Scanned pages/files
Request | Server response | Status |
http://nationwidetentrental.com/ | 200 OK Content-Length: 9557 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: hacked by ahor4 ...[10148 bytes skipped]... ;!-- INSERT_TEXT=content_string --><br> <!--Contact_Us_Info_Here--> <table cellpadding=2 width=710> <tr><td> <font face=Verdana size=1><a href='?pageid=1'>Home</a>: </font><br> <font face=verdana size=2> <html><head> <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1"> <title>hacked by ahor4</title> <style type="text/css"> <!-- .style1 { color: #FFFFFF; font-family: Arial, Helvetica, sans-serif; font-size: 18px; } .style4 {font-size: 12px} a:link { color: #FF0000; text-decoration: none; } a:visited { text-decoration: none; } a:hover { text-decoration: none; } a:active { text-decoration: none; } .style5 {color: #FF0000} --> ...[1539 bytes skipped]... | ||
http://nationwidetentrental.com/index.php3?pageid=4 | 200 OK Content-Length: 8293 Content-Type: text/html | clean |
http://nationwidetentrental.com/index.php3?pageid=7 | 200 OK Content-Length: 14048 Content-Type: text/html | clean |
http://nationwidetentrental.com/index.php3?pageid=6 | 200 OK Content-Length: 12257 Content-Type: text/html | clean |
http://nationwidetentrental.com/index.php3?pageid=5 | 200 OK Content-Length: 11918 Content-Type: text/html | clean |
http://port80.persiangig.com/Index2/js/right-click.js | 200 OK Content-Length: 276 Content-Type: application/x-javascript | clean |
http://nationwidetentrental.com/index.php3?pageid=36 | 200 OK Content-Length: 8284 Content-Type: text/html | clean |
http://nationwidetentrental.com/index.php3?pageid=9 | 200 OK Content-Length: 20252 Content-Type: text/html | clean |
http://nationwidetentrental.com/index.php3?pageid=13 | 200 OK Content-Length: 12230 Content-Type: text/html | clean |
http://nationwidetentrental.com/index.php3?pageid=14 | 200 OK Content-Length: 8291 Content-Type: text/html | clean |
http://nationwidetentrental.com/index.php3?pageid=29 | 200 OK Content-Length: 26394 Content-Type: text/html | clean |
http://nationwidetentrental.com/index.php3?pageid=19 | 200 OK Content-Length: 9069 Content-Type: text/html | clean |
http://nationwidetentrental.com/?pageid=1 | 200 OK Content-Length: 9557 Content-Type: text/html | clean |
http://nationwidetentrental.com/print.php3?pageid=1 | 200 OK Content-Length: 2351 Content-Type: text/html | clean |
http://nationwidetentrental.com/test404page.js | 404 Not Found Content-Length: 494 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: nationwidetentrental.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 15 Oct 2015 07:33:57 GMT
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/0.9.8e-fips-rhel5 DAV/2 PHP/5.2.17
Vary: Accept-Encoding,User-Agent
Content-Type: text/html
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: nationwidetentrental.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 15 Oct 2015 07:33:57 GMT
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/0.9.8e-fips-rhel5 DAV/2 PHP/5.2.17
Vary: Accept-Encoding,User-Agent
Content-Type: text/html
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: nationwidetentrental.com
Referer: http://www.google.com/search?q=nationwidetentrental.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: nationwidetentrental.com
Referer: http://www.google.com/search?q=nationwidetentrental.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=nationwidetentrental.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://nationwidetentrental.com/
Result: nationwidetentrental.com is not infected or malware details are not published yet.
Result: nationwidetentrental.com is not infected or malware details are not published yet.