Scanned pages/files
Request | Server response | Status |
http://startupbusinessbanker.com/ | 200 OK Content-Length: 16111 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: --::[ Hacked By Mr.ZackMalz ]::-- ...[669 bytes skipped]... t; <center><div style="border: 2px solid ; overflow: auto; color: black; background-color: black; width: 100%;"><h2> <center></center> <script language="JavaScript1.2">/* Neon Lights Text By JavaScript Kit (http://javascriptkit.com) For this script, TOS, and 100s more DHTML scripts, Visit http://www.dynamicdrive.com */ var message="--::[ Hacked By Mr.ZackMalz ]::--" var neonbasecolor="black" var neontextcolor="red" var flashspeed=100 //in milliseconds ///No need to edit below this line///// var n=0 if (document.all||document.getElementById){ document.write('<font color="'+neonbasecolor+'">') for (m=0;m<message.length;m++) document.write('<span id="neonlight'+m+'">'+message.charAt(m)+'</span>') document.write('</font>') } else document ...[18519 bytes skipped]... | ||
http://edge.quantserve.com/quant.js | 200 OK Content-Length: 7874 Content-Type: application/x-javascript | clean |
http://www.statcounter.com/counter/counter_xhtml.js | 200 OK Content-Length: 15530 Content-Type: application/x-javascript | clean |
http://startupbusinessbanker.com/test404page.js | 200 OK Content-Length: 16111 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: startupbusinessbanker.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 04 Sep 2014 12:01:24 GMT
Server: nginx/1.6.1
Content-Type: text/html
GET / HTTP/1.1
Host: startupbusinessbanker.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 04 Sep 2014 12:01:24 GMT
Server: nginx/1.6.1
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: startupbusinessbanker.com
Referer: http://www.google.com/search?q=startupbusinessbanker.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: startupbusinessbanker.com
Referer: http://www.google.com/search?q=startupbusinessbanker.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=startupbusinessbanker.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://startupbusinessbanker.com/
Result: startupbusinessbanker.com is not infected or malware details are not published yet.
Result: startupbusinessbanker.com is not infected or malware details are not published yet.