Scanned pages/files
| Request | Server response | Status |
http://sms-cinta.com/ | 200 OK Content-Length: 6007 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by LittleDevilzUsagi ...[278 bytes skipped]... "true"></param><param name="allowscriptaccess" value="always"></param><embed src="www.youtube.com/v/cK3NMZAUKGw?hl=en_US&version=3;&autoplay=1" type="application/x-shockwave-flash" width="0,5" height="0,5" allowscriptaccess="always" allowfullscreen="true"></embed></object> <meta content="LoveNattasha" name="subject"> <meta content="Hacked by LittleDevilzUsagi" name="Abstract"> <meta name="keywords" content="Hacked, Hacker LittleDevilzUsagi, Hacked by LittleDevilzUsagi, hacked by Cindvia404 Was Here, Indonesian Hacker, Indonesian Defacer, , Indonesian Security DOwn , Indonesian Anonymous , Portal Personal LittleDevilzUsagi"> <meta content="you got hacked by PhantomGhost" name="description"> <meta content="ARcky" name="copyright"> <meta content="ARcky" name="author"> ...[6284 bytes skipped]... | ||
http://sms-cinta.com/test404page.js | 404 Not Found Content-Length: 30440 Content-Type: text/html | clean |
http://sms-cinta.com/wp-includes/js/jquery/jquery.js?ver=1.8.3 | 200 OK Content-Length: 93658 Content-Type: application/javascript | clean |
http://sms-cinta.com/wp-content/plugins/dbcn-form-generator/ds.js?ver=3.5 | 200 OK Content-Length: 343 Content-Type: application/javascript | clean |
http://w.sharethis.com/button/buttons.js | 200 OK Content-Length: 144141 Content-Type: application/x-javascript | clean |
http://sms-cinta.com/wp-content/themes/woody/js/jquery.js | 200 OK Content-Length: 94840 Content-Type: application/javascript | clean |
http://sms-cinta.com/wp-content/themes/woody/js/jquery.sudoSlider.js | 200 OK Content-Length: 46793 Content-Type: application/javascript | clean |
http://twitterjs.googlecode.com/svn/trunk/src/twitter.min.js | 200 OK Content-Length: 2973 Content-Type: text/javascript | clean |
http://www.dbc-channel.com/images/flowplayer-3.2.10.min.js | 200 OK Content-Length: 16109 Content-Type: application/javascript | clean |
http://nwidget.networkedblogs.com/getnetworkwidget?bid=956982 | 200 OK Content-Length: 14341 Content-Type: application/javascript | clean |
http://sms-cinta.com/feed | 200 OK Content-Length: 16235 Content-Type: text/xml | clean |
http://sms-cinta.com/wp-content/plugins/Web-Bersama-Dini-Shanti/web-bersama-ds-redirect.php?bannerid=13&rot=221&s1=SMS-head-OLmerah-221 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 24 Aug 2014 04:25:04 GMT Location: http://dinishanti.com/training-online-masa-kini/?rot=221&s1=SMS-head-OLmerah-221 Server: mayaEngine Content-Length: 183 Content-Type: text/html X-Powered-By: PHP/5.3.28 | clean |
http://dinishanti.com/training-online-masa-kini/?rot=221&s1=sms-head-olmerah-221 | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://sms-cinta.com/about | 200 OK Content-Length: 32931 Content-Type: text/html | clean |
http://sms-cinta.com/category/sms-anniversary | 200 OK Content-Length: 43309 Content-Type: text/html | clean |
http://sms-cinta.com/category/sms-cinta | 200 OK Content-Length: 43028 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sms-cinta.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 24 Aug 2014 04:24:54 GMT
Server: mayaEngine
Vary: Accept-Encoding
Content-Length: 6007
Content-Type: text/html; charset=UTF-8
X-Cache: HIT from Backend
X-Pingback: http://sms-cinta.com/xmlrpc.php
X-Powered-By: PHP/5.3.28
...6007 bytes of data.
GET / HTTP/1.1
Host: sms-cinta.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 24 Aug 2014 04:24:54 GMT
Server: mayaEngine
Vary: Accept-Encoding
Content-Length: 6007
Content-Type: text/html; charset=UTF-8
X-Cache: HIT from Backend
X-Pingback: http://sms-cinta.com/xmlrpc.php
X-Powered-By: PHP/5.3.28
...6007 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: sms-cinta.com
Referer: http://www.google.com/search?q=sms-cinta.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sms-cinta.com
Referer: http://www.google.com/search?q=sms-cinta.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sms-cinta.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sms-cinta.com/
Result: sms-cinta.com is not infected or malware details are not published yet.
Result: sms-cinta.com is not infected or malware details are not published yet.