Scanned pages/files
Request | Server response | Status |
http://dulichbana.biz/ | 200 OK Content-Length: 1314 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By ||JackSparrow|| ...[476 bytes skipped]... /thtson2.png\" /></center> <center><img src=\"http://i.hizliresim.com/g5rj20.png\" /></center> <br /> <div align=\"center\" id=\"textfeld\" style=\"font-family:Courier New,Arial,Verdana,Tahoma,helvetica,sans-serif,Times New Roman;font-size:25pt;color:red\"> </div> <p align=\"center\"><font color=\"ffffff\" face=\"Iceland\" size=\"8\">Hacked By ||JackSparrow|| <font color=\"red\" face=\"Iceland\" size=\"8\"> <br /><br /> <object width=\"0\" height=\"0\"><param name=\"movie\" value=\"//www.youtube.com/v/Xjq5jkd5wVg&autoplay=1?hl=tr_TR&version=3\"></param><param name=\"allowFullScreen\" value=\"true\"></param><param name=\"allowscriptaccess\" value=\"always\"></param><embed src=\"//www.youtube.com/v/Xjq5jkd5wVg&autoplay=1?hl=tr_TR& ...[181 bytes skipped]... | ||
http://dulichbana.biz/test404page.js | 200 OK Content-Length: 1314 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: dulichbana.biz
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 10 Jul 2015 16:52:05 GMT
Server: nginx/1.7.9
Vary: Accept-Encoding
Content-Type: text/html
Host-Header: 192fc2e7e50945beb8231a492d6a8024
X-Proxy-Cache: MISS
GET / HTTP/1.1
Host: dulichbana.biz
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 10 Jul 2015 16:52:05 GMT
Server: nginx/1.7.9
Vary: Accept-Encoding
Content-Type: text/html
Host-Header: 192fc2e7e50945beb8231a492d6a8024
X-Proxy-Cache: MISS
Second query (visit from search engine):
GET / HTTP/1.1
Host: dulichbana.biz
Referer: http://www.google.com/search?q=dulichbana.biz
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: dulichbana.biz
Referer: http://www.google.com/search?q=dulichbana.biz
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=dulichbana.biz
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://dulichbana.biz/
Result: dulichbana.biz is not infected or malware details are not published yet.
Result: dulichbana.biz is not infected or malware details are not published yet.