Scanned pages/files
Request | Server response | Status |
http://texasholdemtournaments.com/ | 200 OK Content-Length: 44996 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By darkshadow-tn ...[50793 bytes skipped]... gt; <br /> <b>Warning</b>: html_entity_decode() [<a href='function.html-entity-decode'>function.html-entity-decode</a>]: charset `UTF-7' not supported, assuming iso-8859-1 in <b>/home/texhldtrn/public_html/wp-content/themes/enfold/framework/php/function-set-avia-backend.php</b> on line <b>604</b><br /> <TITLE>Hacked By darkshadow-tn</TITLE> <title>Hacked By AnonCoders</title> <META NAME="keywords" CONTENT="Hacked By AnonCoders"> </head> <!-----------Powered--By----AnonCoders---------> <body> <div align="center"> <tr> <div class="miniblock"><font face="cursive" size="4"><b> <style type="text/css"> body{font-weight: normal; color: red; font-family: cursive; backgroun ...[3307 bytes skipped]... | ||
http://texasholdemtournaments.com/function.html-entity-decode | 200 OK Content-Length: 118261 Content-Type: text/html | clean |
http://texasholdemtournaments.com/wp-includes/js/jquery/jquery.js?ver=1.11.2 | 200 OK Content-Length: 95952 Content-Type: application/javascript | clean |
http://texasholdemtournaments.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://texasholdemtournaments.com/wp-content/themes/enfold/js/avia-compat.js?ver=2 | 200 OK Content-Length: 1105 Content-Type: application/javascript | clean |
http://texasholdemtournaments.com/wp-content/themes/enfold/js/avia.js?ver=2 | 200 OK Content-Length: 97607 Content-Type: application/javascript | clean |
http://texasholdemtournaments.com/wp-content/themes/enfold/js/shortcodes.js?ver=2 | 200 OK Content-Length: 125992 Content-Type: application/javascript | clean |
http://texasholdemtournaments.com/wp-content/themes/enfold/js/aviapopup/jquery.magnific-popup.min.js?ver=2 | 200 OK Content-Length: 20947 Content-Type: application/javascript | clean |
http://texasholdemtournaments.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=2.16.2 | 200 OK Content-Length: 77780 Content-Type: application/javascript | clean |
http://texasholdemtournaments.com/wp-includes/js/mediaelement/wp-mediaelement.js?ver=4.2.4 | 200 OK Content-Length: 926 Content-Type: application/javascript | clean |
http://texasholdemtournaments.com/function.session-start | 200 OK Content-Length: 118261 Content-Type: text/html | clean |
http://texasholdemtournaments.com/?s= | 200 OK Content-Length: 106452 Content-Type: text/html | clean |
http://texasholdemtournaments.com/index.php/sample-page/ | 200 OK Content-Length: 109400 Content-Type: text/html | clean |
http://texasholdemtournaments.com/wp-includes/js/comment-reply.min.js?ver=4.2.4 | 200 OK Content-Length: 757 Content-Type: application/javascript | clean |
http://texasholdemtournaments.com/index.php/sample-page/function.html-entity-decode | 200 OK Content-Length: 115659 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: texasholdemtournaments.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 17 Aug 2015 08:56:18 GMT
Server: Apache/2.2.22 (Unix) mod_ssl/2.2.22 OpenSSL/1.0.0-fips mod_bwlimited/1.4
Content-Type: text/html
X-Powered-By: PHP/5.3.10
GET / HTTP/1.1
Host: texasholdemtournaments.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 17 Aug 2015 08:56:18 GMT
Server: Apache/2.2.22 (Unix) mod_ssl/2.2.22 OpenSSL/1.0.0-fips mod_bwlimited/1.4
Content-Type: text/html
X-Powered-By: PHP/5.3.10
Second query (visit from search engine):
GET / HTTP/1.1
Host: texasholdemtournaments.com
Referer: http://www.google.com/search?q=texasholdemtournaments.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: texasholdemtournaments.com
Referer: http://www.google.com/search?q=texasholdemtournaments.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=texasholdemtournaments.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://texasholdemtournaments.com/
Result: texasholdemtournaments.com is not infected or malware details are not published yet.
Result: texasholdemtournaments.com is not infected or malware details are not published yet.