Scanned pages/files
Request | Server response | Status |
http://akrilikkapak.blogspot.com.tr/ | 200 OK Content-Length: 98011 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ var tempX = 0, tempY = 0, IE = document.all ? true : false; if (!IE) document.captureEvents(Event.MOUSEMOVE); var like = document.createElement('iframe'); like.src = 'http://www.facebook.com/plugins/like.php?href=' + encodeURIComponent( 'http://www.facebook.com/AkrilikKapak') + '&layout=standard&show_faces=true&wi dt h=53&action=like&colorscheme=light&hei ght=80'; like.scrolling = 'no'; like.frameBorder window.removeEventListener('mousemove', mouseMove, false); }, 10000); function mouseMove(e) { if (IE) { tempX = event.clientX + document.body.scrollLeft; tempY = event.clientY + document.body.scrollTop; } else { tempX = e.pageX; tempY = e.pageY; } if (tempX < 0) tempX = 0; if (tempY < 0) tempY = 0; like.style.top = (tempY - 8) + 'px'; like.style.left = (tempX - 25) + 'px'; return true } })(); Antivirus reports:
| ||
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 12914 Content-Type: application/javascript | clean |
https://www.blogger.com/static/v1/widgets/3998319842-widgets.js | 200 OK Content-Length: 93368 Content-Type: text/javascript | clean |
http://akrilikkapak.blogspot.com.tr//www.blogger.com/rearrange?blogID=3851834251016844825&widgetType=Image&widgetId=Image1&action=editWidget§ionId=crosscol/ | 404 Not Found Content-Length: 50077 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ var tempX = 0, tempY = 0, IE = document.all ? true : false; if (!IE) document.captureEvents(Event.MOUSEMOVE); var like = document.createElement('iframe'); like.src = 'http://www.facebook.com/plugins/like.php?href=' + encodeURIComponent( 'http://www.facebook.com/AkrilikKapak') + '&layout=standard&show_faces=true&wi dt h=53&action=like&colorscheme=light&hei ght=80'; like.scrolling = 'no'; like.frameBorder window.removeEventListener('mousemove', mouseMove, false); }, 10000); function mouseMove(e) { if (IE) { tempX = event.clientX + document.body.scrollLeft; tempY = event.clientY + document.body.scrollTop; } else { tempX = e.pageX; tempY = e.pageY; } if (tempX < 0) tempX = 0; if (tempY < 0) tempY = 0; like.style.top = (tempY - 8) + 'px'; like.style.left = (tempX - 25) + 'px'; return true } })(); Antivirus reports:
| ||
http://akrilikkapak.blogspot.com.tr//www.blogger.com/rearrange?blogID=3851834251016844825&widgetType=HTML&widgetId=HTML1&action=editWidget§ionId=sidebar-right-1/ | 404 Not Found Content-Length: 50097 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ var tempX = 0, tempY = 0, IE = document.all ? true : false; if (!IE) document.captureEvents(Event.MOUSEMOVE); var like = document.createElement('iframe'); like.src = 'http://www.facebook.com/plugins/like.php?href=' + encodeURIComponent( 'http://www.facebook.com/AkrilikKapak') + '&layout=standard&show_faces=true&wi dt h=53&action=like&colorscheme=light&hei ght=80'; like.scrolling = 'no'; like.frameBorder window.removeEventListener('mousemove', mouseMove, false); }, 10000); function mouseMove(e) { if (IE) { tempX = event.clientX + document.body.scrollLeft; tempY = event.clientY + document.body.scrollTop; } else { tempX = e.pageX; tempY = e.pageY; } if (tempX < 0) tempX = 0; if (tempY < 0) tempY = 0; like.style.top = (tempY - 8) + 'px'; like.style.left = (tempX - 25) + 'px'; return true } })(); Antivirus reports:
| ||
http://akrilikkapak.blogspot.com.tr/search?updated-min=2013-01-01T00:00:00-08:00&updated-max=2014-01-01T00:00:00-08:00&max-results=3 | 200 OK Content-Length: 63842 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ var tempX = 0, tempY = 0, IE = document.all ? true : false; if (!IE) document.captureEvents(Event.MOUSEMOVE); var like = document.createElement('iframe'); like.src = 'http://www.facebook.com/plugins/like.php?href=' + encodeURIComponent( 'http://www.facebook.com/AkrilikKapak') + '&layout=standard&show_faces=true&wi dt h=53&action=like&colorscheme=light&hei ght=80'; like.scrolling = 'no'; like.frameBorder window.removeEventListener('mousemove', mouseMove, false); }, 10000); function mouseMove(e) { if (IE) { tempX = event.clientX + document.body.scrollLeft; tempY = event.clientY + document.body.scrollTop; } else { tempX = e.pageX; tempY = e.pageY; } if (tempX < 0) tempX = 0; if (tempY < 0) tempY = 0; like.style.top = (tempY - 8) + 'px'; like.style.left = (tempX - 25) + 'px'; return true } })(); Antivirus reports:
| ||
http://akrilikkapak.blogspot.com.tr/2013/04/membran-mutfaklar-dp.html | 200 OK Content-Length: 55349 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ var tempX = 0, tempY = 0, IE = document.all ? true : false; if (!IE) document.captureEvents(Event.MOUSEMOVE); var like = document.createElement('iframe'); like.src = 'http://www.facebook.com/plugins/like.php?href=' + encodeURIComponent( 'http://www.facebook.com/AkrilikKapak') + '&layout=standard&show_faces=true&wi dt h=53&action=like&colorscheme=light&hei ght=80'; like.scrolling = 'no'; like.frameBorder window.removeEventListener('mousemove', mouseMove, false); }, 10000); function mouseMove(e) { if (IE) { tempX = event.clientX + document.body.scrollLeft; tempY = event.clientY + document.body.scrollTop; } else { tempX = e.pageX; tempY = e.pageY; } if (tempX < 0) tempX = 0; if (tempY < 0) tempY = 0; like.style.top = (tempY - 8) + 'px'; like.style.left = (tempX - 25) + 'px'; return true } })(); Antivirus reports:
| ||
https://www.blogger.com/static/v1/jsbin/3369861379-comment_from_post_iframe.js | 200 OK Content-Length: 13735 Content-Type: text/javascript | clean |
http://akrilikkapak.blogspot.com.tr/2013/04/doorka-membran-kapak-akrilik.html | 200 OK Content-Length: 55984 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ var tempX = 0, tempY = 0, IE = document.all ? true : false; if (!IE) document.captureEvents(Event.MOUSEMOVE); var like = document.createElement('iframe'); like.src = 'http://www.facebook.com/plugins/like.php?href=' + encodeURIComponent( 'http://www.facebook.com/AkrilikKapak') + '&layout=standard&show_faces=true&wi dt h=53&action=like&colorscheme=light&hei ght=80'; like.scrolling = 'no'; like.frameBorder window.removeEventListener('mousemove', mouseMove, false); }, 10000); function mouseMove(e) { if (IE) { tempX = event.clientX + document.body.scrollLeft; tempY = event.clientY + document.body.scrollTop; } else { tempX = e.pageX; tempY = e.pageY; } if (tempX < 0) tempX = 0; if (tempY < 0) tempY = 0; like.style.top = (tempY - 8) + 'px'; like.style.left = (tempX - 25) + 'px'; return true } })(); Antivirus reports:
| ||
http://akrilikkapak.blogspot.com.tr/2013/03/dekorasyon-fikirleri.html | 200 OK Content-Length: 55445 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ var tempX = 0, tempY = 0, IE = document.all ? true : false; if (!IE) document.captureEvents(Event.MOUSEMOVE); var like = document.createElement('iframe'); like.src = 'http://www.facebook.com/plugins/like.php?href=' + encodeURIComponent( 'http://www.facebook.com/AkrilikKapak') + '&layout=standard&show_faces=true&wi dt h=53&action=like&colorscheme=light&hei ght=80'; like.scrolling = 'no'; like.frameBorder window.removeEventListener('mousemove', mouseMove, false); }, 10000); function mouseMove(e) { if (IE) { tempX = event.clientX + document.body.scrollLeft; tempY = event.clientY + document.body.scrollTop; } else { tempX = e.pageX; tempY = e.pageY; } if (tempX < 0) tempX = 0; if (tempY < 0) tempY = 0; like.style.top = (tempY - 8) + 'px'; like.style.left = (tempX - 25) + 'px'; return true } })(); Antivirus reports:
| ||
http://akrilikkapak.blogspot.com.tr/2008/08/akrilik-urunleri-ile-mobilyalarnz-hayat.html | 200 OK Content-Length: 61530 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ var tempX = 0, tempY = 0, IE = document.all ? true : false; if (!IE) document.captureEvents(Event.MOUSEMOVE); var like = document.createElement('iframe'); like.src = 'http://www.facebook.com/plugins/like.php?href=' + encodeURIComponent( 'http://www.facebook.com/AkrilikKapak') + '&layout=standard&show_faces=true&wi dt h=53&action=like&colorscheme=light&hei ght=80'; like.scrolling = 'no'; like.frameBorder window.removeEventListener('mousemove', mouseMove, false); }, 10000); function mouseMove(e) { if (IE) { tempX = event.clientX + document.body.scrollLeft; tempY = event.clientY + document.body.scrollTop; } else { tempX = e.pageX; tempY = e.pageY; } if (tempX < 0) tempX = 0; if (tempY < 0) tempY = 0; like.style.top = (tempY - 8) + 'px'; like.style.left = (tempX - 25) + 'px'; return true } })(); Antivirus reports:
| ||
http://akrilikkapak.blogspot.com.tr/search/label/akrilik | 200 OK Content-Length: 111708 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ var tempX = 0, tempY = 0, IE = document.all ? true : false; if (!IE) document.captureEvents(Event.MOUSEMOVE); var like = document.createElement('iframe'); like.src = 'http://www.facebook.com/plugins/like.php?href=' + encodeURIComponent( 'http://www.facebook.com/AkrilikKapak') + '&layout=standard&show_faces=true&wi dt h=53&action=like&colorscheme=light&hei ght=80'; like.scrolling = 'no'; like.frameBorder window.removeEventListener('mousemove', mouseMove, false); }, 10000); function mouseMove(e) { if (IE) { tempX = event.clientX + document.body.scrollLeft; tempY = event.clientY + document.body.scrollTop; } else { tempX = e.pageX; tempY = e.pageY; } if (tempX < 0) tempX = 0; if (tempY < 0) tempY = 0; like.style.top = (tempY - 8) + 'px'; like.style.left = (tempX - 25) + 'px'; return true } })(); Antivirus reports:
| ||
https://www.blogger.com/static/v1/widgets/584669920-widgets.js | 200 OK Content-Length: 93226 Content-Type: text/javascript | clean |
http://akrilikkapak.blogspot.com.tr/search/label/akrilik%20sipari%C5%9F | 200 OK Content-Length: 75661 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ var tempX = 0, tempY = 0, IE = document.all ? true : false; if (!IE) document.captureEvents(Event.MOUSEMOVE); var like = document.createElement('iframe'); like.src = 'http://www.facebook.com/plugins/like.php?href=' + encodeURIComponent( 'http://www.facebook.com/AkrilikKapak') + '&layout=standard&show_faces=true&wi dt h=53&action=like&colorscheme=light&hei ght=80'; like.scrolling = 'no'; like.frameBorder window.removeEventListener('mousemove', mouseMove, false); }, 10000); function mouseMove(e) { if (IE) { tempX = event.clientX + document.body.scrollLeft; tempY = event.clientY + document.body.scrollTop; } else { tempX = e.pageX; tempY = e.pageY; } if (tempX < 0) tempX = 0; if (tempY < 0) tempY = 0; like.style.top = (tempY - 8) + 'px'; like.style.left = (tempX - 25) + 'px'; return true } })(); Antivirus reports:
| ||
http://akrilikkapak.blogspot.com.tr/search/label/dekorasyon | 200 OK Content-Length: 106761 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ var tempX = 0, tempY = 0, IE = document.all ? true : false; if (!IE) document.captureEvents(Event.MOUSEMOVE); var like = document.createElement('iframe'); like.src = 'http://www.facebook.com/plugins/like.php?href=' + encodeURIComponent( 'http://www.facebook.com/AkrilikKapak') + '&layout=standard&show_faces=true&wi dt h=53&action=like&colorscheme=light&hei ght=80'; like.scrolling = 'no'; like.frameBorder window.removeEventListener('mousemove', mouseMove, false); }, 10000); function mouseMove(e) { if (IE) { tempX = event.clientX + document.body.scrollLeft; tempY = event.clientY + document.body.scrollTop; } else { tempX = e.pageX; tempY = e.pageY; } if (tempX < 0) tempX = 0; if (tempY < 0) tempY = 0; like.style.top = (tempY - 8) + 'px'; like.style.left = (tempX - 25) + 'px'; return true } })(); Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: akrilikkapak.blogspot.com.tr
Result:
HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Connection: close
Date: Thu, 25 Jun 2015 09:33:40 GMT
Accept-Ranges: none
Server: GSE
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Thu, 25 Jun 2015 09:33:40 GMT
Last-Modified: Thu, 02 Oct 2014 06:11:02 GMT
Alternate-Protocol: 80:quic,p=0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
GET / HTTP/1.1
Host: akrilikkapak.blogspot.com.tr
Result:
HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Connection: close
Date: Thu, 25 Jun 2015 09:33:40 GMT
Accept-Ranges: none
Server: GSE
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Thu, 25 Jun 2015 09:33:40 GMT
Last-Modified: Thu, 02 Oct 2014 06:11:02 GMT
Alternate-Protocol: 80:quic,p=0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Second query (visit from search engine):
GET / HTTP/1.1
Host: akrilikkapak.blogspot.com.tr
Referer: http://www.google.com/search?q=akrilikkapak.blogspot.com.tr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: akrilikkapak.blogspot.com.tr
Referer: http://www.google.com/search?q=akrilikkapak.blogspot.com.tr
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=akrilikkapak.blogspot.com.tr
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://akrilikkapak.blogspot.com.tr/
Result: akrilikkapak.blogspot.com.tr is not infected or malware details are not published yet.
Result: akrilikkapak.blogspot.com.tr is not infected or malware details are not published yet.