Scanned pages/files
Request | Server response | Status |
http://sokhanerooz.ir/ | 200 OK Content-Length: 52721 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY AYYILDIZ TEAM | SESSIZCE NÃBETTEYIZ! <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"> <head><link rel="Shortcut Icon" href="http://i.hizliresim.com/eoLDm9.png" type="image/x-icon"> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /> <title>HACKED BY AYYILDIZ TEAM | SESSIZCE NÃBETTEYIZ!</title> <style type="text/css"> body { background-color: #000000; background-image: url(http://i.imgur.com/JaGdPpY.jpg); background-size:100%; margin:0px;padding:0px; min-width:650px; background-clip:box; background-origin:padding-box; background-repeat:no-repeat; background-position:center; background-attachment:fixed;} .sty ...[58093 bytes skipped]... | ||
http://sokhanerooz.ir/%d8%a7%d8%af%d8%af%d8%a7%d8%b4%d8%aa-%d8%a8%d9%87%d8%b1%d9%88%d8%b2-%d8%a7%d9%81%d8%ae%d9%85%db%8c-%d8%a8%d8%b1%d8%a7%db%8c-%d8%b3%db%8c%d9%81%e2%80%8c%d8%a7%d9%84%d9%84%d9%87-%d8%af%d8%a7%d8%af/ | 200 OK Content-Length: 24481 Content-Type: text/html | clean |
http://sokhanerooz.ir/category/%db%8c%d8%a7%d8%af%d8%af%d8%a7%d8%b4%d8%aa/ | 200 OK Content-Length: 22040 Content-Type: text/html | clean |
http://sokhanerooz.ir/%db%8c%d8%a7%d8%af%d8%af%d8%a7%d8%b4%d8%aa%db%8c-%d8%ac%d8%a7%d9%84%d8%a8-%d8%a7%d8%b2-%d9%be%d8%b1%d9%88%db%8c%d8%b2-%d9%85%d8%b8%d9%84%d9%88%d9%85%db%8c%d9%be%d8%a7%d9%87%d8%a7%db%8c%d9%85-%d8%b1/ | 200 OK Content-Length: 19654 Content-Type: text/html | clean |
http://sokhanerooz.ir/author/admin/ | 200 OK Content-Length: 33481 Content-Type: text/html | clean |
http://sokhanerooz.ir/%d8%b9%d8%b1%d8%a7%d9%82-%d9%88-%d8%b1%d9%88%d8%b3%db%8c%d9%87-%d8%aa%d9%88%d8%a7%d9%81%d9%82%d9%86%d8%a7%d9%85%d9%87-%d8%a7%d9%85%d9%86%db%8c%d8%aa%db%8c-%d8%a7%d9%85%d8%b6%d8%a7-%da%a9%d8%b1%d8%af/ | 200 OK Content-Length: 21550 Content-Type: text/html | clean |
http://sokhanerooz.ir/category/%d8%ae%d8%a8%d8%b1/ | 200 OK Content-Length: 21911 Content-Type: text/html | clean |
http://sokhanerooz.ir/%d8%b3%d8%a7%d8%b2%d9%85%d8%a7%d9%86-%d9%85%d9%84%d9%84-%d8%b1%da%98%db%8c%d9%85-%d8%b5%d9%87%db%8c%d9%88%d9%86%db%8c%d8%b3%d8%aa%db%8c-%d8%b1%d8%a7-%d9%85%d8%ad%da%a9%d9%88%d9%85-%da%a9%d8%b1%d8%af/ | 200 OK Content-Length: 19985 Content-Type: text/html | clean |
http://sokhanerooz.ir/wp-content/uploads/2015/08/Untitled-1.jpg | 200 OK Content-Length: 23902 Content-Type: image/jpeg | clean |
http://sokhanerooz.ir/test404page.js | 200 OK Content-Length: 6 Content-Type: text/html | clean |
http://sokhanerooz.ir/%da%a9%d8%af%d8%a7%d9%85-%d8%a8%d8%a7%d9%86%da%a9-%d9%87%d8%a7-%da%a9%d9%85%d8%aa%d8%b1%db%8c%d9%86-%d9%88-%d8%a8%db%8c%d8%b4%d8%aa%d8%b1%db%8c%d9%86-%d8%b3%d9%88%d8%af-%d8%b1%d8%a7-%d8%aa%d9%82%d8%b3/ | 200 OK Content-Length: 19848 Content-Type: text/html | clean |
http://sokhanerooz.ir/%d8%ad%d8%af%d8%a7%d8%af%db%8c%d9%85%d8%b1%d8%af%d9%85-%d8%a7%d8%b2-%d9%85%d9%86-%d8%a8%db%8c%d8%b4%d8%aa%d8%b1-%d8%af%d8%b1%d8%a8%d8%a7%d8%b1%d9%87-%d8%ae%d9%86%d8%af%d9%88%d8%a7%d9%86%d9%87-%d9%85/ | 200 OK Content-Length: 24058 Content-Type: text/html | clean |
http://sokhanerooz.ir/%d8%a7%d8%b3%d8%aa%d9%82%d9%84%d8%a7%d9%84-%d9%85%d8%b8%d9%84%d9%88%d9%85%db%8c-%d8%a8%d8%a7-%d8%a8%d8%b1%d8%af-%d8%b4%d8%b1%d9%88%d8%b9-%da%a9%d8%b1%d8%af-%d8%aa%db%8c%d9%85-%d9%87%d8%a7%db%8c%db%8c/ | 200 OK Content-Length: 19215 Content-Type: text/html | clean |
http://sokhanerooz.ir/%d9%86%da%af%d8%b0%d8%a7%d8%b1%db%8c%d9%85-%d8%a8%d9%85%db%8c%d8%b1%d8%af-%d8%ac%d9%86%da%af%d9%84-%da%a9%d9%87-%d8%ac%d9%87%d8%a7%d9%86-%d8%ae%d9%88%d8%a7%d9%87%d8%af-%d9%85%d8%b1%d8%af/ | 200 OK Content-Length: 20494 Content-Type: text/html | clean |
http://sokhanerooz.ir/feed/ | 200 OK Content-Length: 34115 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sokhanerooz.ir
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 23 Nov 2015 15:14:28 GMT
Server: Apache
Content-Type: text/html
X-Powered-By: PHP/5.4.29
GET / HTTP/1.1
Host: sokhanerooz.ir
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 23 Nov 2015 15:14:28 GMT
Server: Apache
Content-Type: text/html
X-Powered-By: PHP/5.4.29
Second query (visit from search engine):
GET / HTTP/1.1
Host: sokhanerooz.ir
Referer: http://www.google.com/search?q=sokhanerooz.ir
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sokhanerooz.ir
Referer: http://www.google.com/search?q=sokhanerooz.ir
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sokhanerooz.ir
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sokhanerooz.ir/
Result: sokhanerooz.ir is not infected or malware details are not published yet.
Result: sokhanerooz.ir is not infected or malware details are not published yet.