Scanned pages/files
Request | Server response | Status |
http://guvenlertekstilyikama.com/ | 200 OK Content-Length: 8003 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: // Hacked By : Scriptkiddie ...[683 bytes skipped]... ww.twitrcover.com/ar/uploads/Al-Quds-Twitter-Header-8534.jpg--> margin-left: 0px; margin-top: 0px; margin-right: 0px; margin-bottom: 0px; background-position:right top; background-repeat:no-repeat; background-size:110% } .style1 { font-family: Arial, Helvetica, sans-serif; font-size: 12px; } </style> <script type="text/javascript"> // Hacked By : Scriptkiddie TypingText = function(element, interval, cursor, finishedCallback) { if((typeof document.getElementById == "undefined") || (typeof element.innerHTML == "undefined")) { this.running = true; return; } this.element = element; this.finishedCallback = (finishedCallback ? finishedCallback : function() { return; }); this.interval = (typeof interval == "undefined" ? 100 : interval); this.origText = this.elemen ...[7794 bytes skipped]... | ||
http://guvenlertekstilyikama.com/./Hacked by Dz Sahara Ghosts__files/jquery.min.js | 500 Internal Server Error Content-Length: 251 Content-Type: text/html | clean |
http://guvenlertekstilyikama.com/test404page.js | 500 Internal Server Error Content-Length: 251 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: guvenlertekstilyikama.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 11 Dec 2015 23:36:36 GMT
Accept-Ranges: bytes
ETag: "1f43"
Server: Apache/2.4.16 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Length: 8003
Content-Type: text/html
Last-Modified: Fri, 16 Oct 2015 08:45:14 GMT
...8003 bytes of data.
GET / HTTP/1.1
Host: guvenlertekstilyikama.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 11 Dec 2015 23:36:36 GMT
Accept-Ranges: bytes
ETag: "1f43"
Server: Apache/2.4.16 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Length: 8003
Content-Type: text/html
Last-Modified: Fri, 16 Oct 2015 08:45:14 GMT
...8003 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: guvenlertekstilyikama.com
Referer: http://www.google.com/search?q=guvenlertekstilyikama.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: guvenlertekstilyikama.com
Referer: http://www.google.com/search?q=guvenlertekstilyikama.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=guvenlertekstilyikama.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://guvenlertekstilyikama.com/
Result: guvenlertekstilyikama.com is not infected or malware details are not published yet.
Result: guvenlertekstilyikama.com is not infected or malware details are not published yet.