Scanned pages/files
| Request | Server response | Status |
http://crcturkiye.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 15 Jan 2015 16:05:28 GMT Location: http://www.crcturkiye.com/ Server: Apache Vary: Accept-Encoding Content-Length: 234 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.crcturkiye.com/ | 200 OK Content-Length: 9753 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY ...[4351 bytes skipped]... ---> <div id="container"> <div id="main" role="main"> <div id="bazingaContent"> <div id="bazingaContentInner"> <div class="bazingaThinColumn"> <h1> HACKED!</h1> <div class="bazingaDivider"></div> <p><span>HACKED BY </span><span><a href="#" target="_blank"> SIDHEL CHOR </a> !</span><strong> M_L_HACKING GROUP </strong>BANGLADESH</span></p> <br> <br> <p><span><strong>GREETZ</strong><a href="www.facebook.com/groups/Murkho.Lyly/"><marquee>|| MURKHO MANOB || HACKER LYLY || Haxor Injector || BD Leet || Vodro Chele || AND ...[6874 bytes skipped]... | ||
http://erin-erina.meximas.com/js/libs/modernizr-2.0.6.min.js | HTTP/1.1 404 Not Found Connection: close Date: Thu, 15 Jan 2015 16:05:30 GMT Server: Apache Content-Length: 170 Content-Type: text/html; charset=utf-8 X-Powered-By: PHP/5.2.17 | clean |
http://www.hostinger.lt/klaida_404? | 200 OK Content-Length: 11371 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js | 200 OK Content-Length: 91556 Content-Type: text/javascript | clean |
http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.14/jquery-ui.min.js | 200 OK Content-Length: 201658 Content-Type: text/javascript | clean |
http://erin-erina.meximas.com/js/site.php | HTTP/1.1 404 Not Found Connection: close Date: Thu, 15 Jan 2015 16:05:38 GMT Server: Apache Content-Length: 170 Content-Type: text/html; charset=utf-8 X-Powered-By: PHP/5.2.17 | clean |
http://www.hostinger.lt/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://erin-erina.meximas.com/js/popup.js | HTTP/1.1 404 Not Found Connection: close Date: Thu, 15 Jan 2015 16:05:39 GMT Server: Apache Content-Length: 170 Content-Type: text/html; charset=utf-8 X-Powered-By: PHP/5.2.17 | clean |
http://i.kuryjs.info/kury/javascript.js?appTitle=Smartbar&channel=src2_pr&hid=3e05eee2-d832-47b7-b607-7a163fbc72ed | 200 OK Content-Length: 7177 Content-Type: application/x-javascript | clean |
http://www.superfish.com/ws/sf_main.jsp?dlsource=fowpwbb&userId=16AF47B9-805A-4B2C-8D0&CTID=src2_pr&partnername=Smartbar | 200 OK Content-Length: 14495 Content-Type: text/html | clean |
http://linurytestwesteurope.blob.core.windows.net/sharon-test/visadd.js | 200 OK Content-Length: 0 Content-Type: text/javascript | clean |
http://cdn.visadd.com/script/14567725814/preload.js?subid=src2_pr | 200 OK Content-Length: 10192 Content-Type: application/javascript | clean |
http://api.jollywallet.com/affiliate/client?dist=100&sub=2_pr&name=Smartbar | 200 OK Content-Length: 38042 Content-Type: application/javascript | clean |
http://yondarkness.googlecode.com/files/AntiCopas.js | 200 OK Content-Length: 2016 Content-Type: text/plain | clean |
http://yondarkness.googlecode.com/files/ | 404 Not Found Content-Length: 1431 Content-Type: text/html | clean |
http://yondarkness.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://crcturkiye.com//ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 15 Jan 2015 16:05:44 GMT Location: http://www.crcturkiye.com/ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js/ Server: Apache Vary: Accept-Encoding Content-Length: 291 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.crcturkiye.com/ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js/ | 404 Not Found Content-Length: 374 Content-Type: text/html | clean |
http://erin-erina.meximas.com/js/mylibs/supersized.3.1.3.min.js | HTTP/1.1 404 Not Found Connection: close Date: Thu, 15 Jan 2015 16:05:45 GMT Server: Apache Content-Length: 170 Content-Type: text/html; charset=utf-8 X-Powered-By: PHP/5.2.17 | clean |
http://erin-erina.meximas.com/js/mylibs/jquery.mousewheel.js | HTTP/1.1 404 Not Found Connection: close Date: Thu, 15 Jan 2015 16:05:46 GMT Server: Apache Content-Length: 170 Content-Type: text/html; charset=utf-8 X-Powered-By: PHP/5.2.17 | clean |
http://erin-erina.meximas.com/js/mylibs/mwheelIntent.js | HTTP/1.1 404 Not Found Connection: close Date: Thu, 15 Jan 2015 16:05:46 GMT Server: Apache Content-Length: 170 Content-Type: text/html; charset=utf-8 X-Powered-By: PHP/5.2.17 | clean |
http://erin-erina.meximas.com/js/mylibs/jquery.jscrollpane3.min.js | HTTP/1.1 404 Not Found Connection: close Date: Thu, 15 Jan 2015 16:05:47 GMT Server: Apache Content-Length: 170 Content-Type: text/html; charset=utf-8 X-Powered-By: PHP/5.2.17 | clean |
http://erin-erina.meximas.com/js/plugins.js | HTTP/1.1 404 Not Found Connection: close Date: Thu, 15 Jan 2015 16:05:47 GMT Server: Apache Content-Length: 170 Content-Type: text/html; charset=utf-8 X-Powered-By: PHP/5.2.17 | clean |
http://erin-erina.meximas.com/js/script.js | HTTP/1.1 404 Not Found Connection: close Date: Thu, 15 Jan 2015 16:05:48 GMT Server: Apache Content-Length: 170 Content-Type: text/html; charset=utf-8 X-Powered-By: PHP/5.2.17 | clean |
http://htmlfreecodes.com/codes/rain.js | 200 OK Content-Length: 7113 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: crcturkiye.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 15 Jan 2015 16:05:28 GMT
Location: http://www.crcturkiye.com/
Server: Apache
Vary: Accept-Encoding
Content-Length: 234
Content-Type: text/html; charset=iso-8859-1
...234 bytes of data.
GET / HTTP/1.1
Host: crcturkiye.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 15 Jan 2015 16:05:28 GMT
Location: http://www.crcturkiye.com/
Server: Apache
Vary: Accept-Encoding
Content-Length: 234
Content-Type: text/html; charset=iso-8859-1
...234 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: crcturkiye.com
Referer: http://www.google.com/search?q=crcturkiye.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: crcturkiye.com
Referer: http://www.google.com/search?q=crcturkiye.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=crcturkiye.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://crcturkiye.com/
Result: crcturkiye.com is not infected or malware details are not published yet.
Result: crcturkiye.com is not infected or malware details are not published yet.