Scanned pages/files
Request | Server response | Status |
http://thalapathijobs.com/ | HTTP/1.1 200 OK Date: Sun, 22 Mar 2015 00:10:22 GMT Accept-Ranges: bytes ETag: "caf0da831d60d01:7ede" Server: Microsoft-IIS/6.0 Content-Length: 6679 Content-Location: http://thalapathijobs.com/Default.htm Content-Type: text/html Last-Modified: Mon, 16 Mar 2015 19:15:07 GMT X-Powered-By: ASP.NET | clean |
http://thalapathijobs.com/default.htm | 200 OK Content-Length: 6679 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 1x1 src: http://www.youtube.com/v/k5you6esyhu&hl=en_us&autoplay=1&loop=1&index=1 <iframe width="1" height="1" src="http://www.youtube.com/v/k5you6esyhu&hl=en_us&autoplay=1&loop=1&index=1" frameborder="0" s2848051590925866895="true" replaced="true"> Deface/Content modification. The following signature was found: hacked by ...[5665 bytes skipped]... <br> <p align="center"><img src="http://www.buzzradioonline.co.uk/wp-content/uploads/2013/11/sunnyleone.jpg" width="auto" height="300px"/></p> <br><br><br><br><br> <center> <font face="Iceland" size="100" color="green"> <marquee direction="Left" scrollamount="20" scrolldelay="150" width="100%"> <h1> hacked by <strong>TiG3R Sunny</strong></h1> </marquee> </font> </center> <br><br><br> <center><font face="Iceland" color="white" size=12>from <br>Endia <font color="red"><br>Stop raping the Woman</font> <center><font face="Iceland" color="red" size=12> <font color="Green"><br>Stop Criticizing the TiG3Rz</font> ...[1796 bytes skipped]... | ||
http://code.jquery.com/jquery-2.1.1.js | 200 OK Content-Length: 247351 Content-Type: application/x-javascript | clean |
http://thalapathijobs.com/test404page.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: thalapathijobs.com
Result:
HTTP/1.1 200 OK
Date: Sun, 22 Mar 2015 00:10:22 GMT
Accept-Ranges: bytes
ETag: "caf0da831d60d01:7ede"
Server: Microsoft-IIS/6.0
Content-Length: 6679
Content-Location: http://thalapathijobs.com/Default.htm
Content-Type: text/html
Last-Modified: Mon, 16 Mar 2015 19:15:07 GMT
X-Powered-By: ASP.NET
...6679 bytes of data.
GET / HTTP/1.1
Host: thalapathijobs.com
Result:
HTTP/1.1 200 OK
Date: Sun, 22 Mar 2015 00:10:22 GMT
Accept-Ranges: bytes
ETag: "caf0da831d60d01:7ede"
Server: Microsoft-IIS/6.0
Content-Length: 6679
Content-Location: http://thalapathijobs.com/Default.htm
Content-Type: text/html
Last-Modified: Mon, 16 Mar 2015 19:15:07 GMT
X-Powered-By: ASP.NET
...6679 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: thalapathijobs.com
Referer: http://www.google.com/search?q=thalapathijobs.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: thalapathijobs.com
Referer: http://www.google.com/search?q=thalapathijobs.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=thalapathijobs.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://thalapathijobs.com/
Result: thalapathijobs.com is not infected or malware details are not published yet.
Result: thalapathijobs.com is not infected or malware details are not published yet.