Scanned pages/files
Request | Server response | Status |
http://tulasidalam.com/ | 200 OK Content-Length: 17917 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By <!doctype html>
<html lang="en"> <title>Hacked By "1UcIf42 5pId32" </title> <body bgcolor=black lang=EN-US style='tab-interval:36.0pt; text-align:center'> <onload=type_text() onclick='alert("This script is valid for BBCP official members !! Dont Try To Copy :This script ")'> <br> <link rel="SHORTCUT ICON" type="image/x-icon" href="http://netanimations.net/Moving-picture-Bangladesh-flag-waving-in-wind-animated-gif-1.gif"> <META NAME ...[20324 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js | 200 OK Content-Length: 92629 Content-Type: text/javascript | clean |
http://tulasidalam.com/B1D671CF-E532-4481-99AA-19F420D90332/netdefender/hui/ndhui.js?0=0&0=0&0=0 | 404 Not Found Content-Length: 378 Content-Type: text/html | clean |
http://tulasidalam.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://www.nycfragrance.com/csvcategoryimportver1.0.3/system/css/layout/js/crazyIntro.js | 404 Not Found Content-Length: 1699 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tulasidalam.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 11 Dec 2015 10:32:48 GMT
Server: cloudflare-nginx
Content-Type: text/html
CF-RAY: 253087146ab32adf-WAW
Set-Cookie: __cfduid=d36ba2a95ab2e3fb18cc156a414e5d5ec1449829968; expires=Sat, 10-Dec-16 10:32:48 GMT; path=/; domain=.tulasidalam.com; HttpOnly
X-Powered-By: PHP/5.4.45
GET / HTTP/1.1
Host: tulasidalam.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 11 Dec 2015 10:32:48 GMT
Server: cloudflare-nginx
Content-Type: text/html
CF-RAY: 253087146ab32adf-WAW
Set-Cookie: __cfduid=d36ba2a95ab2e3fb18cc156a414e5d5ec1449829968; expires=Sat, 10-Dec-16 10:32:48 GMT; path=/; domain=.tulasidalam.com; HttpOnly
X-Powered-By: PHP/5.4.45
Second query (visit from search engine):
GET / HTTP/1.1
Host: tulasidalam.com
Referer: http://www.google.com/search?q=tulasidalam.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tulasidalam.com
Referer: http://www.google.com/search?q=tulasidalam.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tulasidalam.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tulasidalam.com/
Result: tulasidalam.com is not infected or malware details are not published yet.
Result: tulasidalam.com is not infected or malware details are not published yet.