Scanned pages/files
Request | Server response | Status |
http://happyhealthyholiday.com/ | 200 OK Content-Length: 2600 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Milton <!doctype html> <html> <head> <script src='http://blognyailmu.googlecode.com/files/Script%20Hujan%20Salju2.js' type="text/javascript"></script> <title>Hacked by Milton</title> <meta content='Hacked by Milton' name='description'/> <meta content='Hacked by Milton' name='keywords'/> <meta content='Hacked by Milton' name='Abstract'/> <link REL="SHORTCUT ICON" HREF="http://xcruzz.blogspot.com/favicon.ico"> <embed src='http://bigsite.persiangig.com/audio/empero1.swf?version=3&feature=related&autoplay=1' type='application/x- ...[2476 bytes skipped]... | ||
http://blognyailmu.googlecode.com/files/Script%20Hujan%20Salju2.js | 200 OK Content-Length: 3152 Content-Type: text/plain | clean |
http://blognyailmu.googlecode.com/test404page.js | 404 Not Found Content-Length: 1575 Content-Type: text/html | clean |
http://blognyailmu.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1561 Content-Type: text/html | clean |
http://happyhealthyholiday.com//www.google.com/ | 404 Not Found Content-Length: 332 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: happyhealthyholiday.com
Result:
HTTP/1.1 200 OK
Cache-Control: public
Connection: close
Date: Wed, 02 Dec 2015 18:56:29 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 2600
Content-Type: text/html
Last-Modified: Sat, 01 Aug 2015 09:25:58 GMT
...2600 bytes of data.
GET / HTTP/1.1
Host: happyhealthyholiday.com
Result:
HTTP/1.1 200 OK
Cache-Control: public
Connection: close
Date: Wed, 02 Dec 2015 18:56:29 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 2600
Content-Type: text/html
Last-Modified: Sat, 01 Aug 2015 09:25:58 GMT
...2600 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: happyhealthyholiday.com
Referer: http://www.google.com/search?q=happyhealthyholiday.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: happyhealthyholiday.com
Referer: http://www.google.com/search?q=happyhealthyholiday.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=happyhealthyholiday.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://happyhealthyholiday.com/
Result: happyhealthyholiday.com is not infected or malware details are not published yet.
Result: happyhealthyholiday.com is not infected or malware details are not published yet.