Scanned pages/files
| Request | Server response | Status |
http://znotech.com/ | 200 OK Content-Length: 9607 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by evil-net ...[235 bytes skipped]... --[if IE 8 ]> <html class="no-js ie8" dir="ltr" lang="en-US"> <![endif]--> <!--[if (gte IE 9)|!(IE)]><!--> <html class="no-js" dir="ltr" lang="en-US"> <!--<![endif]--> <head> <meta charset="UTF-8" /> <meta name="viewport" content="width=device-width, user-scalable=no, initial-scale=1.0, minimum-scale=1.0, maximum-scale=1.0"> <title>Hacked by evil-net</title> <link rel="profile" href="http://gmpg.org/xfn/11" /> <link rel="pingback" href="http://znotech.com/xmlrpc.php" /> <link rel="alternate" type="application/rss+xml" title="Hacked by evil-net » Feed" href="http://znotech.com/feed/" /> <link rel="alternate" type="application/rss+xml" title="Hacked by evil-net » Comments Feed" href="http://znotech.com/comments/feed/" /> <link rel='stylesheet' id=' ...[10524 bytes skipped]... | ||
http://znotech.com/wp-includes/js/jquery/jquery.js?ver=1.7.2 | 200 OK Content-Length: 94861 Content-Type: application/javascript | clean |
http://znotech.com/wp-content/plugins/smooth-slider/js/jcycle.js?ver=2.4 | 200 OK Content-Length: 51965 Content-Type: application/javascript | clean |
http://znotech.com/wp-content/themes/responsive/js/responsive-modernizr.js?ver=2.6.1 | 200 OK Content-Length: 15117 Content-Type: application/javascript | clean |
http://znotech.com/wp-content/themes/responsive/js/responsive-scripts.js?ver=1.2.1 | 200 OK Content-Length: 11265 Content-Type: application/javascript | clean |
http://znotech.com/wp-content/themes/responsive/js/responsive-plugins.js?ver=1.1.1 | 200 OK Content-Length: 938 Content-Type: application/javascript | clean |
http://znotech.com/about/ | 200 OK Content-Length: 8578 Content-Type: text/html | clean |
http://znotech.com/product/ | 200 OK Content-Length: 8640 Content-Type: text/html | clean |
http://znotech.com/services/ | 200 OK Content-Length: 8603 Content-Type: text/html | clean |
http://znotech.com/csr/ | 200 OK Content-Length: 8592 Content-Type: text/html | clean |
http://znotech.com/contact/ | 200 OK Content-Length: 8305 Content-Type: text/html | clean |
http://znotech.com/blog/ | 200 OK Content-Length: 10123 Content-Type: text/html | clean |
http://znotech.com/check/ | 200 OK Content-Length: 9210 Content-Type: text/html | clean |
http://znotech.com/category/uncategorized/ | 200 OK Content-Length: 10367 Content-Type: text/html | clean |
http://znotech.com/author/admin/ | 200 OK Content-Length: 10400 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: znotech.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 31 Jul 2015 13:59:08 GMT
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.3.29
Content-Type: text/html; charset=UTF-8
X-Pingback: http://znotech.com/xmlrpc.php
X-Powered-By: PHP/5.3.29
GET / HTTP/1.1
Host: znotech.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 31 Jul 2015 13:59:08 GMT
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.3.29
Content-Type: text/html; charset=UTF-8
X-Pingback: http://znotech.com/xmlrpc.php
X-Powered-By: PHP/5.3.29
Second query (visit from search engine):
GET / HTTP/1.1
Host: znotech.com
Referer: http://www.google.com/search?q=znotech.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: znotech.com
Referer: http://www.google.com/search?q=znotech.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=znotech.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://znotech.com/
Result: znotech.com is not infected or malware details are not published yet.
Result: znotech.com is not infected or malware details are not published yet.