/search?q=furnaces-n-boilers.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=furnaces-n-boilers.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://furnaces-n-boilers.com/
Result: furnaces-n-boilers.com is not infected or malware details are not published yet.
Result: furnaces-n-boilers.com is not infected or malware details are not published yet.