Scanned pages/files
| Request | Server response | Status |
http://ecosouq.com/ | 200 OK Content-Length: 2440 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By BadRookie / TurkHackTeam.Org <script language="JavaScript1.2">
function ClearError() {return true;} window.onerror = ClearError; </script> <link rel="shortcut icon" href="http://www.clip-bucket.tk/images/ayyildiz.png" /> <title> Hacked By BadRookie / TurkHackTeam.Org </title> <script language="JavaScript1.2">function ClearError() {return true;}window.onerror = ClearError;</script><title>BadRookie </title><body bgcolor="white"></body><font color="white"<title>By BadRookie</title><meta http-equiv="content-type" content="text/html;charset=iso-8859-9"/><Script Language="Javascript"><!-- DONT PLAY WITH US :) --& ...[2103 bytes skipped]... | ||
http://ecosouq.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ecosouq.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Fri, 17 Jul 2015 17:01:09 GMT
Pragma: no-cache
Server: Apache
Content-Length: 2440
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 56bdb2d88d64f28149608d088e3fc781=0530a4acd7c8bdbaf66dab5787d8b4ff; path=/
X-Powered-By: PHP/5.3.29
...2440 bytes of data.
GET / HTTP/1.1
Host: ecosouq.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Fri, 17 Jul 2015 17:01:09 GMT
Pragma: no-cache
Server: Apache
Content-Length: 2440
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 56bdb2d88d64f28149608d088e3fc781=0530a4acd7c8bdbaf66dab5787d8b4ff; path=/
X-Powered-By: PHP/5.3.29
...2440 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: ecosouq.com
Referer: http://www.google.com/search?q=ecosouq.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ecosouq.com
Referer: http://www.google.com/search?q=ecosouq.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ecosouq.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ecosouq.com/
Result: ecosouq.com is not infected or malware details are not published yet.
Result: ecosouq.com is not infected or malware details are not published yet.