Scanned pages/files
Request | Server response | Status |
http://jkvoyage.com/ | 200 OK Content-Length: 2306 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By ...[451 bytes skipped]... ><link href="http://fonts.googleapis.com/css?family=Geo" rel="stylesheet" type="text/css"> </head> <body style="background-color: white;"> <div align="center"> <center><img src="http://i.hizliresim.com/lyEnql.gif"> <br> <p><font style="color: rgb(0, 0, 0); text-shadow: rgb(0, 0, 0) 0px 1px 7px;" color="black" face="Share Tech Mono" size="5">Hacked By <font color="red" face="Share Tech Mono" size="5">HADES</font> <br> <br> <font color="black" face="Share Tech Mono" size="4"><font color="red">[</font><font style="color: rgb(0, 0, 0); text-shadow: rgb(0, 0, 0) 0px 1px 7px;" face="Geo" size="4">Dusunnmeden konusmanIn cezasI sonradan dusunmeye mahkum olmaktIr.</font><font color="red">]</font></font></font></p> <hr align="c ...[1527 bytes skipped]... | ||
http://jkvoyage.com/test404page.js | 404 Not Found Content-Length: 281 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: jkvoyage.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 29 Aug 2015 09:09:31 GMT
Server: Apache/2.2.22
Vary: User-Agent,Accept-Encoding
Content-Type: text/html
X-Powered-By: PHP/5.3.29
GET / HTTP/1.1
Host: jkvoyage.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 29 Aug 2015 09:09:31 GMT
Server: Apache/2.2.22
Vary: User-Agent,Accept-Encoding
Content-Type: text/html
X-Powered-By: PHP/5.3.29
Second query (visit from search engine):
GET / HTTP/1.1
Host: jkvoyage.com
Referer: http://www.google.com/search?q=jkvoyage.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: jkvoyage.com
Referer: http://www.google.com/search?q=jkvoyage.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=jkvoyage.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://jkvoyage.com/
Result: jkvoyage.com is not infected or malware details are not published yet.
Result: jkvoyage.com is not infected or malware details are not published yet.