Scanned pages/files
Request | Server response | Status |
http://venchecorp.com/ | 200 OK Content-Length: 8559 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: this site has been hacked by iH@cker, hacked by iH@cker , defaced by iH@cker, TEAM : 1ND14N H4X0R5 T ...[1241 bytes skipped]... l){if (e.which==2||e.which==3){alert(message);return false;}}} if (document.layers){document.captureEvents(Event.MOUSEDOWN);document.onmousedown=clickNS4;} else if (document.all&&!document.getElementById){document.onmousedown=clickIE4;} document.oncontextmenu=new Function("alert(message);return false") </script> <meta name="keywords" content="this site has been hacked by iH@cker, hacked by iH@cker , defaced by iH@cker, TEAM : 1ND14N H4X0R5 T34M " /> <title>iH@cker was here ;)</title> <meta name="description" content="[ hacked by iH@cker ]" /> <meta name="robot" content="index,follow"> <meta name="copyright" content="copyright ? 2013 1ND14N H4X0R5T34M. all rights reserved."> <meta name="author" content="IHT"> <meta name="language" content="english"> <meta name="revisit-after" content="1"&g ...[8138 bytes skipped]... | ||
https://ajax.googleapis.com/ajax/libs/jquery/1.6.1/jquery.min.js | 200 OK Content-Length: 91342 Content-Type: text/javascript | clean |
http://venchecorp.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: venchecorp.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 23 Apr 2014 07:41:06 GMT
Accept-Ranges: bytes
ETag: "c1100ba-216f-4e4b8673cdd00"
Server: Apache
Content-Length: 8559
Content-Type: text/html
Last-Modified: Sat, 24 Aug 2013 21:42:44 GMT
...8559 bytes of data.
GET / HTTP/1.1
Host: venchecorp.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 23 Apr 2014 07:41:06 GMT
Accept-Ranges: bytes
ETag: "c1100ba-216f-4e4b8673cdd00"
Server: Apache
Content-Length: 8559
Content-Type: text/html
Last-Modified: Sat, 24 Aug 2013 21:42:44 GMT
...8559 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: venchecorp.com
Referer: http://www.google.com/search?q=venchecorp.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: venchecorp.com
Referer: http://www.google.com/search?q=venchecorp.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=venchecorp.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://venchecorp.com/
Result: venchecorp.com is not infected or malware details are not published yet.
Result: venchecorp.com is not infected or malware details are not published yet.