Scanned pages/files
| Request | Server response | Status |
http://persianupdate.ir/ | 200 OK Content-Length: 26192 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 1x1 style: hidden src: http://www.joomi.ir/about-us.html <iframe style="display:none;" src="http://www.joomi.ir/about-us.html" width=1 height=1> | ||
http://persianupdate.ir/media/system/js/mootools-core.js | 200 OK Content-Length: 96362 Content-Type: application/javascript | clean |
http://persianupdate.ir/media/system/js/core.js | 200 OK Content-Length: 4784 Content-Type: application/javascript | clean |
http://persianupdate.ir/media/system/js/caption.js | 200 OK Content-Length: 729 Content-Type: application/javascript | clean |
http://persianupdate.ir/plugins/content/jdownloads/jdownloads/lightbox/lightbox.js | 200 OK Content-Length: 12311 Content-Type: application/javascript | clean |
http://persianupdate.ir/media/system/js/modal.js | 200 OK Content-Length: 9732 Content-Type: application/javascript | clean |
http://persianupdate.ir/media/system/js/mootools-more.js | 200 OK Content-Length: 238331 Content-Type: application/javascript | clean |
http://persianupdate.ir/plugins/system/helix/js/menu.js | 200 OK Content-Length: 4137 Content-Type: application/javascript | clean |
http://persianupdate.ir/templates/jm_software/js/totop.js | 200 OK Content-Length: 1189 Content-Type: application/javascript | clean |
http://persianupdate.ir/modules/mod_sptab/assets/js/sptab.js | 200 OK Content-Length: 4177 Content-Type: application/javascript | clean |
http://persianupdate.ir/modules/mod_sp_simple_gallery/scripts/slimbox.js | 200 OK Content-Length: 4627 Content-Type: application/javascript | clean |
http://persianupdate.ir/modules/mod_PlimunNivoSlider/js/jquery-1.6.1.min.js | 200 OK Content-Length: 91342 Content-Type: application/javascript | clean |
http://persianupdate.ir/modules/mod_PlimunNivoSlider/js/jquery.nivo.slider.js | 200 OK Content-Length: 25016 Content-Type: application/javascript | clean |
http://persianupdate.ir/index.php/download | 200 OK Content-Length: 88453 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 1x1 style: hidden src: http://www.joomi.ir/about-us.html <iframe style="display:none;" src="http://www.joomi.ir/about-us.html" width=1 height=1> | ||
http://persianupdate.ir/components/com_jcomments/js/jcomments-v2.3.js?v=8 | 200 OK Content-Length: 27999 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: persianupdate.ir
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 21 Aug 2014 06:29:19 GMT
Server: LiteSpeed
Content-Type: text/html
Set-Cookie: 2ffabb8b19ffec027f3d594a91c3328a=8acc68cf4b422c23099707bc58c7d523; path=/
X-Powered-By: PHP/5.3.28
GET / HTTP/1.1
Host: persianupdate.ir
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 21 Aug 2014 06:29:19 GMT
Server: LiteSpeed
Content-Type: text/html
Set-Cookie: 2ffabb8b19ffec027f3d594a91c3328a=8acc68cf4b422c23099707bc58c7d523; path=/
X-Powered-By: PHP/5.3.28
Second query (visit from search engine):
GET / HTTP/1.1
Host: persianupdate.ir
Referer: http://www.google.com/search?q=persianupdate.ir
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: persianupdate.ir
Referer: http://www.google.com/search?q=persianupdate.ir
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=persianupdate.ir
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://persianupdate.ir/
Result: persianupdate.ir is not infected or malware details are not published yet.
Result: persianupdate.ir is not infected or malware details are not published yet.