Scanned pages/files
| Request | Server response | Status |
http://paleolithicrecipes.com/ | 200 OK Content-Length: 62115 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: +ADw-/title+AD4-HACKED BY +AD4-tmp9dEplN +AHw ant07alya +ADw TURKHACKTEAM// +ADw TURKHACKTEAM//+ ...[208 bytes skipped]... ><head profile="http://gmpg.org/xfn/11"> <meta http-equiv="Content-Type" content="text/html; charset=UTF-7" /> <title>Paleolithic Recipes</title> <link rel="stylesheet" href="http://paleolithicrecipes.com/wp-content/themes/borderpx/style.css" type="text/css" media="screen" /> <link rel="alternate" type="application/rss+xml" title="+ADw-/title+AD4-HACKED BY +AD4-tmp9dEplN +AHw ant07alya +ADw TURKHACKTEAM// +ADw TURKHACKTEAM//+ADw-DIV style+AD0AIg-DISPLAY: none+ACIAPgA8-xmp+AD4- RSS Feed" href="http://paleolithicrecipes.com/feed/" /> <link rel="pingback" href="http://paleolithicrecipes.com/xmlrpc.php" /> <script type='text/javascript' src='http://paleolithicrecipes.com/wp-includes/js/jquery/jquery.js?ver=1.7.2'></script> <script type='text/javascript' src='http://paleolithicrecipes.com/uiplay.js?ver=3.4.2'></scrip ...[68599 bytes skipped]... | ||
http://paleolithicrecipes.com/wp-includes/js/jquery/jquery.js?ver=1.7.2 | 200 OK Content-Length: 94861 Content-Type: application/javascript | clean |
http://paleolithicrecipes.com/uiplay.js?ver=3.4.2 | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://paleolithicrecipes.com/test404page.js | 404 Not Found Content-Length: 6968 Content-Type: text/html | clean |
http://paleolithicrecipes.com/site-map/ | 200 OK Content-Length: 170231 Content-Type: text/html | clean |
http://paleolithicrecipes.com/site-map/2/ | 200 OK Content-Length: 170231 Content-Type: text/html | clean |
http://paleolithicrecipes.com/site-map/3/ | 200 OK Content-Length: 170231 Content-Type: text/html | clean |
http://paleolithicrecipes.com/site-map/4/ | 200 OK Content-Length: 170231 Content-Type: text/html | clean |
http://paleolithicrecipes.com/site-map/5/ | 200 OK Content-Length: 170231 Content-Type: text/html | clean |
http://paleolithicrecipes.com/site-map/6/ | 200 OK Content-Length: 170231 Content-Type: text/html | clean |
http://paleolithicrecipes.com/site-map/7/ | 200 OK Content-Length: 170231 Content-Type: text/html | clean |
http://paleolithicrecipes.com/site-map/8/ | 200 OK Content-Length: 170231 Content-Type: text/html | clean |
http://paleolithicrecipes.com/site-map/9/ | 200 OK Content-Length: 170231 Content-Type: text/html | clean |
http://paleolithicrecipes.com/site-map/10/ | 200 OK Content-Length: 170231 Content-Type: text/html | clean |
http://paleolithicrecipes.com/site-map/11/ | 200 OK Content-Length: 170231 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: paleolithicrecipes.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 20 Dec 2015 05:14:34 GMT
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-7
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Ngpass_ngall: 1
Set-Cookie: PHPSESSID=b84ceda02ebb57ed30425813295d3002; path=/
X-Pingback: http://paleolithicrecipes.com/xmlrpc.php
GET / HTTP/1.1
Host: paleolithicrecipes.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 20 Dec 2015 05:14:34 GMT
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-7
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Ngpass_ngall: 1
Set-Cookie: PHPSESSID=b84ceda02ebb57ed30425813295d3002; path=/
X-Pingback: http://paleolithicrecipes.com/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: paleolithicrecipes.com
Referer: http://www.google.com/search?q=paleolithicrecipes.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: paleolithicrecipes.com
Referer: http://www.google.com/search?q=paleolithicrecipes.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=paleolithicrecipes.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://paleolithicrecipes.com/
Result: paleolithicrecipes.com is not infected or malware details are not published yet.
Result: paleolithicrecipes.com is not infected or malware details are not published yet.