Scanned pages/files
Request | Server response | Status |
http://sixsteps.org.in/ | 200 OK Content-Length: 9245 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY MAD $CI3NTI$T <!DOCTYPE html> <html dir="ltr" lang="en-US"><head> <meta charset="utf-8"> <title>HACKED BY MAD $CI3NTI$T</title> <meta name="viewport" content="initial-scale = 1.0, maximum-scale = 1.0, user-scalable = no, width = device-width"> <!--[if lt IE 9]><script src="https://html5shiv.googlecode.com/svn/trunk/html5.js"></script><![endif]--> <link rel="stylesheet" href="http://www.gonosvmc.edu.bd/admin/Gallery/mad/style.css" media="screen"> <!--[if lte IE 7]><link rel="sty ...[9853 bytes skipped]... | ||
http://www.gonosvmc.edu.bd/admin/Gallery/mad/jquery.js | 200 OK Content-Length: 92629 Content-Type: text/javascript | clean |
http://www.gonosvmc.edu.bd/admin/Gallery/mad/script.js | 200 OK Content-Length: 52008 Content-Type: text/javascript | clean |
http://www.gonosvmc.edu.bd/admin/Gallery/mad/script.responsive.js | 200 OK Content-Length: 20803 Content-Type: text/javascript | clean |
http://sixsteps.org.in/test404page.js | 404 Not Found Content-Length: 9008 Content-Type: text/html | clean |
http://sixsteps.org.in/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://sixsteps.org.in/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://sixsteps.org.in/wp-content/themes/vantage/js/jquery.flexslider.min.js?ver=2.1 | 200 OK Content-Length: 23470 Content-Type: application/javascript | clean |
http://sixsteps.org.in/wp-content/themes/vantage/js/jquery.fitvids.min.js?ver=1.0 | 200 OK Content-Length: 1875 Content-Type: application/javascript | clean |
http://sixsteps.org.in/wp-content/themes/vantage/js/three/three.min.js?ver=1.0 | 200 OK Content-Length: 302411 Content-Type: application/javascript | clean |
http://sixsteps.org.in/wp-content/themes/vantage/js/three/controls/NormalControls.js?ver=1.0 | 200 OK Content-Length: 8768 Content-Type: application/javascript | clean |
http://sixsteps.org.in/wp-content/themes/vantage/js/jed.js?ver=1.0 | 200 OK Content-Length: 37768 Content-Type: application/javascript | clean |
http://sixsteps.org.in/wp-content/themes/vantage/js/main.js?ver=1.0 | 200 OK Content-Length: 46959 Content-Type: application/javascript | clean |
http://sixsteps.org.in/wp-content/themes/vantage/js/FileSaver.js?ver=1.0 | 200 OK Content-Length: 8099 Content-Type: application/javascript | clean |
http://sixsteps.org.in/wp-content/themes/vantage/js/jquery.theme-main.min.js?ver=1.2.3 | 200 OK Content-Length: 4812 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sixsteps.org.in
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 01 Apr 2015 20:07:13 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 9245
Content-Type: text/html
Last-Modified: Thu, 26 Mar 2015 08:19:28 GMT
...9245 bytes of data.
GET / HTTP/1.1
Host: sixsteps.org.in
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 01 Apr 2015 20:07:13 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 9245
Content-Type: text/html
Last-Modified: Thu, 26 Mar 2015 08:19:28 GMT
...9245 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: sixsteps.org.in
Referer: http://www.google.com/search?q=sixsteps.org.in
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sixsteps.org.in
Referer: http://www.google.com/search?q=sixsteps.org.in
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sixsteps.org.in
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sixsteps.org.in/
Result: sixsteps.org.in is not infected or malware details are not published yet.
Result: sixsteps.org.in is not infected or malware details are not published yet.