Scanned pages/files
Request | Server response | Status |
http://batalaalemedia.com/ | 200 OK Content-Length: 120557 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: US Centcom Twitter account hacked by pro-IS group ...[101000 bytes skipped]... roup"> <img src="http://batalaalenews.net/uploads//article/photo/IMG_62DB7E-63A9CD-71B00A-C86C85-965B00-99ABB7.png" alt="" width="120" height="80" style="border-width:0px;" /> </a> </div> <div class="title"> <a href="http://batalaalenews.net/articles/17576/US-Centcom-Twitter-account-hacked-by-pro-IS-group">US Centcom Twitter account hacked by pro-IS group</a> </div> <div class="description"> <p>Subsequent posts on the Centcom Twitter account said: "Pentagon Networks Hacked! China Scenarios" and "Pentagon Networks Hacked. Korean Scenarios."</p> <div class="clear"></div> <p style="color:#930; font-style:italic"> Tuesday January 13, 2015 - 06:44:50 </p> </div> ...[39081 bytes skipped]... | ||
http://batalaalenews.net/assets/js/jquery.js | 200 OK Content-Length: 91358 Content-Type: application/javascript | clean |
http://batalaalenews.net/assets/js/swfobject.js | 200 OK Content-Length: 6887 Content-Type: application/javascript | clean |
http://batalaalenews.net/assets/colorbox/js/jquery.colorbox.js | 200 OK Content-Length: 26063 Content-Type: application/javascript | clean |
http://batalaalenews.net/assets/js/script.js | 200 OK Content-Length: 2489 Content-Type: application/javascript | clean |
http://batalaalenews.net/theme/batalaale/js/swfobject-2.1.js | 200 OK Content-Length: 9763 Content-Type: application/javascript | clean |
http://batalaalenews.net/assets/js/tooltip.js | 200 OK Content-Length: 10594 Content-Type: application/javascript | clean |
http://batalaalenews.net/theme/batalaale/js/slider.js | 200 OK Content-Length: 9687 Content-Type: application/javascript | clean |
http://batalaalenews.net/theme/batalaale/js/ticker.js | 200 OK Content-Length: 4145 Content-Type: application/javascript | clean |
http://batalaalemedia.com//pagead2.googlesyndication.com/pagead/show_ads.js/ | 404 Not Found Content-Length: 723 Content-Type: text/html | clean |
http://batalaalemedia.com/test404page.js | 404 Not Found Content-Length: 723 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: batalaalemedia.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 16 Feb 2015 23:03:06 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=576414b5d491002849c7f8813610889f; path=/
Set-Cookie: hitcookie=1424127786; expires=Tue, 17-Feb-2015 00:03:06 GMT
GET / HTTP/1.1
Host: batalaalemedia.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 16 Feb 2015 23:03:06 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=576414b5d491002849c7f8813610889f; path=/
Set-Cookie: hitcookie=1424127786; expires=Tue, 17-Feb-2015 00:03:06 GMT
Second query (visit from search engine):
GET / HTTP/1.1
Host: batalaalemedia.com
Referer: http://www.google.com/search?q=batalaalemedia.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: batalaalemedia.com
Referer: http://www.google.com/search?q=batalaalemedia.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=batalaalemedia.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://batalaalemedia.com/
Result: batalaalemedia.com is not infected or malware details are not published yet.
Result: batalaalemedia.com is not infected or malware details are not published yet.