Scanned pages/files
| Request | Server response | Status |
http://666klub.ru/ | 200 OK Content-Length: 35164 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by RedHaT ...[5746 bytes skipped]... ;p></head></p> <p><body text="#FFFFFF" bgcolor="#000000"></p> <p align="center"> <p><a target="_blank" href="http://kizilsapkalihackerlar.blogspot.com.tr/"><br /> <img border="0" src="http://i.hizliresim.com/kkn847.gif" width="320" height="240"></a></p> <p align="center"><font face="Impact" size="5" color="#FF0000">Hacked by RedHaT<br /> </font><b><font color="#FF0000" face="Tahoma" size="5"><br /> (KızılŞapkalıHackerlar)</font></b><font face="Impact" size="5" color="#FF0000"></p> <p align="center"><font color="#808080" face="Tahoma" size="2">"Orospu; para karşılığı birlikte olan kadına denir, Senin ki kuyruk acıs& ...[35086 bytes skipped]... | ||
http://666klub.ru/wp-content/themes/twentytwelve/js/navigation.js?ver=1.0 | 200 OK Content-Length: 863 Content-Type: application/javascript | clean |
http://666klub.ru/?page_id=2 | 200 OK Content-Length: 11440 Content-Type: text/html | clean |
http://666klub.ru/wp-admin/ | 401 Authorization Required Content-Length: 563 Content-Type: text/html | clean |
http://666klub.ru/test404page.js | 404 Not Found Content-Length: 493 Content-Type: text/html | clean |
http://666klub.ru/wp-login.php?redirect_to=http%3A%2F%2F666klub.ru%2F%3Fpage_id%3D2 | 200 OK Content-Length: 2790 Content-Type: text/html | clean |
http://666klub.ru/wp-login.php?action=lostpassword | 200 OK Content-Length: 2529 Content-Type: text/html | clean |
http://666klub.ru/wp-login.php | 200 OK Content-Length: 2789 Content-Type: text/html | clean |
http://666klub.ru/?p=2389 | 200 OK Content-Length: 15385 Content-Type: text/html | clean |
http://666klub.ru/?author=1 | 200 OK Content-Length: 35980 Content-Type: text/html | clean |
http://666klub.ru/?author=1&paged=2 | 200 OK Content-Length: 26417 Content-Type: text/html | clean |
http://666klub.ru/?author=1&paged=3 | 200 OK Content-Length: 29036 Content-Type: text/html | clean |
http://666klub.ru/?author=1&paged=4 | 200 OK Content-Length: 28409 Content-Type: text/html | clean |
http://666klub.ru/?author=1&paged=5 | 200 OK Content-Length: 30464 Content-Type: text/html | clean |
http://666klub.ru/?author=1&paged=6 | 200 OK Content-Length: 27257 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 666klub.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 11 Jun 2015 22:35:58 GMT
Server: nginx admin
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Cache: HIT from Backend
X-Pingback: http://666klub.ru/xmlrpc.php
X-Powered-By: PHP/5.4.22
GET / HTTP/1.1
Host: 666klub.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 11 Jun 2015 22:35:58 GMT
Server: nginx admin
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Cache: HIT from Backend
X-Pingback: http://666klub.ru/xmlrpc.php
X-Powered-By: PHP/5.4.22
Second query (visit from search engine):
GET / HTTP/1.1
Host: 666klub.ru
Referer: http://www.google.com/search?q=666klub.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 666klub.ru
Referer: http://www.google.com/search?q=666klub.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=666klub.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://666klub.ru/
Result: 666klub.ru is not infected or malware details are not published yet.
Result: 666klub.ru is not infected or malware details are not published yet.