Scanned pages/files
| Request | Server response | Status |
http://weeatthestreet.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 07 Jul 2015 10:01:36 GMT Location: http://www.weeatthestreet.com/ Server: Apache Content-Length: 238 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.weeatthestreet.com/ | 200 OK Content-Length: 29046 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: +ADw-TITLE+AD4-Hacked By T+APw-rkiyem+AF8-57 and HaYaL-ET-06 +ADw-/TITLE+AD4 ...[207 bytes skipped]... -[if IE 9 ]> <html class="ie9" lang="en-US"> <![endif]--> <!--[if (gt IE 9)|(!IE)]><!--><html class="non-ie" lang="en-US"><!--<![endif]--> <head> <meta charset=UTF-7 > <meta name="viewport" content="width=device-width" /> <title> | +ADw-/title+AD4APA-HTML+AD4 +ADw-HEAD+AD4 +ADw-TITLE+AD4-Hacked By T+APw-rkiyem+AF8-57 and HaYaL-ET-06 +ADw-/TITLE+AD4 +ADw-link rel+AD0AIg-SHORTCUT ICON+ACI href+AD0AIg-http://www.HaYaL-ET- 06.NET/favicon.ico+ACIAPg +ADw-BODY bgColor+AD0 black +AD4 +ADw-p align+AD0AIg-center+ACIAPgA8-img src +AD0AIg-http://p1305.hizliresim.com/19/2/mph68.jpg+ACI-height+AD0-504 width+AD0-504+ADw-/img+AD4 +ADw-p align+AD0AIg-center+ACIAPgA8-font color +AD0 white size +AD0 5+AD4-Hacked By T+APw-rkiyem+AF8 ...[30987 bytes skipped]... | ||
http://www.weeatthestreet.com/wp-includes/js/jquery/jquery.js?ver=1.8.3 | 200 OK Content-Length: 93658 Content-Type: application/javascript | clean |
http://www.weeatthestreet.com/wp-content/themes/expressions/js/superfish/superfish.min.js?ver=3.5.2 | 200 OK Content-Length: 4130 Content-Type: application/javascript | clean |
http://www.weeatthestreet.com/wp-content/themes/expressions/js/jquery.fitvids.js?ver=3.5.2 | 200 OK Content-Length: 2864 Content-Type: application/javascript | clean |
http://www.weeatthestreet.com/wp-content/themes/expressions/js/fitvids-doc-ready.js?ver=3.5.2 | 200 OK Content-Length: 248 Content-Type: application/javascript | clean |
http://www.weeatthestreet.com/wp-content/themes/expressions/js/mobile-doc-ready.js?ver=3.5.2 | 200 OK Content-Length: 2950 Content-Type: application/javascript | clean |
http://www.weeatthestreet.com/wp-content/themes/expressions/js/colorbox/jquery.colorbox-min.js?ver=3.5.2 | 200 OK Content-Length: 9781 Content-Type: application/javascript | clean |
http://www.weeatthestreet.com/wp-content/themes/expressions/js/colorbox/colorbox_doc_ready.js?ver=3.5.2 | 200 OK Content-Length: 266 Content-Type: application/javascript | clean |
http://www.weeatthestreet.com/wp-content/themes/expressions/js/nivo-slider/jquery.nivo.slider.pack.js?ver=3.5.2 | 200 OK Content-Length: 12201 Content-Type: application/javascript | clean |
http://www.weeatthestreet.com/wp-content/themes/expressions/js/doc-ready-scripts.js?ver=3.5.2 | 200 OK Content-Length: 7560 Content-Type: application/javascript | clean |
http://www.weeatthestreet.com/wp-content/themes/expressions/js/html5.js?ver=3.5.2 | 200 OK Content-Length: 2384 Content-Type: application/javascript | clean |
http://www.weeatthestreet.com/wp-content/themes/expressions/js/superfish/hoverIntent.min.js?ver=3.5.2 | 200 OK Content-Length: 1443 Content-Type: application/javascript | clean |
http://weeatthestreet.com/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 07 Jul 2015 10:01:45 GMT Location: http://www.weeatthestreet.com/test404page.js Server: Apache Content-Length: 252 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.weeatthestreet.com/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Tue, 07 Jul 2015 10:01:45 GMT Pragma: no-cache Location: http://www.weeatthestreet.com Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-7 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://www.weeatthestreet.com/xmlrpc.php X-Powered-By: PHP/5.4.30 | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: weeatthestreet.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 07 Jul 2015 10:01:36 GMT
Location: http://www.weeatthestreet.com/
Server: Apache
Content-Length: 238
Content-Type: text/html; charset=iso-8859-1
...238 bytes of data.
GET / HTTP/1.1
Host: weeatthestreet.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 07 Jul 2015 10:01:36 GMT
Location: http://www.weeatthestreet.com/
Server: Apache
Content-Length: 238
Content-Type: text/html; charset=iso-8859-1
...238 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: weeatthestreet.com
Referer: http://www.google.com/search?q=weeatthestreet.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: weeatthestreet.com
Referer: http://www.google.com/search?q=weeatthestreet.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=weeatthestreet.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://weeatthestreet.com/
Result: weeatthestreet.com is not infected or malware details are not published yet.
Result: weeatthestreet.com is not infected or malware details are not published yet.