Scanned pages/files
| Request | Server response | Status |
http://phykon.com/ | 200 OK Content-Length: 54061 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by NG689Skw ...[5589 bytes skipped]... isplay:none}div.wpcf7 .placeheld{color:#888}</style> <link rel='stylesheet' id='rs-settings-css' href='http://phykon.com/wp-content/plugins/revslider/rs-plugin/css/A.settings.css.pagespeed.cf.6FirPGcxSf.css' type='text/css' media='all'/> <style id='rs-captions-css' media='all'>x<body style='color: transparent;background-color: black'><center><h1><b style='color: white'>Hacked by NG689Skw <br><p style='color: transparent'></style> <style id='social-widget-css' media='all'>.socialmedia-buttons{margin-top:5px}.smw_left{text-align:left}.smw_center{text-align:center}.smw_right{text-align:right}li.Social_Widget a{padding:0!important;margin:0!important;background:none!important;text-align:center}.smw_center img,.smw_left img{border:0;border:0!important;display:inline;-webkit-transition:all .2s ease-in;-moz-transition:all .2s ease-in;tr ...[55540 bytes skipped]... | ||
http://phykon.com/wp-includes/js/jquery/jquery.js.pagespeed.jm.0kUhGt7Mm3.js | 200 OK Content-Length: 95864 Content-Type: application/javascript | clean |
http://phykon.com/wp-includes/js/jquery/jquery-migrate.min.js.pagespeed.jm.mhpNjdU8Wl.js | 200 OK Content-Length: 7085 Content-Type: application/javascript | clean |
http://phykon.com/wp-content/themes/Terra/js/libs.min.js.pagespeed.ce.9TZB4fM7TW.js | 200 OK Content-Length: 110316 Content-Type: application/javascript | clean |
http://phykon.com/wp-content/themes/Terra/js/common.js.pagespeed.jm.GD2wDLkJpF.js | 200 OK Content-Length: 9312 Content-Type: application/javascript | clean |
http://phykon.com/wp-content/themes,_Terra,_js,_anims.js+plugins,_revslider,_rs-plugin,_js,_jquery.themepunch.plugins.min.js.pagespeed.jc.0GvVGkdgoh.js | 200 OK Content-Length: 19186 Content-Type: application/javascript | clean |
http://phykon.com/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js | 200 OK Content-Length: 55901 Content-Type: application/javascript | clean |
http://phykon.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js.pagespeed.jm.RVBOol6lkO.js | 200 OK Content-Length: 14900 Content-Type: application/javascript | clean |
http://phykon.com/wp-content/plugins/contact-form-7/includes/js/scripts.js.pagespeed.jm.AyPX16hTOE.js | 200 OK Content-Length: 9377 Content-Type: application/javascript | clean |
http://phykon.com/services/ | 200 OK Content-Length: 35670 Content-Type: text/html | clean |
http://phykon.com/management/ | 200 OK Content-Length: 31035 Content-Type: text/html | clean |
http://phykon.com/management | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=0, no-cache Connection: close Date: Sun, 05 Jul 2015 18:16:32 GMT Location: http://phykon.com/management/ Server: nginx/1.7.9 Content-Type: text/html; charset=UTF-8 Host-Header: 192fc2e7e50945beb8231a492d6a8024 Set-Cookie: wfvt_1543711090=5599748063520; expires=Sun, 05-Jul-2015 18:46:32 GMT; Max-Age=1800; path=/; httponly X-Page-Speed: 1.9.32.3-4448 X-Pingback: http://phykon.com/xmlrpc.php X-Proxy-Cache: MISS | clean |
http://phykon.com/test404page.js | 404 Not Found Content-Length: 31274 Content-Type: text/html | clean |
http://phykon.com/management/infrastructure/ | 200 OK Content-Length: 36096 Content-Type: text/html | clean |
http://phykon.com/location/ | 200 OK Content-Length: 29390 Content-Type: text/html | clean |
http://phykon.com/management/how-we-work/ | 200 OK Content-Length: 29046 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: phykon.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0, no-cache
Connection: close
Date: Sun, 05 Jul 2015 18:16:10 GMT
Server: nginx/1.7.9
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Host-Header: 192fc2e7e50945beb8231a492d6a8024
Link: <http://phykon.com/>; rel=shortlink
Set-Cookie: wfvt_1543711090=5599746a60130; expires=Sun, 05-Jul-2015 18:46:10 GMT; Max-Age=1800; path=/; httponly
X-Page-Speed: 1.9.32.3-4448
X-Pingback: http://phykon.com/xmlrpc.php
X-Proxy-Cache: MISS
GET / HTTP/1.1
Host: phykon.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0, no-cache
Connection: close
Date: Sun, 05 Jul 2015 18:16:10 GMT
Server: nginx/1.7.9
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Host-Header: 192fc2e7e50945beb8231a492d6a8024
Link: <http://phykon.com/>; rel=shortlink
Set-Cookie: wfvt_1543711090=5599746a60130; expires=Sun, 05-Jul-2015 18:46:10 GMT; Max-Age=1800; path=/; httponly
X-Page-Speed: 1.9.32.3-4448
X-Pingback: http://phykon.com/xmlrpc.php
X-Proxy-Cache: MISS
Second query (visit from search engine):
GET / HTTP/1.1
Host: phykon.com
Referer: http://www.google.com/search?q=phykon.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: phykon.com
Referer: http://www.google.com/search?q=phykon.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=phykon.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://phykon.com/
Result: phykon.com is not infected or malware details are not published yet.
Result: phykon.com is not infected or malware details are not published yet.