Scanned pages/files
Request | Server response | Status |
http://kpmpacks.in/ | 200 OK Content-Length: 11612 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: :| Hacked By Abbas Abraham |: <HEAD>
<title>:| Hacked By Abbas Abraham |:</title> <link href='http://i716.photobucket.com/albums/ww161/asifarmani/3dflags_pak0001-0003a.gif' rel='icon' type='image/x-icon'/> <meta name="Abbas Abraham" content="Abbas Abraham" /> <embed src="http://error-404.do.am/50256-h4ck3d.swf" type="application/x-shockwave-flash"wmode="transparent" width="1" height="1"></embed> <meta name="publisher" co ...[14571 bytes skipped]... | ||
http://edge.quantserve.com/quant.js | 200 OK Content-Length: 7874 Content-Type: application/x-javascript | clean |
http://www.widgeo.net/message.php?msg=Your Security Break by Abbas Abraham ( Pak Cyber Crews )&adult=0&cat=art&big=big&cl=red&idec=3322362515 | 200 OK Content-Length: 2998 Content-Type: text/html | clean |
http://www.widgeo.net/test404page.js | 404 Not Found Content-Length: 713 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js | 200 OK Content-Length: 72174 Content-Type: text/javascript | clean |
http://jqueryrotate.googlecode.com/svn/trunk/jQueryRotate.js | 200 OK Content-Length: 13892 Content-Type: text/plain | clean |
http://www.p0wersurge.com/js/jquery-css-transform.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://www.p0wersurge.com/js/rotate3Di.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: kpmpacks.in
Result:
HTTP/1.1 200 OK
Date: Sun, 29 Mar 2015 08:47:10 GMT
Server: Microsoft-IIS/7.5
Content-Length: 11612
Content-Type: text/html
X-Powered-By: PHP/5.3.19
X-Powered-By: ASP.NET
...11612 bytes of data.
GET / HTTP/1.1
Host: kpmpacks.in
Result:
HTTP/1.1 200 OK
Date: Sun, 29 Mar 2015 08:47:10 GMT
Server: Microsoft-IIS/7.5
Content-Length: 11612
Content-Type: text/html
X-Powered-By: PHP/5.3.19
X-Powered-By: ASP.NET
...11612 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: kpmpacks.in
Referer: http://www.google.com/search?q=kpmpacks.in
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: kpmpacks.in
Referer: http://www.google.com/search?q=kpmpacks.in
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=kpmpacks.in
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://kpmpacks.in/
Result: kpmpacks.in is not infected or malware details are not published yet.
Result: kpmpacks.in is not infected or malware details are not published yet.