Scanned pages/files
| Request | Server response | Status |
http://revitmaster.com.vn/ | 200 OK Content-Length: 2956 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By THT ...[1302 bytes skipped]... oncontextmenu="return false" onmousedown="return false"> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <b><p><center> <img src="http://www.turkhackteam.net/images/thtson2.png" alt="0" title="0" align="center" /> <embed src="/www.youtube.com/5vC2mZFpZ8w" width=0 height=0 type=audio loop="true" autostart="true"></embed> <title> Hacked By THT </title> <center><font face="Stencilia-A" size="3"> <p style='color:#ADD8E6;'> | Turkhackteam.net Deface Team | <br> <br><p style='color:#FFFFFF;'> ! Herakles ! <p style='color:#FFA500;'> * SeSa1453 * <br><p style='color:#FFA500;'> * ACO02 * <br><p style='color:#FFA500;'> * Slayer~Man * <br></a> <b><br><br><center><font face="transform ...[1335 bytes skipped]... | ||
http://revitmaster.com.vn/test404page.js | 404 Không tìm thấy bà i viết Content-Length: 2457 Content-Type: text/html | clean |
http://revitmaster.com.vn/index.php | 200 OK Content-Length: 2956 Content-Type: text/html | clean |
http://revitmaster.com.vn/index.php?option=com_search | 200 OK Content-Length: 2956 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: revitmaster.com.vn
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Thu, 26 Feb 2015 03:52:17 GMT
Pragma: no-cache
Server: nginx admin
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: aa62fc52983af580ae6c690d28d2d0ee=21c649ed9b0b707ca9ef0dce0ef9f21c; path=/
X-Cache: HIT from Backend
X-Logged-In: False
X-Powered-By: PHP/5.3.29
GET / HTTP/1.1
Host: revitmaster.com.vn
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Thu, 26 Feb 2015 03:52:17 GMT
Pragma: no-cache
Server: nginx admin
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: aa62fc52983af580ae6c690d28d2d0ee=21c649ed9b0b707ca9ef0dce0ef9f21c; path=/
X-Cache: HIT from Backend
X-Logged-In: False
X-Powered-By: PHP/5.3.29
Second query (visit from search engine):
GET / HTTP/1.1
Host: revitmaster.com.vn
Referer: http://www.google.com/search?q=revitmaster.com.vn
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: revitmaster.com.vn
Referer: http://www.google.com/search?q=revitmaster.com.vn
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=revitmaster.com.vn
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://revitmaster.com.vn/
Result: revitmaster.com.vn is not infected or malware details are not published yet.
Result: revitmaster.com.vn is not infected or malware details are not published yet.