New scan:

Malware Scanner report for enterpriserentcaronline.com

Malicious/Suspicious/Total urls checked
2/0/19
2 pages have malicious code. See details below
Blacklists
OK
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Scanned pages/files

RequestServer responseStatus
http://enterpriserentcaronline.com/
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Fri, 29 Aug 2014 18:36:19 GMT
Location: http://Enterprise.com
Server: Apache-Coyote/1.1
Content-Length: 0
clean
http://enterprise.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Fri, 29 Aug 2014 18:36:20 GMT
Location: http://www.enterprise.com/car_rental/home.do
Server: Apache
Content-Length: 252
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: TLTSID=A6923B682FAE102F0DD0AA0F4E3C47B7; Path=/
Set-Cookie: TLTUID=A6923B682FAE102F0DD0AA0F4E3C47B7; Path=/; Expires=Fri, 29-08-2024 18:36:20 GMT
clean
http://www.enterprise.com/car_rental/home.do
200 OK
Content-Length: 77532
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)


var axel = Math.random() + "";
var a = axel * 10000000000000;
document.write('<iframe src="http://fls.doubleclick.net/activityi;src=959881;type=enter816;cat=homep765;ord=' + a + '?" width="1" height="1" frameborder="0" style="display:none"></iframe>');

Antivirus reports:

Avast
HTML:Iframe-inf
VIPRE
Heur.HTML.MalIFrame (v)
Norman
Iframer.AU
Sophos
Mal/Iframe-V
GData
HTML:Iframe-inf
ESET-NOD32
HTML/Iframe.B.Gen

http://www.enterprise.com/car_rental/include/20140728103755/addEvent.js
200 OK
Content-Length: 252
Content-Type: text/javascript
clean
http://enterpriserentcaronline.com/car_rental/include/20140728103755/popup.js
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Fri, 29 Aug 2014 18:36:23 GMT
Location: http://Enterprise.com
Server: Apache-Coyote/1.1
Content-Length: 0
clean
http://enterprise.com/test404page.js
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Fri, 29 Aug 2014 18:36:24 GMT
Location: http://www.enterprise.com/test404page.js
Server: Apache
Content-Length: 248
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: TLTSID=A8F495902FAE102F361DABF35300B059; Path=/
Set-Cookie: TLTUID=A8F495902FAE102F361DABF35300B059; Path=/; Expires=Fri, 29-08-2024 18:36:24 GMT
clean
http://www.enterprise.com/test404page.js
404 Not Found
Content-Length: 6548
Content-Type: text/html
clean
http://www.enterprise.com/contactUs.do
404 Not Found
Content-Length: 6548
Content-Type: text/html
clean
http://www.enterprise.com/car_rental/showVehicles.do
200 OK
Content-Length: 44234
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)


var axel = Math.random() + "";
var a = axel * 10000000000000;
document.write('<iframe src="//fls.doubleclick.net/activityi;src=959881;type=enter816;cat=vehic177;ord=' + a + '?" width="1" height="1" frameborder="0" style="display:none"></iframe>');

Antivirus reports:

Avast
HTML:Iframe-inf
VIPRE
Heur.HTML.MalIFrame (v)
Norman
Iframer.AU
Sophos
Mal/Iframe-V
GData
HTML:Iframe-inf
ESET-NOD32
HTML/Iframe.B.Gen

http://www.enterprise.com/car_rental/include/20140728103755/Messages.js
200 OK
Content-Length: 1523
Content-Type: text/javascript
clean
http://www.enterprise.com/car_rental/include/20140728103755/fancyStripes.js
200 OK
Content-Length: 1826
Content-Type: text/javascript
clean
http://www.enterprise.com/car_rental/include/20140728103755/popup.js
200 OK
Content-Length: 5240
Content-Type: text/javascript
clean
http://www.enterprise.com/car_rental/include/20140728103755/navigation.js
200 OK
Content-Length: 2923
Content-Type: text/javascript
clean
http://www.enterprise.com/car_rental/include/20140728103755/setFocus.js
200 OK
Content-Length: 1391
Content-Type: text/javascript
clean
http://www.enterprise.com/car_rental/include/20140728103755/formTooltip.js
200 OK
Content-Length: 1265
Content-Type: text/javascript
clean
http://www.enterprise.com/car_rental/include/20140728103755/print.js
200 OK
Content-Length: 1378
Content-Type: text/javascript
clean
http://www.enterprise.com/car_rental/include/20140728103755/toggle.js
200 OK
Content-Length: 2067
Content-Type: text/javascript
clean
http://www.enterprise.com/car_rental/include/20140728103755/sideNav.js
200 OK
Content-Length: 2018
Content-Type: text/javascript
clean
http://www.enterprise.com/car_rental/include/20140728103755/Calendar.js
200 OK
Content-Length: 15055
Content-Type: text/javascript
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: enterpriserentcaronline.com

Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Fri, 29 Aug 2014 18:36:19 GMT
Location: http://Enterprise.com
Server: Apache-Coyote/1.1
Content-Length: 0

...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: enterpriserentcaronline.com
Referer: http://www.google.com/search?q=enterpriserentcaronline.com

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=enterpriserentcaronline.com

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://enterpriserentcaronline.com/

Result: enterpriserentcaronline.com is not infected or malware details are not published yet.