Scanned pages/files
Request | Server response | Status |
http://sejutabisnis.com/ | 200 OK Content-Length: 20713 Content-Type: text/html | clean |
http://sejutabisnis.com/js/jquery-1.8.2.min.js | 200 OK Content-Length: 93433 Content-Type: application/javascript | clean |
http://sejutabisnis.com/nivoslider/jquery.nivo.slider.js | 200 OK Content-Length: 29774 Content-Type: application/javascript | clean |
http://sejutabisnis.com/index.php | 200 OK Content-Length: 20713 Content-Type: text/html | clean |
http://sejutabisnis.com/login.php?cat=masuk | 200 OK Content-Length: 13700 Content-Type: text/html | clean |
http://sejutabisnis.com/login.php?cat=daftar | 200 OK Content-Length: 14135 Content-Type: text/html | clean |
http://sejutabisnis.com/login.php | 200 OK Content-Length: 15577 Content-Type: text/html | clean |
http://sejutabisnis.com/login-kirim-password.php | 200 OK Content-Length: 12147 Content-Type: text/html | clean |
http://sejutabisnis.com/artikel.php?artikelid=1 | 200 OK Content-Length: 8580 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 1x1 src: http://www.youtube.com/embed/udmweptp6ri-s?rel=0&autoplay=1&loop=1&playlist=udmweptp6ri <iframe width="1" height="1" src="http://www.youtube.com/embed/udmweptp6ri-s?rel=0&autoplay=1&loop=1&playlist=udmweptp6ri" frameborder="0" allowfullscreen> Deface/Content modification. The following signature was found: // Hacked By : Mr.HaurgeulisX196 ...[2463 bytes skipped]... adius: 8px 8px 0px 0px; margin: 15px 0px; background-color: #F5F5F5; opacity: 0.8; } #help{ width: 300px; float: right; } .prefix{ color: #0077E7; } .keyword{ color: #9eff63; } .error{ color: #FF0000; } .spacer{ clear: both; display: block; } </style> <script type="text/javascript"> // Hacked By : Mr.HaurgeulisX196 TypingText = function(element, interval, cursor, finishedCallback) { if((typeof document.getElementById == "undefined") || (typeof element.innerHTML == "undefined")) { this.running = true; return; } this.element = element; this.finishedCallback = (finishedCallback ? finishedCallback : function() { return; }); this.interval = (typeof interval == "undefined" ? 100 : interval); this.origText = this.elem ...[6863 bytes skipped]... | ||
http://masterendi.googlecode.com/files/salju.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://masterendi.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://masterendi.googlecode.com/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://apiwebspadesinfo-a.akamaihd.net/gsrs?is=fmxqtid&bp=PB&g=1c83c707-6e9c-4b09-884c-3bbc7f641e35 | 200 OK Content-Length: 11267 Content-Type: application/javascript | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.3.1/jquery.min.js | 200 OK Content-Length: 55272 Content-Type: text/javascript | clean |
http://local.adfender.com/adfender/elemhide.js | 404 Not Found Content-Length: 1363 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sejutabisnis.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 27 Jun 2015 22:05:03 GMT
Pragma: no-cache
Server: LiteSpeed
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=6cb24c27f4bc1a2898f697338b0745e7; path=/
X-Powered-By: PHP/5.3.16
GET / HTTP/1.1
Host: sejutabisnis.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 27 Jun 2015 22:05:03 GMT
Pragma: no-cache
Server: LiteSpeed
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=6cb24c27f4bc1a2898f697338b0745e7; path=/
X-Powered-By: PHP/5.3.16
Second query (visit from search engine):
GET / HTTP/1.1
Host: sejutabisnis.com
Referer: http://www.google.com/search?q=sejutabisnis.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sejutabisnis.com
Referer: http://www.google.com/search?q=sejutabisnis.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sejutabisnis.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sejutabisnis.com/
Result: sejutabisnis.com is not infected or malware details are not published yet.
Result: sejutabisnis.com is not infected or malware details are not published yet.