Scanned pages/files
| Request | Server response | Status |
http://wickfordveterinaryclinic.com/ | 200 OK Content-Length: 37251 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: +ADw-/title+AD4-hacked by anonboy+ADw-DIV style+AD0AIg-DISPLAY: none+ACIAPgA8-xmp+AD4- » Feed <!DOCTYPE html>
<!--[if lt IE 7]> <html class="ie ie6 lte9 lte8 lte7" lang="en-US"> <![endif]--> <!--[if IE 7]> <html class="ie ie7 lte9 lte8 lte7" lang="en-US"> <![endif]--> <!--[if IE 8]> <html class="ie ie8 lte9 lte8" lang="en-US"> <![endif]--> <!--[if IE 9]> <html class="ie ie9 lte9" lang="en-US"> <![endif]--> <!--[if gt IE 9]> <html> <![endif]--> < ...[42388 bytes skipped]... | ||
http://www.wickfordveterinary.com/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93128 Content-Type: application/javascript | clean |
http://www.wickfordveterinary.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.wickfordveterinary.com/wp-content/themes/echelon/lib/scripts/tabs.min.js?ver=2.2 | 500 Internal Server Error Content-Length: 678 Content-Type: text/html | clean |
http://www.wickfordveterinary.com/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: keep-alive, close Date: Tue, 16 Sep 2014 02:12:36 GMT Pragma: no-cache Location: http://wickfordveterinary.com/test404page.js Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT HipHOPsMuRf: Hello Smurf. It took D=559845 microseconds for Apache to serve this request. Set-Cookie: PHPSESSID=f9feb13ba1b8689df9b150fe28bc6bba; path=/ Set-Cookie: spo_101_fa=8c800552cf06513026e06d3b657af6a7; expires=Tue, 16-Sep-2014 02:42:36 GMT; path=/ X-Pingback: http://wickfordveterinary.com/xmlrpc.php X-Powered-By: PHP/5.3.27 X-UA-Compatible: IE=EmulateIE10 | clean |
http://wickfordveterinary.com/test404page.js | 404 Not Found Content-Length: 38389 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.8.3.min.js?ver=3.6 | 200 OK Content-Length: 93636 Content-Type: application/x-javascript | clean |
http://wickfordveterinary.com/wp-content/plugins/arscode-social-slider/js/userscripts.js?ver=3.6 | 200 OK Content-Length: 10414 Content-Type: application/javascript | clean |
http://wickfordveterinary.com/wp-content/plugins/arscode-social-slider/lionbars/jquery.lionbars.0.3.min.js?ver=3.6 | 200 OK Content-Length: 6184 Content-Type: application/javascript | clean |
http://wickfordveterinary.com/wp-content/plugins/popover/popoverincludes/js/public.js?ver=3.6 | 200 OK Content-Length: 5500 Content-Type: application/javascript | clean |
http://wickfordveterinary.com/wp-content/plugins/nextgen-gallery/shutter/shutter-reloaded.js?ver=1.3.3 | 200 OK Content-Length: 9986 Content-Type: application/javascript | clean |
http://wickfordveterinary.com/wp-content/plugins/nextgen-gallery/js/jquery.cycle.all.min.js?ver=2.9995 | 200 OK Content-Length: 26590 Content-Type: application/javascript | clean |
http://wickfordveterinary.com/wp-content/plugins/nextgen-gallery/js/ngg.slideshow.min.js?ver=1.06 | 200 OK Content-Length: 1791 Content-Type: application/javascript | clean |
http://dtym7iokkjlif.cloudfront.net/media/js/jquery.shareaholic-publishers-sb.min.js?ver=6.1.5.1 | 200 OK Content-Length: 49666 Content-Type: application/javascript | clean |
http://connect.facebook.net/en_US/all.js?ver=3.6 | 200 OK Content-Length: 163628 Content-Type: application/x-javascript | clean |
http://platform.twitter.com/anywhere.js?id=SFuKw2nbem95CYq2UqXWw&v=1&ver=3.6 | 200 OK Content-Length: 531 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: wickfordveterinaryclinic.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 16 Sep 2014 02:12:32 GMT
Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 mod_fcgid/2.3.9
Content-Type: text/html; charset=UTF-7
X-Pingback: http://www.wickfordveterinary.com/xmlrpc.php
X-Powered-By: PHP/5.3.27
GET / HTTP/1.1
Host: wickfordveterinaryclinic.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 16 Sep 2014 02:12:32 GMT
Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 mod_fcgid/2.3.9
Content-Type: text/html; charset=UTF-7
X-Pingback: http://www.wickfordveterinary.com/xmlrpc.php
X-Powered-By: PHP/5.3.27
Second query (visit from search engine):
GET / HTTP/1.1
Host: wickfordveterinaryclinic.com
Referer: http://www.google.com/search?q=wickfordveterinaryclinic.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: wickfordveterinaryclinic.com
Referer: http://www.google.com/search?q=wickfordveterinaryclinic.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=wickfordveterinaryclinic.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://wickfordveterinaryclinic.com/
Result: wickfordveterinaryclinic.com is not infected or malware details are not published yet.
Result: wickfordveterinaryclinic.com is not infected or malware details are not published yet.