Scanned pages/files
| Request | Server response | Status |
http://www.wondercomb.com/ | 200 OK Content-Length: 58200 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY THE KEY40 <!doctype html> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en"> <!--<![endif]--> <head><title> HACKED BY THE KEY40 </title><link rel="stylesheet" type="text/css" href="/css/slideshow.css" media="screen" /> <script src="/js/swfobject.js" type="text/javascript" language="javascript"></script> <script src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.3/jquery.min.js"></script> <script type="text/javascript" src="/js/fadeSlideShow.js"></script> <meta charset=" ...[64497 bytes skipped]... | ||
http://www.wondercomb.com/js/swfobject.js | 200 OK Content-Length: 6722 Content-Type: application/x-javascript | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.4.3/jquery.min.js | 200 OK Content-Length: 77746 Content-Type: text/javascript | clean |
http://www.wondercomb.com/js/fadeSlideShow.js | 200 OK Content-Length: 6139 Content-Type: application/x-javascript | clean |
http://www.wondercomb.com/js/modernizr-2.0.6.min.js | 200 OK Content-Length: 16226 Content-Type: application/x-javascript | clean |
http://www.wondercomb.com/WebResource.axd?d=wai5vicz8Vb0OSHo7LDIBvBAruop0HZZW9aglRkVJEqzCDr0OTfJe2QZchkEAm7zYZMVEi4QIn0REW6x5G6gaVHUn0Q1&t=635295166417495136 | 200 OK Content-Length: 20794 Content-Type: application/x-javascript | clean |
http://www.wondercomb.com/ScriptResource.axd?d=LvurxZ9dIpgM6BfYVYzDjCHEb_chh56MZ18baYlUsksQmRbl-mSu6FWg7b95by6xjYqxTRbOo9eEL7FBMljjfQSMcm82bTQ8F9KWNk70sNh-t1cvQiw4y5QJyEIw8cuXsYqq0gEMcf1AwKNE2hH-LZ2TFsty57IqW-cVQ56NEd9WOnfs0&t=634759784875847877 | 200 OK Content-Length: 260386 Content-Type: application/x-javascript | clean |
http://www.wondercomb.com/ScriptResource.axd?d=u1LSF-kBYHn-9rSzEVqf-jDbsAVqjrXxC9aTuq9oX9usssrtUAAOyIdaPXRA1FzM1whG9eac7e0ZljDIP2edn2FqVEjOiGAXk5Zi99-151Xh7H-6JrJK6AcoGWzRnDJGP1MxjIQ9PrMmywHfMYAk8IdfwwPpXn7PKCTmOk8rdoF6u7Y_0&t=634759784875847877 | 200 OK Content-Length: 65868 Content-Type: application/x-javascript | clean |
http://www.wondercomb.com/ScriptResource.axd?d=aCYU_ctyaeEDL3L8MskcMwmB_5yxTKjy4QCTo7ITFXN3uxwJuuNlcwM3QpSnauqTegIzwayKJvOjAIX9io08CeuMWgHn1Lz9eW-SbpaGvdf11oQY5LHWq3dYV-3bjLvgqWTYlaqmNRMYcwxsocJMMOTYH981&t=634973250761844001 | 200 OK Content-Length: 28211 Content-Type: text/javascript | clean |
http://www.wondercomb.com/ScriptResource.axd?d=4wuWhLIpidEmIvCfaLRW1njNdz4PJknFDbzZkbmy4CCkYidgyyggq4w99D997UDWy-aTCEBWC1CHtLZrXxecsH9Tk-AwQN6FSSZ8eyCPqBZVjSG8HmS8J_QO91HIK_jE617zb98QPXXaln8P_LvT0IhoHrA1&t=634973250761844001 | 200 OK Content-Length: 1830 Content-Type: text/javascript | clean |
http://www.wondercomb.com/ScriptResource.axd?d=8wgXXFy9ZRicCkTJl2FztD92S2_Agl6JoyDMPQssb3jNvgsiEugxDdBjOthegfN5IyFWAUo4LOY_qSFgIOCtnCyC1to6UXjAXgawfUK0Z5ceUVRTulH9aSe7mwj_5bZu7vJpRm5yQ6ekOQDCRugL7ycHHyw1&t=634973250761844001 | 200 OK Content-Length: 41647 Content-Type: text/javascript | clean |
http://www.wondercomb.com/ScriptResource.axd?d=iJTDgK4xXbLZEELDyd2ykQ5IoCRt8cEm5tKsSW598hLxi5qEyV4anhzDKqUdmozdrHeU0-FIvAHhYQUh3O5dTyk6xNpKKedG-U6_wwF1xa7MHbyuad0qS75pXE4q-uQNJSBgwxjBCOUe2tLAHho9StMl1Nw1&t=634973250761844001 | 200 OK Content-Length: 17394 Content-Type: text/javascript | clean |
http://www.wondercomb.com/ScriptResource.axd?d=bZ-BzEuWYAIv1WdU00qrGT77dGSno1r6F3zz7WQYl6Q3nL166zbvqCd3uJv6kdEXS87nE7akLFYE_gZam5jP-GIgnuAFQ5Kc9FOAp-XomUV-fWDCPIwd1HzpnrsXtN4pNii-ZKBEw7wnEVa8DlPJDxMrhe9AqzrUYHd214stfRoOXH9W0&t=634973250761844001 | 200 OK Content-Length: 18987 Content-Type: text/javascript | clean |
http://www.wondercomb.com/test404page.js | 404 Not Found Content-Length: 1106 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: wondercomb.com
Result:
GET / HTTP/1.1
Host: wondercomb.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: wondercomb.com
Referer: http://www.google.com/search?q=wondercomb.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: wondercomb.com
Referer: http://www.google.com/search?q=wondercomb.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=wondercomb.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://wondercomb.com/
Result: wondercomb.com is not infected or malware details are not published yet.
Result: wondercomb.com is not infected or malware details are not published yet.