Scanned pages/files
| Request | Server response | Status |
http://ashkevarnews.ir/ | 200 OK Content-Length: 215445 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Clinkz48 ...[41726 bytes skipped]... Ø¢ÙØ±Û ÙÙاز٠آراÛØ´Û Ø¨ÙØ¯Ø§Ø´ØªÛ ØºÛر٠جاز در ÙÙگرÙد","اÙØªØªØ§Ø 3 جاÛگا٠سÙخت سÛâاÙâØ¬Û Ø¯Ø± Ú¯ÛÙاÙ","عÙبâ٠اÙدگÛââÙØ§Û Ø±Ùدبار جبرا٠٠ÛâØ´Ùد/ اÙØªØªØ§Ø 4 ÙرستÙد٠دÛجÛتا٠در رÙدبار","ØضÙر Ù٠اÛÙدگا٠گÛÙا٠در رÙابتâÙØ§Û Ù ÛÙÛ ÙاÙÛبا٠ÙÙر٠اÙÛ Ø¯Ø®ØªØ±Ø§Ù Ú©Ø´Ùر ","Hacked by Clinkz48"," د٠Ùزار Ù 810 بÛ٠ار خاص در Ú¯ÛÙا٠از کارت ÙÙØ´Ù Ùد برخÙردارÙد","ضع٠Ù٠اÛØ´Ùا٠ÙââÙÙÛØ³Û Ù Ø¹Ø¯Ù Ø٠اÛت از Ù ÙÙ âترÛÙ ÚاÙØ´âââÙØ§Û ØªØ¦Ø§ØªØ± است / ÙجÙد رکÙد در تئاتر استاÙâÙا","ØضÙر 10 استا٠در جشÙÙار٠٠ÙØ·ÙÙâØ§Û Ø³Ùر٠٠ا٠در زÙجاÙ","آغاز Ùا٠ÙÙÛØ³Û Ø§Ø² صادرکÙÙدگا٠ÙÙ ÙÙÙ "," ساخت Ù Ùصب Ú ...[181683 bytes skipped]... | ||
http://ashkevarnews.ir/Lof/jquery_002.js | 200 OK Content-Length: 93867 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/Lof/jquery_003.js | 200 OK Content-Length: 8097 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/Lof/jquery.js | 200 OK Content-Length: 10509 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/Lof/script.js | 200 OK Content-Length: 14174 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/ajax-pagetopage.js | 200 OK Content-Length: 11074 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/map.kochak/jquery-migrate-1.js | 200 OK Content-Length: 7199 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/d/js/modernizr.custom.97074.js | 200 OK Content-Length: 8215 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/jquery.blueberry.js | 200 OK Content-Length: 5136 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/slider/js/jquery.easing.1.3.js | 200 OK Content-Length: 8097 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/slider/js/jquery.mousewheel.js | 200 OK Content-Length: 2235 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/slider/js/jquery.contentcarousel.js | 200 OK Content-Length: 8877 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/JQuery%20Tabber_files/script.js | 200 OK Content-Length: 503 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/js/vertical.news.slider.js | 200 OK Content-Length: 3870 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/admin/reg.htm | 200 OK Content-Length: 7130 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ashkevarnews.ir
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 09 Oct 2015 02:40:23 GMT
Accept-Ranges: bytes
Server: LiteSpeed
Content-Type: text/html
GET / HTTP/1.1
Host: ashkevarnews.ir
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 09 Oct 2015 02:40:23 GMT
Accept-Ranges: bytes
Server: LiteSpeed
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: ashkevarnews.ir
Referer: http://www.google.com/search?q=ashkevarnews.ir
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ashkevarnews.ir
Referer: http://www.google.com/search?q=ashkevarnews.ir
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ashkevarnews.ir
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ashkevarnews.ir/
Result: ashkevarnews.ir is not infected or malware details are not published yet.
Result: ashkevarnews.ir is not infected or malware details are not published yet.