Scanned pages/files
| Request | Server response | Status |
http://akil-co.biz/ | HTTP/1.1 303 See Other Cache-Control: max-age=0 Connection: close Date: Sun, 27 Apr 2014 18:05:04 GMT Location: http://www.akil-co.com/ Server: nginx Content-Length: 359 Content-Type: text/html; charset=iso-8859-1 Expires: Sun, 27 Apr 2014 18:05:04 GMT | clean |
http://www.akil-co.com/ | 200 OK Content-Length: 57531 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Virus Gaza ...[4744 bytes skipped]... currentpos=document.body.scrollTop+speed else currentpos=window.pageYOffset+speed window.scroll(0,currentpos) } else{ currentpos=30 window.scroll(0,currentpos) } } function startit(){ setInterval("scrollwindow()",30) } window.onload=initialize </script> <meta http-equiv="Content-Language" content="ar-eg"> <meta http-equiv="Content-Type" content="text/html; charset=windows-1256"><title>Hacked By Virus Gaza</title> <meta name="keywords" content="Hacked By Virus Gaza"> <meta name="description" content="Hacked By Virus Gaza"> </head><body style="background-image: url(http://im37.gulfup.com/OzwQW.gif); color: rgb(0, 0, 0); background-color: rgb(0, 0, 0);" alink="#ee0000" link="#0000ee" vlink="#551a8b"> <p style="color: rgb(255, 255, 255); font-family: "Times New Roman"; font-size: medium; font-style: normal; font-variant: nor ...[63184 bytes skipped]... | ||
http://www.akil-co.com/index.jsp?inc=3&id=23&lang=ar&type=7 | 200 OK Content-Length: 29916 Content-Type: text/html | clean |
http://www.akil-co.com/products/GSET-4x.pdf | 200 OK Content-Length: 297964 Content-Type: application/pdf | clean |
http://www.akil-co.com/test404page.js | 404 Not Found Content-Length: 3652 Content-Type: text/html | clean |
http://www.akil-co.com/products/ProductImage2_8352683.jpg | 200 OK Content-Length: 113849 Content-Type: image/jpeg | clean |
http://www.akil-co.com/products/ProductImage2_3487351.jpg | 200 OK Content-Length: 128429 Content-Type: image/jpeg | clean |
http://www.akil-co.com/index.jsp?inc=3&id=35&lang=ar&type=7 | 200 OK Content-Length: 15593 Content-Type: text/html | clean |
http://www.akil-co.com/index.jsp?inc=3&id=34&lang=ar&type=7 | 200 OK Content-Length: 14464 Content-Type: text/html | clean |
http://www.akil-co.com/index.jsp?inc=3&id=33&lang=ar&type=7 | 200 OK Content-Length: 14050 Content-Type: text/html | clean |
http://www.akil-co.com/index.jsp?inc=3&id=32&lang=ar&type=7 | 200 OK Content-Length: 12713 Content-Type: text/html | clean |
http://www.akil-co.com/index.jsp?inc=3&id=27&lang=ar&type=7 | 200 OK Content-Length: 28927 Content-Type: text/html | clean |
http://www.akil-co.com/products/MEM-1.pdf | 200 OK Content-Length: 103986 Content-Type: application/pdf | clean |
http://www.akil-co.com/index.jsp?inc=3&id=26&lang=ar&type=7 | 200 OK Content-Length: 17598 Content-Type: text/html | clean |
http://www.akil-co.com/products/GSET-2-96.pdf | 200 OK Content-Length: 49908 Content-Type: application/pdf | clean |
http://www.akil-co.com/index.jsp?inc=3&id=25&lang=ar&type=7 | 200 OK Content-Length: 16085 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: akil-co.biz
Result:
HTTP/1.1 303 See Other
Cache-Control: max-age=0
Connection: close
Date: Sun, 27 Apr 2014 18:05:04 GMT
Location: http://www.akil-co.com/
Server: nginx
Content-Length: 359
Content-Type: text/html; charset=iso-8859-1
Expires: Sun, 27 Apr 2014 18:05:04 GMT
...359 bytes of data.
GET / HTTP/1.1
Host: akil-co.biz
Result:
HTTP/1.1 303 See Other
Cache-Control: max-age=0
Connection: close
Date: Sun, 27 Apr 2014 18:05:04 GMT
Location: http://www.akil-co.com/
Server: nginx
Content-Length: 359
Content-Type: text/html; charset=iso-8859-1
Expires: Sun, 27 Apr 2014 18:05:04 GMT
...359 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: akil-co.biz
Referer: http://www.google.com/search?q=akil-co.biz
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: akil-co.biz
Referer: http://www.google.com/search?q=akil-co.biz
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=akil-co.biz
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://akil-co.biz/
Result: akil-co.biz is not infected or malware details are not published yet.
Result: akil-co.biz is not infected or malware details are not published yet.