Scanned pages/files
Request | Server response | Status |
http://www.tehnisol.ro/ | 200 OK Content-Length: 4937 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY SyR!4N M43STR0 <html> <head> <title>HACKED BY SyR!4N M43STR0</title> <meta http-equiv="Content-Type" content="text/html; charset=utf-8"> <meta name="description" content="HACKED BY SyR!4N M43STR0"> <meta name="keywords" content="HACKED,BY,SyR!4N,M43STR0,hacker,new,sirya,army,elctronic,news,done,israel,usa,egypt,palstin,iraq,sudan,libya,uk,video,php,toutrial"> <style type="text/css"> .page{ background: # ...[5277 bytes skipped]... | ||
http://jj.revolvermaps.com/2/1.js?i=9zhsj7n7be6&s=220&m=0&v=false&r=false&b=444444&n=false&c=444444 | 200 OK Content-Length: 2146 Content-Type: application/javascript | clean |
http://modernciftci.com/wp-content/themes/twentytwelve/nHvx5XPk.php?id= | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 09 Jul 2014 19:28:08 GMT Location: http://www.modernciftci.com/wp-content/themes/twentytwelve/nHvx5XPk.php/?id= Server: LiteSpeed Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://www.modernciftci.com/xmlrpc.php X-Powered-By: PHP/5.3.28 | clean |
http://www.modernciftci.com/wp-content/themes/twentytwelve/nhvx5xpk.php/?id= | 200 OK Content-Length: 7325 Content-Type: text/html | clean |
http://www.modernciftci.com/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 96402 Content-Type: application/javascript | clean |
http://www.modernciftci.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.modernciftci.com/wp-content/themes/twentyfourteen/js/functions.js?ver=20140319 | 200 OK Content-Length: 3393 Content-Type: application/javascript | clean |
http://modernciftci.com/wp-content/themes/twentytwelve/ | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://modernciftci.com/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 09 Jul 2014 19:28:12 GMT Location: http://www.modernciftci.com/test404page.js/ Server: LiteSpeed Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://www.modernciftci.com/xmlrpc.php X-Powered-By: PHP/5.3.28 | clean |
http://www.modernciftci.com/test404page.js/ | 200 OK Content-Length: 7325 Content-Type: text/html | clean |
http://www.modernciftci.com/ | 200 OK Content-Length: 7325 Content-Type: text/html | clean |
http://www.modernciftci.com/?page_id=2 | 200 OK Content-Length: 10213 Content-Type: text/html | clean |
http://www.modernciftci.com/wp-includes/js/comment-reply.min.js?ver=3.9.1 | 200 OK Content-Length: 757 Content-Type: application/javascript | clean |
http://www.modernciftci.com/wp-admin/ | HTTP/1.1 302 Found Cache-Control: no-cache, no-store, must-revalidate, max-age=0 Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Wed, 09 Jul 2014 19:28:17 GMT Pragma: no-cache Location: http://www.modernciftci.com/wp-login.php?redirect_to=http%3A%2F%2Fwww.modernciftci.com%2Fwp-admin%2F&reauth=1 Server: LiteSpeed Content-Length: 0 Content-Type: text/html Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Powered-By: PHP/5.3.28 | clean |
http://www.modernciftci.com/wp-login.php?redirect_to=http%3a%2f%2fwww.modernciftci.com%2fwp-admin%2f&reauth=1 | 200 OK Content-Length: 2765 Content-Type: text/html | clean |
http://www.modernciftci.com/wp-login.php?action=lostpassword | 200 OK Content-Length: 2436 Content-Type: text/html | clean |
http://www.modernciftci.com/wp-login.php | 200 OK Content-Length: 2765 Content-Type: text/html | clean |
http://www.modernciftci.com/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 09 Jul 2014 19:28:21 GMT Location: http://www.modernciftci.com/test404page.js/ Server: LiteSpeed Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://www.modernciftci.com/xmlrpc.php X-Powered-By: PHP/5.3.28 | clean |
http://www.modernciftci.com/?p=5 | 200 OK Content-Length: 9778 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tehnisol.ro
Result:
GET / HTTP/1.1
Host: tehnisol.ro
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: tehnisol.ro
Referer: http://www.google.com/search?q=tehnisol.ro
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tehnisol.ro
Referer: http://www.google.com/search?q=tehnisol.ro
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tehnisol.ro
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tehnisol.ro/
Result: tehnisol.ro is not infected or malware details are not published yet.
Result: tehnisol.ro is not infected or malware details are not published yet.