Scanned pages/files
Request | Server response | Status |
http://vitamincommonsense.com/ | 200 OK Content-Length: 9614 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Yheya Alshami ...[1623 bytes skipped]... else{ n=0 clearInterval(flashing) setTimeout("beginneon()",1500) return } } function beginneon(){ if (document.all||document.getElementById) flashing=setInterval("neon()",flashspeed) } beginneon() </script> </h2> </body> </html> <meta content="text/html; charset=windows-1252" http-equiv="Content-Type" /> <title>Hacked By Yheya Alshami</title> <!-- saved from url=(0018)http://07-ksa.com/ --><meta content="en-us" http-equiv="Content-Language" /> <body alink="#EE0000" link="#0000EE" style="background-color: black; color: rgb(0, 0, 0);" vlink="#551A8B"> <style type="text/css"> BODY { SCROLLBAR-ARROW-COLOR: #ffffff; SCROLLBAR-FACE-COLOR: #000000; SCROLLBAR-DARKSHADOW-COLOR: #ffffff; SCROLLBAR-HIGHLIGHT-COLOR: #000000; SCROLLBAR-SHADOW-COLOR: #000000; SCRO ...[8978 bytes skipped]... | ||
http://vitamincommonsense.com/test404page.js | 404 Not Found Content-Length: 5219 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: vitamincommonsense.com
Result:
HTTP/1.1 200 OK
Date: Thu, 18 Sep 2014 03:47:58 GMT
Accept-Ranges: bytes
ETag: "cf14a1e82eeece1:0"
Content-Length: 9614
Content-Type: text/html
Last-Modified: Sun, 01 Dec 2013 00:47:27 GMT
X-Powered-By: ASP.NET
...9614 bytes of data.
GET / HTTP/1.1
Host: vitamincommonsense.com
Result:
HTTP/1.1 200 OK
Date: Thu, 18 Sep 2014 03:47:58 GMT
Accept-Ranges: bytes
ETag: "cf14a1e82eeece1:0"
Content-Length: 9614
Content-Type: text/html
Last-Modified: Sun, 01 Dec 2013 00:47:27 GMT
X-Powered-By: ASP.NET
...9614 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: vitamincommonsense.com
Referer: http://www.google.com/search?q=vitamincommonsense.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: vitamincommonsense.com
Referer: http://www.google.com/search?q=vitamincommonsense.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=vitamincommonsense.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://vitamincommonsense.com/
Result: vitamincommonsense.com is not infected or malware details are not published yet.
Result: vitamincommonsense.com is not infected or malware details are not published yet.