Scanned pages/files
Request | Server response | Status |
http://gonuldostlari74.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 09 Apr 2014 05:22:41 GMT Location: http://www.gonuldostlari74.com/ Server: Apache/2 Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-7 X-Pingback: http://www.gonuldostlari74.com/xmlrpc.php X-Powered-By: PHP/5.3.28 | clean |
http://www.gonuldostlari74.com/ | 200 OK Content-Length: 22221 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By SEYTANAUYDUM <html><head><title>Hacked By SEYTANAUYDUM</title><link rel="SHORTCUT ICON" href="http://i.imgur.com/2ePvK.gif"><meta> <style> body { background: #000000 url() no-repeat top center; color: #ff0000; font-family: Courier New; font-size: 12px; } #black{ text-align: center; font-size:12px; font-weight: bold; } a:link, a:visited {font-weight:normal; t ...[24740 bytes skipped]... | ||
http://in.sitekodlari.com/sagtus.js | 200 OK Content-Length: 543 Content-Type: text/javascript | clean |
http://analytics.hosting24.com/count.php | 200 OK Content-Length: 960 Content-Type: application/javascript | clean |
http://gonuldostlari74.com/test404page.js | 404 Not Found Content-Length: 402 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: gonuldostlari74.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 09 Apr 2014 05:22:41 GMT
Location: http://www.gonuldostlari74.com/
Server: Apache/2
Vary: Accept-Encoding,User-Agent
Content-Length: 0
Content-Type: text/html; charset=UTF-7
X-Pingback: http://www.gonuldostlari74.com/xmlrpc.php
X-Powered-By: PHP/5.3.28
...0 bytes of data.
GET / HTTP/1.1
Host: gonuldostlari74.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 09 Apr 2014 05:22:41 GMT
Location: http://www.gonuldostlari74.com/
Server: Apache/2
Vary: Accept-Encoding,User-Agent
Content-Length: 0
Content-Type: text/html; charset=UTF-7
X-Pingback: http://www.gonuldostlari74.com/xmlrpc.php
X-Powered-By: PHP/5.3.28
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: gonuldostlari74.com
Referer: http://www.google.com/search?q=gonuldostlari74.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: gonuldostlari74.com
Referer: http://www.google.com/search?q=gonuldostlari74.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=gonuldostlari74.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://gonuldostlari74.com/
Result: gonuldostlari74.com is not infected or malware details are not published yet.
Result: gonuldostlari74.com is not infected or malware details are not published yet.