Scanned pages/files
Request | Server response | Status |
http://hbtmexico.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 21 Sep 2014 05:22:28 GMT Location: http://www.hbtmexico.com/ Server: nginx Content-Length: 0 Content-Type: text/html; charset=UTF-8 Ngpass_all: 1 X-Pingback: http://www.hbtmexico.com/xmlrpc.php | clean |
http://www.hbtmexico.com/ | 200 OK Content-Length: 4741 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Evil-Jo | Jordan Hacker <!-- saved from url=(0042)http://www.follejournee.fr/images/stories/ --> <html><meta style="visibility: hidden !important; display: block !important; width: 0px !important; height: 0px !important; border-style: none !important;"><object id="__IDM__" type="application/x-idm-downloader" width="1" height="1" style="visibility: hidden !important; display: block !important; width: 1px !important; height: 1px !important; border-style: none ...[5767 bytes skipped]... | ||
http://www.hbtmexico.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hbtmexico.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sun, 21 Sep 2014 05:22:28 GMT
Location: http://www.hbtmexico.com/
Server: nginx
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Ngpass_all: 1
X-Pingback: http://www.hbtmexico.com/xmlrpc.php
...0 bytes of data.
GET / HTTP/1.1
Host: hbtmexico.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sun, 21 Sep 2014 05:22:28 GMT
Location: http://www.hbtmexico.com/
Server: nginx
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Ngpass_all: 1
X-Pingback: http://www.hbtmexico.com/xmlrpc.php
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: hbtmexico.com
Referer: http://www.google.com/search?q=hbtmexico.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hbtmexico.com
Referer: http://www.google.com/search?q=hbtmexico.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hbtmexico.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://hbtmexico.com/
Result: hbtmexico.com is not infected or malware details are not published yet.
Result: hbtmexico.com is not infected or malware details are not published yet.