Scanned pages/files
Request | Server response | Status |
http://islandboxmagazine.com/ | 200 OK Content-Length: 2851 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: hacked by POWER5HELL CREW <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <html> <head> <title>hacked!</title> <link rel='SHORTCUT ICON' type='image/x-icon' href='http://i48.servimg.com/u/f48/16/08/07/74/indone10.gif'> <meta name="robots" content="index, follow"> <meta name="Description" content="hacked by POWER5HELL CREW"> <meta name="keyword" content="hacked by POWER5HELL CREW"> <meta name="googlebot" content="index,follow" /> <meta name="robots" content="all" /> <meta name="robots schedule" content="auto" /> <meta name="distribution" content="global" /> <body onload="type_text()" alink="#ffffff" vlink="#ffffff" link="#ffffff" text="#ffffff"> <table height=90% w ...[2562 bytes skipped]... | ||
http://islandboxmagazine.com/google_analytics_auto.js | 200 OK Content-Length: 18670 Content-Type: text/html | clean |
http://islandboxmagazine.com/wp-includes/js/jquery/jquery.js?ver=1.11.2 | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://islandboxmagazine.com/test404page.js | 200 OK Content-Length: 18670 Content-Type: text/html | clean |
http://islandboxmagazine.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://islandboxmagazine.com/wp-content/themes/fearless/js/jquery.backstretch.min.js?ver=2.0.3 | 200 OK Content-Length: 4050 Content-Type: application/javascript | clean |
http://islandboxmagazine.com/wp-content/themes/fearless/fancybox/jquery.fancybox-1.3.4.pack.js?ver=1.3.4 | 200 OK Content-Length: 15669 Content-Type: application/javascript | clean |
http://islandboxmagazine.com/wp-content/themes/fearless/js/jquery.fitvids.min.js?ver=4.2.5 | 200 OK Content-Length: 1854 Content-Type: application/javascript | clean |
http://islandboxmagazine.com/wp-content/themes/fearless/js/fearless.js?ver=1.0 | 200 OK Content-Length: 2711 Content-Type: application/javascript | clean |
http://islandboxmagazine.com/wp-content/themes/fearless/js/jquery.flexslider.min.js?ver=2.1 | 200 OK Content-Length: 16959 Content-Type: application/javascript | clean |
http://islandboxmagazine.com/wp-content/themes/fearless/js/jquery.hoverIntent.min.js?ver=r7 | 200 OK Content-Length: 1397 Content-Type: application/javascript | clean |
http://islandboxmagazine.com/wp-content/themes/fearless/js/jquery.superfish.min.js?ver=1.6.9 | 200 OK Content-Length: 4178 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(b){var a=(function(){var p={bcClass:"sf-breadcrumb",menuClass:"sf-js-enabled",anchorClass:"sf-with-ul",menuArrowClass:"sf-arrows"},f=/iPhone|iPad|iPod/i.test(navigator.userAgent),k=(function(){var c=document.documentElement.style;return("behavior" in c&&"fill" in c&&/iemobile/i.test(navigator.userAgent))})(),d=(function(){if(f){b(window).load(function(){b("body").children().on("click",b.noop)})}})(),m=function(s,t){var c=p.menuClass;if(t.cssArrows){c+=" "+p. Antivirus reports:
| ||
http://islandboxmagazine.com/wp-content/themes/fearless/js/jquery.ticker.js?ver=1.0 | 200 OK Content-Length: 15978 Content-Type: application/javascript | clean |
http://islandboxmagazine.com/wp-content/themes/fearless/js/jquery.tinynav.min.js?ver=1.1 | 200 OK Content-Length: 835 Content-Type: application/javascript | clean |
http://islandboxmagazine.com/feed/ | 200 OK Content-Length: 15080 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: islandboxmagazine.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 15 Dec 2015 12:01:06 GMT
Server: nginx/1.8.0
Content-Type: text/html
X-Died: timeout at scan.pm line 1566.
GET / HTTP/1.1
Host: islandboxmagazine.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 15 Dec 2015 12:01:06 GMT
Server: nginx/1.8.0
Content-Type: text/html
X-Died: timeout at scan.pm line 1566.
Second query (visit from search engine):
GET / HTTP/1.1
Host: islandboxmagazine.com
Referer: http://www.google.com/search?q=islandboxmagazine.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: islandboxmagazine.com
Referer: http://www.google.com/search?q=islandboxmagazine.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=islandboxmagazine.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://islandboxmagazine.com/
Result: islandboxmagazine.com is not infected or malware details are not published yet.
Result: islandboxmagazine.com is not infected or malware details are not published yet.