Scanned pages/files
Request | Server response | Status |
http://ashkevarnews.ir/ | 200 OK Content-Length: 215445 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Clinkz48 ...[41726 bytes skipped]... Ø¢ÙØ±Û ÙÙØ§Ø²Ù Ø¢Ø±Ø§ÛØ´Û Ø¨ÙØ¯Ø§Ø´ØªÛ ØºÛØ±Ù جاز در ÙÙÚ¯Ø±ÙØ¯","Ø§ÙØªØªØ§Ø 3 جاÛÚ¯Ø§Ù Ø³ÙØ®Øª سÛâØ§ÙâØ¬Û Ø¯Ø± Ú¯ÛÙØ§Ù","Ø¹ÙØ¨âÙ Ø§ÙØ¯Ú¯ÛââÙØ§Û Ø±ÙØ¯Ø¨Ø§Ø± جبرا٠٠ÛâØ´ÙØ¯/ Ø§ÙØªØªØ§Ø 4 ÙØ±Ø³ØªÙØ¯Ù Ø¯ÛØ¬Ûتا٠در Ø±ÙØ¯Ø¨Ø§Ø±","ØØ¶Ùر Ù٠اÛÙØ¯Ú¯Ø§Ù Ú¯ÛÙØ§Ù در Ø±ÙØ§Ø¨ØªâÙØ§Û Ù ÛÙÛ ÙØ§ÙÛØ¨Ø§Ù ÙÙØ±Ù اÙÛ Ø¯Ø®ØªØ±Ø§Ù Ú©Ø´ÙØ± ","Hacked by Clinkz48"," Ø¯Ù ÙØ²Ø§Ø± Ù 810 بÛ٠ار خاص در Ú¯ÛÙØ§Ù از کارت ÙÙØ´Ù ÙØ¯ Ø¨Ø±Ø®ÙØ±Ø¯Ø§Ø±Ùد","ضع٠ÙÙ Ø§ÛØ´Ùا٠ÙââÙÙÛØ³Û ٠عد٠ØÙ Ø§ÛØª از Ù ÙÙ âØªØ±ÛÙ ÚØ§ÙØ´âââÙØ§Û تئاتر است / ÙØ¬Ùد Ø±Ú©ÙØ¯ در تئاتر استاÙâÙØ§","ØØ¶Ùر 10 استا٠در جشÙÙØ§Ø±Ù Ù ÙØ·ÙÙâØ§Û Ø³ÙØ±Ù ٠ا٠در Ø²ÙØ¬Ø§Ù","آغاز ÙØ§Ù ÙÙÛØ³Û از صادرکÙÙØ¯Ú¯Ø§Ù ÙÙ ÙÙÙ "," ساخت Ù ÙØµØ¨ Ú ...[181683 bytes skipped]... | ||
http://ashkevarnews.ir/Lof/jquery_002.js | 200 OK Content-Length: 93867 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/Lof/jquery_003.js | 200 OK Content-Length: 8097 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/Lof/jquery.js | 200 OK Content-Length: 10509 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/Lof/script.js | 200 OK Content-Length: 14174 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/ajax-pagetopage.js | 200 OK Content-Length: 11074 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/map.kochak/jquery-migrate-1.js | 200 OK Content-Length: 7199 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/d/js/modernizr.custom.97074.js | 200 OK Content-Length: 8215 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/jquery.blueberry.js | 200 OK Content-Length: 5136 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/slider/js/jquery.easing.1.3.js | 200 OK Content-Length: 8097 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/slider/js/jquery.mousewheel.js | 200 OK Content-Length: 2235 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/slider/js/jquery.contentcarousel.js | 200 OK Content-Length: 8877 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/JQuery%20Tabber_files/script.js | 200 OK Content-Length: 503 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/js/vertical.news.slider.js | 200 OK Content-Length: 3870 Content-Type: application/javascript | clean |
http://ashkevarnews.ir/admin/reg.htm | 200 OK Content-Length: 7130 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ashkevarnews.ir
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 09 Oct 2015 02:40:23 GMT
Accept-Ranges: bytes
Server: LiteSpeed
Content-Type: text/html
GET / HTTP/1.1
Host: ashkevarnews.ir
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 09 Oct 2015 02:40:23 GMT
Accept-Ranges: bytes
Server: LiteSpeed
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: ashkevarnews.ir
Referer: http://www.google.com/search?q=ashkevarnews.ir
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ashkevarnews.ir
Referer: http://www.google.com/search?q=ashkevarnews.ir
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ashkevarnews.ir
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ashkevarnews.ir/
Result: ashkevarnews.ir is not infected or malware details are not published yet.
Result: ashkevarnews.ir is not infected or malware details are not published yet.