Scanned pages/files
| Request | Server response | Status |
http://akuluarabatamiri.net/ | 200 OK Content-Length: 9558 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Armenian King Hackers ...[8085 bytes skipped]... 186, 176); } h1,h2,a { color: red; } </style> </head> <body> <img src="http://www.recognize1915.am/images/header_recognize.png"><br> <div class="block1" style="color: black; font-family: Nova Square; font-size: 29pt; text-shadow: red 0px 0px 6px, red 0px 0px 5px, red 0px 0px 5px;" > <h1>Hacked By Armenian King Hackers</h1> <!-- start Video--> <iframe width="420" height="315" src="http://www.youtube.com/embed/i0t-JXdEI2w" frameborder="0" allowfullscreen ></iframe> <iframe width="420" height="315" src="http://www.youtube.com/embed/B9V6S08n0So" frameborder="0" allowfullscreen ></iframe> <iframe width="420" height="315" src="http://www.youtube.com/embed/B9gH48fLCYc" frameborder="0" allowfullscreen ></iframe& ...[3247 bytes skipped]... | ||
http://akuluarabatamiri.net/js/jquery-1.3.2.min.js | 200 OK Content-Length: 57271 Content-Type: application/x-javascript | clean |
http://akuluarabatamiri.net/js/cufon-yui.js | 200 OK Content-Length: 18257 Content-Type: application/x-javascript | clean |
http://akuluarabatamiri.net/js/arial.js | 200 OK Content-Length: 300890 Content-Type: application/x-javascript | clean |
http://akuluarabatamiri.net/js/cuf_run.js | 200 OK Content-Length: 59 Content-Type: application/x-javascript | clean |
http://akuluarabatamiri.net/js/lib/modernizr.min.js | 200 OK Content-Length: 6824 Content-Type: application/x-javascript | clean |
http://akuluarabatamiri.net/wow/jquery.js | 200 OK Content-Length: 93637 Content-Type: application/x-javascript | clean |
http://akuluarabatamiri.net/wow/wowslider.js | 200 OK Content-Length: 22132 Content-Type: application/x-javascript | clean |
http://akuluarabatamiri.net/wow/script.js | 200 OK Content-Length: 6501 Content-Type: application/x-javascript | clean |
http://akuluarabatamiri.net/js/lightbox-2.6.min.js | 200 OK Content-Length: 7388 Content-Type: application/x-javascript | clean |
http://akuluarabatamiri.net/js/jquery.flexslider.js | 200 OK Content-Length: 52652 Content-Type: application/x-javascript | clean |
http://www.webtemsilcisi.com/online.php?url=akuluarabatamiri.net&kenar=1&kenar_renk=333333&genislik=150&zemin_renk=CCFF00&yazi_renk=000000&gizlimi=hayir | 200 OK Content-Length: 2512 Content-Type: text/html | clean |
http://www.webtemsilcisi.com/urlal.php?service=counter&urlid=89685&url='+url+'&refurl='+refurl+' | 200 OK Content-Length: 19 Content-Type: text/html | clean |
http://www.webtemsilcisi.com/test404page.js | 404 Not Found Content-Length: 2693 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: akuluarabatamiri.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 09 Jul 2015 19:36:21 GMT
Server: Apache/2.2.3 (CentOS)
Content-Type: text/html
X-Powered-By: PHP/5.3.3
X-Powered-By: PleskLin
GET / HTTP/1.1
Host: akuluarabatamiri.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 09 Jul 2015 19:36:21 GMT
Server: Apache/2.2.3 (CentOS)
Content-Type: text/html
X-Powered-By: PHP/5.3.3
X-Powered-By: PleskLin
Second query (visit from search engine):
GET / HTTP/1.1
Host: akuluarabatamiri.net
Referer: http://www.google.com/search?q=akuluarabatamiri.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: akuluarabatamiri.net
Referer: http://www.google.com/search?q=akuluarabatamiri.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=akuluarabatamiri.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://akuluarabatamiri.net/
Result: akuluarabatamiri.net is not infected or malware details are not published yet.
Result: akuluarabatamiri.net is not infected or malware details are not published yet.