Scanned pages/files
Request | Server response | Status |
http://kanberogluinsaat.com.tr/ | 200 OK Content-Length: 17499 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By RedHaT <html></head>
<title>Hacked By RedHaT</title> <head><link rel="shortcut icon" href="http://kizilsapkalihackerlar.blogspot.com.tr/favicon.ico"/></head> <body bgcolor="black"> <META http-equiv=content-type content=text/html;charset=utf-8> <center><br><br> </head> <script language="JavaScript"> function none(){ return false; } document.onc ...[20348 bytes skipped]... | ||
http://scmplayer.net/script.js | 200 OK Content-Length: 4929 Content-Type: application/x-javascript | clean |
http://maps.google.com/maps/api/js?sensor=false | 200 OK Content-Length: 4415 Content-Type: text/javascript | clean |
http://kanberogluinsaat.com.tr/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://kanberogluinsaat.com.tr/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://kanberogluinsaat.com.tr/wp-content/themes/Hermes/js/jquery-ui.js?ver=1.7 | 200 OK Content-Length: 71880 Content-Type: application/javascript | clean |
http://kanberogluinsaat.com.tr/wp-content/themes/Hermes/js/cufon.js?ver=1.7 | 200 OK Content-Length: 41261 Content-Type: application/javascript | clean |
http://kanberogluinsaat.com.tr/wp-content/themes/Hermes/js/colorpicker.js?ver=1.7 | 200 OK Content-Length: 16692 Content-Type: application/javascript | clean |
http://kanberogluinsaat.com.tr/wp-content/themes/Hermes/js/eye.js?ver=1.7 | 200 OK Content-Length: 570 Content-Type: application/javascript | clean |
http://kanberogluinsaat.com.tr/wp-content/themes/Hermes/js/utils.js?ver=1.7 | 200 OK Content-Length: 6884 Content-Type: application/javascript | clean |
http://kanberogluinsaat.com.tr/wp-content/themes/Hermes/js/galleria/galleria-1.2.3.js?ver=1.7 | 200 OK Content-Length: 122956 Content-Type: application/javascript | clean |
http://kanberogluinsaat.com.tr/wp-content/themes/Hermes/js/galleria/themes/classic/galleria.classic.js?ver=1.7 | 200 OK Content-Length: 2618 Content-Type: application/javascript | clean |
http://kanberogluinsaat.com.tr/wp-content/themes/Hermes/swfobject/swfobject.js?ver=1.7 | 200 OK Content-Length: 10220 Content-Type: application/javascript | clean |
http://kanberogluinsaat.com.tr/wp-content/themes/Hermes/fonts/PT_Sans_400.font.js?ver=1.7 | 200 OK Content-Length: 302307 Content-Type: application/javascript | clean |
http://kanberogluinsaat.com.tr/wp-content/themes/Hermes/js/fancybox/jquery.fancybox-1.3.0.js?ver=1.7 | 200 OK Content-Length: 26733 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: kanberogluinsaat.com.tr
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 07 Oct 2015 02:04:22 GMT
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Type: text/html; charset=UTF-8
Link: <http://kanberogluinsaat.com.tr/>; rel=shortlink
X-Pingback: http://kanberogluinsaat.com.tr/xmlrpc.php
X-Powered-By: PHP/5.4.42
GET / HTTP/1.1
Host: kanberogluinsaat.com.tr
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 07 Oct 2015 02:04:22 GMT
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Type: text/html; charset=UTF-8
Link: <http://kanberogluinsaat.com.tr/>; rel=shortlink
X-Pingback: http://kanberogluinsaat.com.tr/xmlrpc.php
X-Powered-By: PHP/5.4.42
Second query (visit from search engine):
GET / HTTP/1.1
Host: kanberogluinsaat.com.tr
Referer: http://www.google.com/search?q=kanberogluinsaat.com.tr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: kanberogluinsaat.com.tr
Referer: http://www.google.com/search?q=kanberogluinsaat.com.tr
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=kanberogluinsaat.com.tr
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://kanberogluinsaat.com.tr/
Result: kanberogluinsaat.com.tr is not infected or malware details are not published yet.
Result: kanberogluinsaat.com.tr is not infected or malware details are not published yet.