Scanned pages/files
| Request | Server response | Status |
http://vwbeetle.net/ | 200 OK Content-Length: 10334 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: website forum will be offline for awhile. It was hacked by some idiots who really don ...[6104 bytes skipped]... r/> <td id="contcell" width="500"> <div class="tbox"> <div style="clear:left;float:left;margin-top:15px;"><a href="http://www.vwbug.com/vgallery/thumbnails.php?album=3"><img src="images/th_74bug.jpg" width="176" height="128" alt="" border="0"></a></div> <span class="lt">Website News:</span><br> <p>Our website forum will be offline for awhile. It was hacked by some idiots who really don't have a life of any value; this is why they go around hacking forums...like somehow this is going to further their cause. The forum was completely restored with no data loss; however, I need to patch some security holes. Please keep in touch.<p><hr> <p> <big>Show us your Bug!!!</big><br>Our visitor <a href="http://vwbug.com/vgallery">Bug photo galleries</a> are ...[5873 bytes skipped]... | ||
http://vwbeetle.net/lib.js | 200 OK Content-Length: 4117 Content-Type: application/javascript | clean |
http://vwbeetle.net/index.html | 200 OK Content-Length: 10334 Content-Type: text/html | clean |
http://vwbeetle.net/carphotos.html | 200 OK Content-Length: 14082 Content-Type: text/html | clean |
http://vwbeetle.net/showphotos.html | 200 OK Content-Length: 17058 Content-Type: text/html | clean |
http://vwbeetle.net/cgi-bin/goto.cgi?http://vwbug.com/vgallery | HTTP/1.1 302 Found Cache-Control: no-cache, no-store, must-revalidate, max-age=0 Connection: close Date: Wed, 30 Sep 2015 03:45:25 GMT Location: http://vwbug.com/vgallery Server: LiteSpeed Vary: User-Agent Content-Length: 0 | clean |
http://vwbug.com/vgallery | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 30 Sep 2015 03:45:26 GMT Location: http://vwbug.com/vgallery/ Server: LiteSpeed Vary: User-Agent Content-Length: 1147 Content-Type: text/html | clean |
http://vwbug.com/vgallery/ | 200 OK Content-Length: 10883 Content-Type: text/html | clean |
http://vwbug.com/vgallery/scripts.js | 200 OK Content-Length: 2715 Content-Type: application/javascript | clean |
http://vwbeetle.net/cgi-bin/goto.cgi?http://vwbug.com/function.preg-replace | HTTP/1.1 302 Found Cache-Control: no-cache, no-store, must-revalidate, max-age=0 Connection: close Date: Wed, 30 Sep 2015 03:45:28 GMT Location: http://vwbug.com/function.preg-replace Server: LiteSpeed Vary: User-Agent Content-Length: 0 | clean |
http://vwbug.com/function.preg-replace | 404 Not Found Content-Length: 2290 Content-Type: text/html | clean |
http://vwbug.com/test404page.js | 404 Not Found Content-Length: 2283 Content-Type: text/html | clean |
http://vwbeetle.net/cgi-bin/goto.cgi?http://vwbug.com/../index.html | HTTP/1.1 302 Found Cache-Control: no-cache, no-store, must-revalidate, max-age=0 Connection: close Date: Wed, 30 Sep 2015 03:45:29 GMT Location: http://vwbug.com/../index.html Server: LiteSpeed Vary: User-Agent Content-Length: 0 | clean |
http://vwbug.com/../index.html | 400 Bad Request Content-Length: 1121 Content-Type: text/html | clean |
http://vwbeetle.net/cgi-bin/goto.cgi?http://vwbug.com/index.php | HTTP/1.1 302 Found Cache-Control: no-cache, no-store, must-revalidate, max-age=0 Connection: close Date: Wed, 30 Sep 2015 03:45:30 GMT Location: http://vwbug.com/index.php Server: LiteSpeed Vary: User-Agent Content-Length: 0 | clean |
http://vwbug.com/index.php | 404 Not Found Content-Length: 2278 Content-Type: text/html | clean |
http://vwbeetle.net/cgi-bin/goto.cgi?http://vwbug.com/register.php | HTTP/1.1 302 Found Cache-Control: no-cache, no-store, must-revalidate, max-age=0 Connection: close Date: Wed, 30 Sep 2015 03:45:30 GMT Location: http://vwbug.com/register.php Server: LiteSpeed Vary: User-Agent Content-Length: 0 | clean |
http://vwbug.com/register.php | 404 Not Found Content-Length: 2281 Content-Type: text/html | clean |
http://vwbeetle.net/cgi-bin/goto.cgi?http://vwbug.com/login.php?referer=%2Fvgallery%2Findex.php | 302 Found Content-Length: 0 | clean |
http://vwbeetle.net/cgi-bin/goto.cgi?http://vwbug.com/../forum | HTTP/1.1 302 Found Cache-Control: no-cache, no-store, must-revalidate, max-age=0 Connection: close Date: Wed, 30 Sep 2015 03:45:31 GMT Location: http://vwbug.com/../forum Server: LiteSpeed Vary: User-Agent Content-Length: 0 | clean |
http://vwbug.com/../forum | 400 Bad Request Content-Length: 1121 Content-Type: text/html | clean |
http://vwbeetle.net/cgi-bin/goto.cgi?http://vwbug.com/thumbnails.php?album=lastup | 302 Found Content-Length: 0 | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: vwbeetle.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 30 Sep 2015 03:45:23 GMT
Server: LiteSpeed
Vary: User-Agent
Content-Type: text/html
Set-Cookie: dsection1=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT
Set-Cookie: dsection2=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT
X-Powered-By: PHP/5.3.29
GET / HTTP/1.1
Host: vwbeetle.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 30 Sep 2015 03:45:23 GMT
Server: LiteSpeed
Vary: User-Agent
Content-Type: text/html
Set-Cookie: dsection1=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT
Set-Cookie: dsection2=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT
X-Powered-By: PHP/5.3.29
Second query (visit from search engine):
GET / HTTP/1.1
Host: vwbeetle.net
Referer: http://www.google.com/search?q=vwbeetle.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: vwbeetle.net
Referer: http://www.google.com/search?q=vwbeetle.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=vwbeetle.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://vwbeetle.net/
Result: vwbeetle.net is not infected or malware details are not published yet.
Result: vwbeetle.net is not infected or malware details are not published yet.