Scanned pages/files
Request | Server response | Status |
http://www.yanhom.com/ | 200 OK Content-Length: 5157 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY UYAP-CASTOL ...[4627 bytes skipped]... lt;img src="http://1.bp.blogspot.com/-Uw30dBS9Pik/UQfS5oUbIdI/AAAAAAAAAOA/HCeT9DdCrOA/s1600/animasi-bergerak-naruto-gif.gif" height="350"></center> <br><center><font color="red" face="Courier New">.:: BLACKUNIX CREW ::.</center> <br><center><font color="red" face="Courier New">.:: Cinta itu Pembodohan ::.</center> <br><center><b>HACKED BY UYAP-CASTOL</b></center> <td><center> <FONT face="Tahoma" size="5" color="#ff0000">Thanks To :</font><marquee behavior="scroll" direction="left" scrollamount="2" scrolldelay="20" width="50%"><FONT face="Tahoma" size="3" color=" Red">MAQIE | RAMZKIE | Bogel | uyap | XSOUL | ARHY MAHO CORE | Bluetooth | Ryu DLC CYBER| ancha cmd || el-yofro | BIANG KEROX HACKER TEAM | BLACKUNIX CREW | DLC CYBER | </FONT>& ...[1085 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.4.1/jquery.min.js | 200 OK Content-Length: 70843 Content-Type: text/javascript | clean |
https://ajax.googleapis.com/ajax/libs/jquery/1.6.1/jquery.min.js | 200 OK Content-Length: 91342 Content-Type: text/javascript | clean |
http://www.yanhom.com/test404page.js | 404 Not Found Content-Length: 395 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: yanhom.com
Result:
GET / HTTP/1.1
Host: yanhom.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: yanhom.com
Referer: http://www.google.com/search?q=yanhom.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: yanhom.com
Referer: http://www.google.com/search?q=yanhom.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=yanhom.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://yanhom.com/
Result: yanhom.com is not infected or malware details are not published yet.
Result: yanhom.com is not infected or malware details are not published yet.