Scanned pages/files
Request | Server response | Status |
http://gajriakuwait.com/ | 200 OK Content-Length: 13629 Content-Type: application/x-httpd-php | suspicious |
Deface/Content modification. The following signature was found: Hacked by PhantomGhost <html>
<head> <title>PhantomGhost</title> <link rel="SHORTCUT ICON" href="http://i48.servimg.com/u/f48/16/08/07/74/indone10.gif"> <meta name="description" content="Hacked by PhantomGhost"> <meta name="keywords" content="hacked by PhantomGhost , touched by PhantomGhost , owned by PhantomGhost , patched by PhantomGhost , defaced by PhantomGhost , attacked by PhantomGhost , stamped by PhantomGhost"/> <Script Language='Javascript'> //JS salju jatuh :v if ((document.getElementById) && window.addEventListener || window.attachEvent){ (function(){ ...[15685 bytes skipped]... | ||
http://gajriakuwait.com/test404page.js | 404 Not Found Content-Length: 653 Content-Type: text/html | clean |
http://cdn.dsultra.com/js/registrar.js | 200 OK Content-Length: 1652 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: gajriakuwait.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 18 Sep 2014 18:09:29 GMT
Accept-Ranges: bytes
ETag: "2318240-353d-5007d57c518c0"
Server: Apache
Content-Length: 13629
Content-Type: application/x-httpd-php
Last-Modified: Wed, 13 Aug 2014 07:00:27 GMT
X-Pad: avoid browser bug
...13629 bytes of data.
GET / HTTP/1.1
Host: gajriakuwait.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 18 Sep 2014 18:09:29 GMT
Accept-Ranges: bytes
ETag: "2318240-353d-5007d57c518c0"
Server: Apache
Content-Length: 13629
Content-Type: application/x-httpd-php
Last-Modified: Wed, 13 Aug 2014 07:00:27 GMT
X-Pad: avoid browser bug
...13629 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: gajriakuwait.com
Referer: http://www.google.com/search?q=gajriakuwait.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: gajriakuwait.com
Referer: http://www.google.com/search?q=gajriakuwait.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=gajriakuwait.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://gajriakuwait.com/
Result: gajriakuwait.com is not infected or malware details are not published yet.
Result: gajriakuwait.com is not infected or malware details are not published yet.