Scanned pages/files
Request | Server response | Status |
http://lachidesign.com.vn/ | 200 OK Content-Length: 19864 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by WiLiana ! ...[990 bytes skipped]... 4SzFzcktUUWMyOVBwZndHQ3ZoenBhVDRVSUhaQU93R0N2aHZwQ3l2SkgwQUpIMEFOazQ9IjtldmFsKCc/PicuJE8wME8wTygkTzBPTzAwKCRPTzBPMDAoJE8wTzAwMCwkT08wMDAwKjIpLCRPTzBPMDAoJE8wTzAwMCwkT08wMDAwLCRPTzAwMDApLCRPTzBPMDAoJE8wTzAwMCwwLCRPTzAwMDApKSkpOw==")); saved from url=(0031)http://www.borgosantandrea.org/ --> <html><head><meta http-equiv="Content-Type" content="text/html; charset=windows-1254"><title>Hacked by WiLiana !</title> </head><body bgcolor="black"> </br> <center> <img src="http://img841.imageshack.us/img841/6038/df51gdf56g41df54gdf5g4.png"> <b></br> <b></br> <b></br> <font color="red" size="4" face="Calibri">Hacked WiLiana PatrikansoN</font> <font color="darkred" size="4" face="Calibri"><b><b>Turkish Ajan Hacker Group Efsan ...[21400 bytes skipped]... | ||
http://lachidesign.com.vn/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 96402 Content-Type: application/javascript | clean |
http://lachidesign.com.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7199 Content-Type: application/javascript | clean |
http://lachidesign.com.vn/wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.1.1 | 200 OK Content-Length: 57000 Content-Type: application/javascript | clean |
http://lachidesign.com.vn/wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.2 | 200 OK Content-Length: 52295 Content-Type: application/javascript | clean |
http://lachidesign.com.vn/wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.1.1 | 200 OK Content-Length: 21095 Content-Type: application/javascript | clean |
http://lachidesign.com.vn/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.plugins.min.js?rev=4.5.2&ver=3.9.6 | 200 OK Content-Length: 85219 Content-Type: application/javascript | clean |
http://lachidesign.com.vn/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?rev=4.5.2&ver=3.9.6 | 200 OK Content-Length: 108862 Content-Type: application/javascript | clean |
http://lachidesign.com.vn/test404page.js | 404 Not Found Content-Length: 2478 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: lachidesign.com.vn
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0, public
Connection: close
Date: Fri, 12 Jun 2015 00:03:26 GMT
Server: Apache/2
Vary: Accept-Encoding,User-Agent
Content-Type: text/html; charset=UTF-8
Expires: Fri, 12 Jun 2015 00:03:26 GMT
Link: <http://lachidesign.com.vn/>; rel=shortlink
X-Pingback: http://lachidesign.com.vn/xmlrpc.php
X-Powered-By: PHP/5.4.13
GET / HTTP/1.1
Host: lachidesign.com.vn
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0, public
Connection: close
Date: Fri, 12 Jun 2015 00:03:26 GMT
Server: Apache/2
Vary: Accept-Encoding,User-Agent
Content-Type: text/html; charset=UTF-8
Expires: Fri, 12 Jun 2015 00:03:26 GMT
Link: <http://lachidesign.com.vn/>; rel=shortlink
X-Pingback: http://lachidesign.com.vn/xmlrpc.php
X-Powered-By: PHP/5.4.13
Second query (visit from search engine):
GET / HTTP/1.1
Host: lachidesign.com.vn
Referer: http://www.google.com/search?q=lachidesign.com.vn
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: lachidesign.com.vn
Referer: http://www.google.com/search?q=lachidesign.com.vn
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=lachidesign.com.vn
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://lachidesign.com.vn/
Result: lachidesign.com.vn is not infected or malware details are not published yet.
Result: lachidesign.com.vn is not infected or malware details are not published yet.