Scanned pages/files
| Request | Server response | Status |
http://bd64.com/ | 200 OK Content-Length: 24833 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: +ADw-/title+AD4-HACKED BY CELLATREIS <!DOCTYPE html> <html lang="en-US" prefix="og: http://ogp.me/ns#"> <head> <meta charset="UTF-7" /> <title>+ADw-/title+AD4-HACKED BY CELLATREIS HACKED BY CELLATREIS HACKED BY CELLATREIS HACKED BY CELLATREIS HACKED BY CELLATREIS HACKED BY CELLATREIS HACKED BY CELLATREIS HACKED BY CELLATREIS HACKED BY CELLATREIS HACKED BY CELLATREIS HACKED BY CELLATREIS HACKED BY CELLATREIS HACKED BY CELLATREIS HACKED BY CELLATREIS HACKED BY CELLATREIS HACKED BY CELLATREIS HACKED BY CELLATREIS HAC ...[29752 bytes skipped]... | ||
http://bd64.com/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: application/javascript | clean |
http://bd64.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://bd64.com/wp-content/themes/sahifa/js/tie-scripts.js?ver=3.7.5 | 200 OK Content-Length: 62891 Content-Type: application/javascript | clean |
http://bd64.com/feed/ | 200 OK Content-Length: 3464 Content-Type: text/xml | clean |
http://bd64.com/test404page.js | 404 Not Found Content-Length: 22330 Content-Type: text/html | clean |
http://bd64.com/wp-content/themes/sahifa/js/tie-scripts.js?ver=3.7.11 | 200 OK Content-Length: 62891 Content-Type: application/javascript | clean |
http://bd64.com/category/dhaka/ | 200 OK Content-Length: 21185 Content-Type: text/html | clean |
http://bd64.com/wp-content/themes/sahifa/js/tie-scripts.js?ver=3.7.1 | 200 OK Content-Length: 62891 Content-Type: application/javascript | clean |
http://bd64.com/category/dhaka/dhaka-dhaka/ | 200 OK Content-Length: 21523 Content-Type: text/html | clean |
http://bd64.com/category/dhaka/faridpur/ | 200 OK Content-Length: 20855 Content-Type: text/html | clean |
http://bd64.com/category/dhaka/gazipur/ | 200 OK Content-Length: 20847 Content-Type: text/html | clean |
http://bd64.com/category/dhaka/gopalganj/ | 200 OK Content-Length: 20860 Content-Type: text/html | clean |
http://bd64.com/category/dhaka/jamalpur/ | 200 OK Content-Length: 20854 Content-Type: text/html | clean |
http://bd64.com/category/dhaka/kishoreganj/ | 200 OK Content-Length: 20875 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bd64.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=3, must-revalidate
Connection: close
Date: Fri, 27 Nov 2015 14:52:30 GMT
Server: Apache/2.2.31 (Unix) mod_ssl/2.2.31 OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Vary: Accept-Encoding,Cookie
Content-Type: text/html; charset=UTF-8
WP-Super-Cache: Served supercache file from PHP
X-Powered-By: PHP/5.4.44
GET / HTTP/1.1
Host: bd64.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=3, must-revalidate
Connection: close
Date: Fri, 27 Nov 2015 14:52:30 GMT
Server: Apache/2.2.31 (Unix) mod_ssl/2.2.31 OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Vary: Accept-Encoding,Cookie
Content-Type: text/html; charset=UTF-8
WP-Super-Cache: Served supercache file from PHP
X-Powered-By: PHP/5.4.44
Second query (visit from search engine):
GET / HTTP/1.1
Host: bd64.com
Referer: http://www.google.com/search?q=bd64.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bd64.com
Referer: http://www.google.com/search?q=bd64.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bd64.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bd64.com/
Result: bd64.com is not infected or malware details are not published yet.
Result: bd64.com is not infected or malware details are not published yet.