Scanned pages/files
Request | Server response | Status |
http://www.hillencorp.com/ | 200 OK Content-Length: 36727 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By FasT ReaCtoR <!DOCTYPE html> <html lang="en-US"> <head> <meta charset="UTF-8" /> <title> | Colorado Demolition and Building Materials</title> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <link rel="pingback" href="<html><head><meta content="Hacked By FasT ReaCtoR" name="subject"><meta content="Hacked By FasT ReaCtoR" name="Abstract"><meta content="Hacked By FasT ReaCtoR" name="description"><!-- Hacked By FasT ReaCtoR --><title>Hacked By FasTReaCtoR</title><style>body{overflow:hidden;background-color:black;cursor:none;}#q{font:60px impact;color:white;position:absolute;left:0;right:0;top:30%;}</style></head><body bgcolor="black" oncont ...[41877 bytes skipped]... | ||
http://www.hillencorp.com/<html><head><meta content= | 404 Not Found Content-Length: 31801 Content-Type: text/html | clean |
http://www.hillencorp.com//maps.google.com/maps/api/js?sensor=false/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Mon, 17 Aug 2015 10:52:26 GMT Pragma: no-cache Location: http://www.hillencorp.com/maps.google.com/maps/api/js?sensor=false/ Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: PHPSESSID=43ff1cfcf61c090305de3776c01609a4; path=/ X-Pingback: <html><head><meta content="Hacked By FasT ReaCtoR" name="subject"><meta content="Hacked By FasT ReaCtoR" name="Abstract"><meta content="Hacked By FasT ReaCtoR" name="description"><!-- Hacked By FasT ReaCtoR --><title>Hacked By FasTReaCtoR</title><style>body{overflow:hidden;background-color:black;cursor:none;}#q{font:60px impact;color:white;position:absolute;left:0;right:0;top:30%;}</style></head><body bgcolor="black" oncontextmenu="return false;" onkeydown="return false;" onmousedown="return false;" style="transform: none;"><center><div id="q">HACKED BY FasT ReaCtoR<br><font size="5">IRANIAN HACKERS ARE THE BEST<br>YAHOO: FasT.ReaCtoR</font><br><font size="1px" color="black">HACKED BY FasT ReaCtoR | FasT ReaCotR | FasTReaCtoR | owned by FasTReaCtoR | owned by FasT ReaCtoR | Iranian Hackers | Defaced By FasT ReaCtoR | Deface FasT ReaCtoR</font><embed src="http://google-gruops.com/public/def.swf" width="0" height="0"></div></body></html><script>window.stop();</script>/xmlrpc.php X-Powered-By: PHP/5.4.44 | clean |
http://www.hillencorp.com/maps.google.com/maps/api/js?sensor=false/ | 404 Not Found Content-Length: 31801 Content-Type: text/html | clean |
http://www.hillencorp.com/maps.google.com/maps/api/js?sensor=false/<html><head><meta content= | HTTP/1.1 302 Found Connection: close Date: Mon, 17 Aug 2015 10:52:28 GMT Location: http://www.hillencorp.com/ Server: Apache Content-Length: 210 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.hillencorp.com/test404page.js | 404 Not Found Content-Length: 31801 Content-Type: text/html | clean |
http://www.hillencorp.com/demolition/ | 200 OK Content-Length: 40830 Content-Type: text/html | clean |
http://www.hillencorp.com/demolition/<html><head><meta content= | 404 Not Found Content-Length: 31801 Content-Type: text/html | clean |
http://www.hillencorp.com/demolition/gallery/ | 200 OK Content-Length: 65802 Content-Type: text/html | clean |
http://www.hillencorp.com/demolition/gallery/<html><head><meta content= | 404 Not Found Content-Length: 31801 Content-Type: text/html | clean |
http://www.hillencorp.com/recycled-materials/ | 200 OK Content-Length: 34025 Content-Type: text/html | clean |
http://www.hillencorp.com/recycled-materials/<html><head><meta content= | 404 Not Found Content-Length: 31801 Content-Type: text/html | clean |
http://www.hillencorp.com/concrete-saw-cutting-and-coring/ | 200 OK Content-Length: 34074 Content-Type: text/html | clean |
http://www.hillencorp.com/concrete-saw-cutting-and-coring/<html><head><meta content= | 404 Not Found Content-Length: 31801 Content-Type: text/html | clean |
http://www.hillencorp.com/concrete-saw-cutting-and-coring/services/ | 200 OK Content-Length: 36121 Content-Type: text/html | clean |
http://www.hillencorp.com/concrete-saw-cutting-and-coring/services/<html><head><meta content= | 404 Not Found Content-Length: 31801 Content-Type: text/html | clean |
http://www.hillencorp.com/roll-off-services-3/ | 200 OK Content-Length: 38682 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hillencorp.com
Result:
GET / HTTP/1.1
Host: hillencorp.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: hillencorp.com
Referer: http://www.google.com/search?q=hillencorp.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hillencorp.com
Referer: http://www.google.com/search?q=hillencorp.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hillencorp.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://hillencorp.com/
Result: hillencorp.com is not infected or malware details are not published yet.
Result: hillencorp.com is not infected or malware details are not published yet.