Scanned pages/files
| Request | Server response | Status |
http://ikina.vn/ | HTTP/1.1 302 Found Connection: close Date: Mon, 13 Jul 2015 07:01:21 GMT Location: http://ikina.vn/vi/ Server: cloudflare-nginx Content-Type: text/html; charset=UTF-8 CF-RAY: 20531db49d2405cf-WAW Set-Cookie: __cfduid=d19f732f418546593cc934f6b09c375ea1436770880; expires=Tue, 12-Jul-16 07:01:20 GMT; path=/; domain=.ikina.vn; HttpOnly Set-Cookie: pll_language=vi; expires=Tue, 12-Jul-2016 07:00:18 GMT; path=/ X-Powered-By: PHP/5.2.17 | clean |
http://ikina.vn/vi/ | 200 OK Content-Length: 58467 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Ayyıldız Tim Intenational Force | Sessizce Nöbetteyiz! ...[11382 bytes skipped]... ;/span> <div class="flag col-xs-6"> <div> <div class="textwidget"><!DOCTYPE html> <html lang="tr"> <head> <meta name="apple-mobile-web-app-capable" content="yes"> <meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no"> <meta charset="utf-8"> <title>Hacked By Ayyıldız Tim Intenational Force | Sessizce Nöbetteyiz!</title> <link href='http://fonts.googleapis.com/css?family=Lato:300,400,700|Raleway:300,400,500|Open+Sans:300,400,600,700,800' rel='stylesheet' type='text/css'> <link href="http://ayt-wgt.hostingsiteforfree.com/assets/css/bootstrap.min.css" rel="stylesheet" type="text/css"/> <link href="http://ayt-wgt.hostingsiteforfree.com/assets/css/font-awesome.min.css" rel="stylesheet" type="text/css"/> <lin ...[54546 bytes skipped]... | ||
http://ikina.vn/wp-content/themes/ikina/js/jquery-2.1.1.min.js | 200 OK Content-Length: 84245 Content-Type: application/x-javascript | clean |
http://ikina.vn/wp-content/themes/ikina/js/bootstrap.js | 200 OK Content-Length: 45858 Content-Type: application/x-javascript | clean |
http://ikina.vn/wp-content/themes/ikina/js/js.js | 200 OK Content-Length: 1829 Content-Type: application/x-javascript | clean |
http://ikina.vn/wp-content/themes/ikina/js/jquery-1.11.1.js | 200 OK Content-Length: 149551 Content-Type: application/x-javascript | clean |
http://ikina.vn/wp-content/themes/ikina/js/jquery.easing-1.3.js | 200 OK Content-Length: 3684 Content-Type: application/x-javascript | clean |
http://ikina.vn/wp-content/themes/ikina/js/jquery.mousewheel-3.1.12.js | 200 OK Content-Length: 3824 Content-Type: application/x-javascript | clean |
http://ikina.vn/wp-content/themes/ikina/js/jquery.jcarousellite.js | 200 OK Content-Length: 4660 Content-Type: application/x-javascript | clean |
http://ikina.vn/wp-content/themes/ikina/js/jquery.fancybox.pack.js | 200 OK Content-Length: 23015 Content-Type: application/x-javascript | clean |
http://ikina.vn/wp-content/themes/ikina/js/jquery.elevateZoom-3.0.8.min.js | 200 OK Content-Length: 32922 Content-Type: application/x-javascript | clean |
http://maps.googleapis.com/maps/api/js | 200 OK Content-Length: 4410 Content-Type: text/javascript | clean |
http://ikina.vn/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95720 Content-Type: application/x-javascript | clean |
http://ikina.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/x-javascript | clean |
http://ikina.vn/wp-content/plugins/related-post/js/related-post-scripts.js?ver=4.0.3 | 200 OK Content-Length: 39 Content-Type: application/x-javascript | clean |
http://ikina.vn/wp-content/plugins/related-post/ParaAdmin/js/ParaAdmin.js?ver=4.0.3 | 200 OK Content-Length: 260 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ikina.vn
Result:
HTTP/1.1 302 Found
Connection: close
Date: Mon, 13 Jul 2015 07:01:21 GMT
Location: http://ikina.vn/vi/
Server: cloudflare-nginx
Content-Type: text/html; charset=UTF-8
CF-RAY: 20531db49d2405cf-WAW
Set-Cookie: __cfduid=d19f732f418546593cc934f6b09c375ea1436770880; expires=Tue, 12-Jul-16 07:01:20 GMT; path=/; domain=.ikina.vn; HttpOnly
Set-Cookie: pll_language=vi; expires=Tue, 12-Jul-2016 07:00:18 GMT; path=/
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: ikina.vn
Result:
HTTP/1.1 302 Found
Connection: close
Date: Mon, 13 Jul 2015 07:01:21 GMT
Location: http://ikina.vn/vi/
Server: cloudflare-nginx
Content-Type: text/html; charset=UTF-8
CF-RAY: 20531db49d2405cf-WAW
Set-Cookie: __cfduid=d19f732f418546593cc934f6b09c375ea1436770880; expires=Tue, 12-Jul-16 07:01:20 GMT; path=/; domain=.ikina.vn; HttpOnly
Set-Cookie: pll_language=vi; expires=Tue, 12-Jul-2016 07:00:18 GMT; path=/
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: ikina.vn
Referer: http://www.google.com/search?q=ikina.vn
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ikina.vn
Referer: http://www.google.com/search?q=ikina.vn
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ikina.vn
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ikina.vn/
Result: ikina.vn is not infected or malware details are not published yet.
Result: ikina.vn is not infected or malware details are not published yet.