Scanned pages/files
| Request | Server response | Status |
http://sakaran.com/ | 200 OK Content-Length: 37038 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: +ADw-title+AD4-Hacked By Artist+ADw-/title+AD4 ...[220 bytes skipped]... mpg.org/xfn/11"> <meta http-equiv="Content-Type" content="text/html; charset=UTF-7" /> <link href='http://fonts.googleapis.com/css?family=Oswald' rel='stylesheet' type='text/css'/> <title> +ADw-/title+AD4 +ADw-head+AD4 +ADw-meta name+AD0AIg-keywords+ACI content+AD0AIg Artist+ACIAPg +ADw-meta name+AD0AIg-description+ACI content+AD0AIg Artist+ACIAPg +ADw-title+AD4-Hacked By Artist+ADw-/title+AD4 +ADw-/head+AD4 +ADw-body bgcolor+AD0AIgAj-000000+ACIAPg +ADw-p align+AD0AIg-center+ACIAPg +ACY-nbsp+ADsAPA-/p+AD4 +ADw-p align+AD0AIg-center+ACIAPg +ADw-p align+AD0AIg-center+ACIAPgA8-img src+AD0AIg-http://i.hizliresim.com/KP9m0N.jpg+ACI /+AD4APA-/p+AD4 +ADw-/font+AD4APA-font color+AD0AIgAj-FF0000+ACI face+AD0AIg-Arial Black+ACIAPgA8-/font+AD4APA-/p+AD4 +ADw-p align+AD0AIg-center+ACIAPg +ACY-nbsp+ADsAP ...[40712 bytes skipped]... | ||
http://sakaran.com/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: application/javascript | clean |
http://sakaran.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://sakaran.com/wp-content/themes/GreenYellow/js/jquery-1.4.4.js | 200 OK Content-Length: 93890 Content-Type: application/javascript | clean |
http://sakaran.com/wp-content/themes/GreenYellow/js/jquery.cycle.all.js | 200 OK Content-Length: 51300 Content-Type: application/javascript | clean |
http://sakaran.com/wp-content/themes/GreenYellow/menu/superfish.js | 200 OK Content-Length: 3714 Content-Type: application/javascript | clean |
http://sakaran.com/wp-content/themes/GreenYellow/menu/custom.js | 200 OK Content-Length: 499 Content-Type: application/javascript | clean |
http://sponsoredthemes.net/links/footer/f8/js/f6.js | 200 OK Content-Length: 178 Content-Type: application/javascript | clean |
http://sponsoredthemes.net/links/header/t8/js/t6.js | 200 OK Content-Length: 82 Content-Type: application/javascript | clean |
http://sakaran.com/?p=18 | 200 OK Content-Length: 33672 Content-Type: text/html | clean |
http://sakaran.com/?p=16 | 200 OK Content-Length: 32078 Content-Type: text/html | clean |
http://sakaran.com/?cat=3 | 200 OK Content-Length: 33001 Content-Type: text/html | clean |
http://sakaran.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://sakaran.com/?tag=cv | 200 OK Content-Length: 29685 Content-Type: text/html | clean |
http://sakaran.com/?tag=firma | 200 OK Content-Length: 29700 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sakaran.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 27 May 2014 18:36:04 GMT
Server: Apache
Content-Type: text/html; charset=UTF-7
X-Pingback: http://sakaran.com/xmlrpc.php
X-Powered-By: PHP/5.4.24
GET / HTTP/1.1
Host: sakaran.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 27 May 2014 18:36:04 GMT
Server: Apache
Content-Type: text/html; charset=UTF-7
X-Pingback: http://sakaran.com/xmlrpc.php
X-Powered-By: PHP/5.4.24
Second query (visit from search engine):
GET / HTTP/1.1
Host: sakaran.com
Referer: http://www.google.com/search?q=sakaran.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sakaran.com
Referer: http://www.google.com/search?q=sakaran.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sakaran.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sakaran.com/
Result: sakaran.com is not infected or malware details are not published yet.
Result: sakaran.com is not infected or malware details are not published yet.