Scanned pages/files
Request | Server response | Status |
http://publicaffairfashion.com/ | 200 OK Content-Length: 20069 Content-Type: text/html | clean |
http://publicaffairfashion.com/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 96402 Content-Type: application/javascript | clean |
http://publicaffairfashion.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://publicaffairfashion.com/wp-content/plugins/cookie-compliance/cookie-compliance.min.js?ver=3.9.2 | 200 OK Content-Length: 8335 Content-Type: application/javascript | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js | 200 OK Content-Length: 93435 Content-Type: text/javascript | clean |
http://ajax.googleapis.com/ajax/libs/jqueryui/1.9.1/jquery-ui.min.js | 200 OK Content-Length: 237108 Content-Type: text/javascript | clean |
http://publicaffairfashion.com/wp-content/themes/bedazzled/js/css3-mediaqueries.js | 200 OK Content-Length: 16016 Content-Type: application/javascript | clean |
http://publicaffairfashion.com/wp-content/themes/bedazzled/js/fwslider.js | 200 OK Content-Length: 8783 Content-Type: application/javascript | clean |
http://publicaffairfashion.com/blog | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 27 Sep 2014 20:23:34 GMT Location: http://publicaffairfashion.com/blog/ Server: nginx Content-Length: 244 Content-Type: text/html; charset=iso-8859-1 Ngpass_all: 1 | clean |
http://publicaffairfashion.com/blog/ | 200 OK Content-Length: 19414 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Criminal BD ...[505 bytes skipped]... ar.length]; }); //Type out examples: TypingText.runAll(); </script> <html> <link REL="SHORTCUT ICON" HREF="http://s13.postimg.org/d82nq5frb/UBHFinal1.png"> <HTML xmlns="http://www.w3.org/TR/REC-html40" xmlns:v = "urn:schemas-microsoft-com:vml" xmlns:o = "urn:schemas-microsoft-com:office:office"><HEAD><TITLE>Hacked By Criminal BD</TITLE><!-- saved from url=(0018)http://07-ksa.com/ --> <META content=en-us http-equiv=Content-Language> <META content="text/html; charset=windows-1252" http-equiv=Content-Type> <STYLE type=text/css>BODY { SCROLLBAR-ARROW-COLOR: #ffffff; SCROLLBAR-FACE-COLOR: #000000; SCROLLBAR-DARKSHADOW-COLOR: #ffffff; SCROLLBAR-HIGHLIGHT-COLOR: #000000; SCROLLBAR-SHADOW-COLOR: #000000; SCROLLBAR-TRACK-COLOR: #0 ...[22681 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js | 200 OK Content-Length: 85925 Content-Type: text/javascript | clean |
https://ajax.googleapis.com/ajax/libs/jquery/1.6.1/jquery.min.js | 200 OK Content-Length: 91342 Content-Type: text/javascript | clean |
http://publicaffairfashion.com/test404page.js | 404 Not Found Content-Length: 16445 Content-Type: text/html | clean |
http://publicaffairfashion.com/main | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 27 Sep 2014 20:23:38 GMT Location: http://publicaffairfashion.com/main/ Server: nginx Content-Length: 0 Content-Type: text/html; charset=UTF-7 Ngpass_all: 1 X-Pingback: http://publicaffairfashion.com/xmlrpc.php X-Powered-By: PHP/5.3.29 | clean |
http://publicaffairfashion.com/main/ | 200 OK Content-Length: 35018 Content-Type: text/html | clean |
http://publicaffairfashion.com/wp-content/themes/bedazzled/js/hover.js | 200 OK Content-Length: 666 Content-Type: application/javascript | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.4/jquery.min.js | 200 OK Content-Length: 78601 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: publicaffairfashion.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 27 Sep 2014 20:23:29 GMT
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-7
Link: <http://publicaffairfashion.com/>; rel=shortlink
Ngpass_all: 1
X-Pingback: http://publicaffairfashion.com/xmlrpc.php
X-Powered-By: PHP/5.3.29
GET / HTTP/1.1
Host: publicaffairfashion.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 27 Sep 2014 20:23:29 GMT
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-7
Link: <http://publicaffairfashion.com/>; rel=shortlink
Ngpass_all: 1
X-Pingback: http://publicaffairfashion.com/xmlrpc.php
X-Powered-By: PHP/5.3.29
Second query (visit from search engine):
GET / HTTP/1.1
Host: publicaffairfashion.com
Referer: http://www.google.com/search?q=publicaffairfashion.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: publicaffairfashion.com
Referer: http://www.google.com/search?q=publicaffairfashion.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=publicaffairfashion.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://publicaffairfashion.com/
Result: publicaffairfashion.com is not infected or malware details are not published yet.
Result: publicaffairfashion.com is not infected or malware details are not published yet.