Scanned pages/files
Request | Server response | Status |
http://www.villetex.com/ | 200 OK Content-Length: 20927 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By ./Ghost-Priox ...[318 bytes skipped]... r/><link rel='stylesheet' id='skebggallery-css' href='http://shop4brides.ru/wp-content/themes/irex-lite/SketchBoard/functions/sketch-background-gallery/inc/front/css/skebggallery.css?ver=4.0.1' type='text/css' media='all'/> <script type='text/javascript' src='http://shop4brides.ru/wp-includes/js/jquery/jquery.js?ver=1.11.1'></script> <script type="text/javascript"> <title>Hacked By ./Ghost-Priox</title> <link rel="shortcut icon" href="http://i.cubeupload.com/XtuQbk.png"></link> <link rel="SHORTCUT ICON" href="http://i.cubeupload.com/XtuQbk.png" type="image/x-icon"/> <meta name="author"content="./Ghost-Priox"> <meta name="description"content="GHOSTSEC-TEAM WAS HERE"> <meta property="og:image"content="http://i.cubeupload.com/XtuQbk.png"> <link rel="shortcut icon" href="http://i.cubeuplo ...[23608 bytes skipped]... | ||
https://ajax.googleapis.com/ajax/libs/jquery/1.6.1/jquery.min.js | 200 OK Content-Length: 91342 Content-Type: text/javascript | clean |
https://www.blogger.com/static/v1/common/js/2858158682-csitail.js | 200 OK Content-Length: 2325 Content-Type: text/javascript | clean |
http://www.villetex.com/test404page.js | 200 OK Content-Length: 20927 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: villetex.com
Result:
GET / HTTP/1.1
Host: villetex.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: villetex.com
Referer: http://www.google.com/search?q=villetex.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: villetex.com
Referer: http://www.google.com/search?q=villetex.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=villetex.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://villetex.com/
Result: villetex.com is not infected or malware details are not published yet.
Result: villetex.com is not infected or malware details are not published yet.