Scanned pages/files
| Request | Server response | Status |
http://sedayedoost.org/ | 200 OK Content-Length: 36219 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: hacked by silo ...[8820 bytes skipped]... 2a97f903d4dc29" value="1" /></form> </td> </tr> </table> </div> </td> <td width="254" id="middle"valign="top"> <div id="sitename"></div> <div id="menu"> <table width="100%" border="0" cellpadding="0" cellspacing="0"> <tr ><td><a href="/14" class="mainlevel" id="active_menu">hacked by silo</a></td></tr> <tr ><td><a href="//" class="mainlevel" >hacked by silo</a></td></tr> <tr ><td><a href="/15" class="mainlevel" >hacked by silo</a></td></tr> <tr ><td><a href="/16" class="mainlevel" >hacked by silo</a></td></tr> <tr ><td><a href="/17" class="mainlevel" >hacked by silo</a></td></tr> ...[34769 bytes skipped]... | ||
http://sedayedoost.org/plugins/system/jceutilities/js/mediaobject.js | 200 OK Content-Length: 3866 Content-Type: text/javascript | clean |
http://sedayedoost.org/plugins/system/jceutilities/js/jquery-126.js | 200 OK Content-Length: 31033 Content-Type: text/javascript | clean |
http://sedayedoost.org/plugins/system/jceutilities/js/jceutilities-213.js | 200 OK Content-Length: 20277 Content-Type: text/javascript | clean |
http://sedayedoost.org/media/system/js/caption.js | 200 OK Content-Length: 1721 Content-Type: text/javascript | clean |
http://sedayedoost.org/plugins/content/avreloaded/swfobject.js | 200 OK Content-Length: 12254 Content-Type: text/javascript | clean |
http://sedayedoost.org/plugins/content/avreloaded/avreloaded.js | 200 OK Content-Length: 2359 Content-Type: text/javascript | clean |
http://sedayedoost.org/plugins/content/avreloaded/silverlight.js | 200 OK Content-Length: 8093 Content-Type: text/javascript | clean |
http://sedayedoost.org/plugins/content/avreloaded/wmvplayer.js | 200 OK Content-Length: 16476 Content-Type: text/javascript | clean |
http://www.google-analytics.com/urchin.js | 200 OK Content-Length: 22678 Content-Type: text/javascript | clean |
http://sedayedoost.org/7 | 200 OK Content-Length: 14280 Content-Type: text/html | clean |
http://sedayedoost.org/28 | 200 OK Content-Length: 14347 Content-Type: text/html | clean |
http://sedayedoost.org/29 | 200 OK Content-Length: 13457 Content-Type: text/html | clean |
http://sedayedoost.org/video-for-naw-ruz-final | 200 OK Content-Length: 13838 Content-Type: text/html | clean |
http://sedayedoost.org/vahid-a-magical-musician | 200 OK Content-Length: 14863 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sedayedoost.org
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 21 Jan 2015 11:57:28 GMT
Pragma: no-cache
Server: Apache/2.2.23 (Amazon)
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Wed, 21 Jan 2015 11:57:29 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: bd3ed0b37996a51a75478dd5b6d40f5f=8o45k3aansv4b3vpdmdgbqk6c0; path=/
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: sedayedoost.org
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 21 Jan 2015 11:57:28 GMT
Pragma: no-cache
Server: Apache/2.2.23 (Amazon)
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Wed, 21 Jan 2015 11:57:29 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: bd3ed0b37996a51a75478dd5b6d40f5f=8o45k3aansv4b3vpdmdgbqk6c0; path=/
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: sedayedoost.org
Referer: http://www.google.com/search?q=sedayedoost.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sedayedoost.org
Referer: http://www.google.com/search?q=sedayedoost.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sedayedoost.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sedayedoost.org/
Result: sedayedoost.org is not infected or malware details are not published yet.
Result: sedayedoost.org is not infected or malware details are not published yet.