Scanned pages/files
| Request | Server response | Status |
http://altunbas.com.tr/ | 200 OK Content-Length: 8656 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Hackworld ...[256 bytes skipped]... ;html class="no-js lt-ie9" lang="tr"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="tr"> <!--<![endif]--> <head> <meta charset="UTF-8" /> <meta http-equiv="content-language" content="tr" /> <title>AltunbaŠYapı</title> <meta charset="UTF-8"/> <meta name="keywords" content="Hacked By Hackworld"/> <meta name="description" content="AltunbaŠYapı" /> <link rel="shortcut icon" type="image/x-icon" href="tpl/./assets/frontend/img/favicon/favicon.ico" /> <link rel="stylesheet" type="text/css" href="http://fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800&subset=latin,latin-ext" /> <link rel="stylesheet" type="text/css" href="tpl/./assets/frontend/css ...[9671 bytes skipped]... | ||
http://altunbas.com.tr/tpl/./assets/frontend/js/libs/modernizr.js | 200 OK Content-Length: 15414 Content-Type: application/javascript | clean |
http://altunbas.com.tr/tpl/assets/frontend/js/libs/jquery.js | 200 OK Content-Length: 92594 Content-Type: application/javascript | clean |
http://altunbas.com.tr/tpl/assets/frontend/js/jc.js | 200 OK Content-Length: 14266 Content-Type: application/javascript | clean |
http://altunbas.com.tr/tpl/assets/frontend/js/plugins.js | 200 OK Content-Length: 4066 Content-Type: application/javascript | clean |
http://altunbas.com.tr/tpl/assets/frontend/js/flexslider.js | 200 OK Content-Length: 16917 Content-Type: application/javascript | clean |
http://altunbas.com.tr/tpl/assets/frontend/js/script.js | 200 OK Content-Length: 2023 Content-Type: application/javascript | clean |
http://altunbas.com.tr/index.php | 200 OK Content-Length: 8656 Content-Type: text/html | clean |
http://altunbas.com.tr/page.php?id=1 | 200 OK Content-Length: 5080 Content-Type: text/html | clean |
http://altunbas.com.tr/gallery.php?id=4 | 200 OK Content-Length: 8842 Content-Type: text/html | clean |
http://altunbas.com.tr/tpl/js/slimbox2.js | 200 OK Content-Length: 4123 Content-Type: application/javascript | clean |
http://altunbas.com.tr/gallery.php?id=5 | 200 OK Content-Length: 8716 Content-Type: text/html | clean |
http://altunbas.com.tr/products.php?id=1 | 200 OK Content-Length: 5720 Content-Type: text/html | clean |
http://altunbas.com.tr/product.php?id=5 | 200 OK Content-Length: 4548 Content-Type: text/html | clean |
http://altunbas.com.tr/test404page.js | 404 Not Found Content-Length: 509 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: altunbas.com.tr
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 23 Apr 2014 03:18:08 GMT
Pragma: no-cache
Server: Apache/2.2.26 (Unix) mod_ssl/2.2.26 OpenSSL/1.0.1e-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Type: text/html;charset = utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=2e9042c5b5abd97e8b60a91485b5352b; path=/
X-Powered-By: PHP/5.3.28
GET / HTTP/1.1
Host: altunbas.com.tr
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 23 Apr 2014 03:18:08 GMT
Pragma: no-cache
Server: Apache/2.2.26 (Unix) mod_ssl/2.2.26 OpenSSL/1.0.1e-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Type: text/html;charset = utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=2e9042c5b5abd97e8b60a91485b5352b; path=/
X-Powered-By: PHP/5.3.28
Second query (visit from search engine):
GET / HTTP/1.1
Host: altunbas.com.tr
Referer: http://www.google.com/search?q=altunbas.com.tr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: altunbas.com.tr
Referer: http://www.google.com/search?q=altunbas.com.tr
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=altunbas.com.tr
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://altunbas.com.tr/
Result: altunbas.com.tr is not infected or malware details are not published yet.
Result: altunbas.com.tr is not infected or malware details are not published yet.