Scanned pages/files
| Request | Server response | Status |
http://topsapk.com/ | 200 OK Content-Length: 16430 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Mr. DellatioNx196 - Indonesian Cyber Freedom ...[5289 bytes skipped]... 9%7A%65%74%69%74%6C%65%28%29%7B%20%74%62%35%5F%69%6E%69%74%28%30%29%3B%0A%7D%0A%74%62%35%5F%72%61%6E%64%6F%6D%69%7A%65%74%69%74%6C%65%28%29%3B%0A%0A%3C%2F%73%63%72%69%70%74%3E%20')); //--> </Script> <meta name="robots" content="index, follow"> <link rel="SHORTCUT ICON" href="http://i.imgur.com/QYUFm5u.png"/> <meta name="description" content="Hacked by Mr. DellatioNx196 - Indonesian Cyber Freedom"/> <meta name="googlebot" content="index,follow"/> <meta name="robots" content="all"/> <meta name="robots schedule" content="auto"/> <meta name="distribution" content="global"/> <base target='_blank'/> </head> <title>./Hacked by Mr. DellatioNx196 | Indonesian Cyber Freedom</title> <meta name="description" con ...[10952 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js | 200 OK Content-Length: 72174 Content-Type: text/javascript | clean |
http://jqueryrotate.googlecode.com/svn/trunk/jQueryRotate.js | 200 OK Content-Length: 13892 Content-Type: text/plain | clean |
http://jqueryrotate.googlecode.com/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://jqueryrotate.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://www.p0wersurge.com/js/jquery-css-transform.js | 200 OK Content-Length: 4109 Content-Type: application/x-javascript | clean |
http://www.p0wersurge.com/js/rotate3Di.js | 200 OK Content-Length: 5389 Content-Type: application/x-javascript | clean |
http://topsapk.com//www.google.com/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Mon, 15 Dec 2014 21:39:07 GMT Pragma: no-cache Location: http://topsapk.com/www.google.com/ Server: LiteSpeed Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://topsapk.com/xmlrpc.php X-Powered-By: PHP/5.3.29 | clean |
http://topsapk.com/www.google.com/ | 404 Not Found Content-Length: 18022 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js?ver=3.9.3 | 200 OK Content-Length: 93100 Content-Type: text/javascript | clean |
http://code.jquery.com/jquery-migrate-1.2.1.min.js?ver=3.9.3 | 200 OK Content-Length: 7199 Content-Type: application/x-javascript | clean |
http://topsapk.com/wp-content/themes/mh-magazine-lite/js/scripts.js?ver=3.9.3 | 200 OK Content-Length: 47717 Content-Type: application/javascript | clean |
http://resources.infolinks.com/js/infolinks_main.js | 200 OK Content-Length: 2275 Content-Type: text/javascript | clean |
http://topsapk.com/sample-page/ | 200 OK Content-Length: 15017 Content-Type: text/html | clean |
http://topsapk.com/wp-includes/js/comment-reply.min.js?ver=3.9.3 | 200 OK Content-Length: 757 Content-Type: application/javascript | clean |
http://topsapk.com/wp-admin/ | HTTP/1.1 302 Found Cache-Control: no-cache, no-store, must-revalidate, max-age=0 Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Mon, 15 Dec 2014 21:39:11 GMT Pragma: no-cache Location: http://topsapk.com/wp-login.php?redirect_to=http%3A%2F%2Ftopsapk.com%2Fwp-admin%2F&reauth=1 Server: LiteSpeed Content-Length: 0 Content-Type: text/html Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Powered-By: PHP/5.3.29 | clean |
http://topsapk.com/wp-login.php?redirect_to=http%3a%2f%2ftopsapk.com%2fwp-admin%2f&reauth=1 | 200 OK Content-Length: 2630 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: topsapk.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 15 Dec 2014 21:39:03 GMT
Accept-Ranges: bytes
ETag: "402e-54472617-85209a79e189f891"
Server: LiteSpeed
Content-Length: 16430
Content-Type: text/html
Last-Modified: Wed, 22 Oct 2014 03:35:51 GMT
...16430 bytes of data.
GET / HTTP/1.1
Host: topsapk.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 15 Dec 2014 21:39:03 GMT
Accept-Ranges: bytes
ETag: "402e-54472617-85209a79e189f891"
Server: LiteSpeed
Content-Length: 16430
Content-Type: text/html
Last-Modified: Wed, 22 Oct 2014 03:35:51 GMT
...16430 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: topsapk.com
Referer: http://www.google.com/search?q=topsapk.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: topsapk.com
Referer: http://www.google.com/search?q=topsapk.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=topsapk.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://topsapk.com/
Result: topsapk.com is not infected or malware details are not published yet.
Result: topsapk.com is not infected or malware details are not published yet.