Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: kbbistanbul.com.tr
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Fri, 05 Sep 2014 00:32:10 GMT
Server: Microsoft-IIS/6.0
Content-Length: 82216
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCACRRTTQ=KGHCCEDAGFABGKIIAHLKDAGM; path=/
X-Powered-By: ASP.NET
...82216 bytes of data.
GET / HTTP/1.1
Host: kbbistanbul.com.tr
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Fri, 05 Sep 2014 00:32:10 GMT
Server: Microsoft-IIS/6.0
Content-Length: 82216
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCACRRTTQ=KGHCCEDAGFABGKIIAHLKDAGM; path=/
X-Powered-By: ASP.NET
...82216 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: kbbistanbul.com.tr
Referer: http://www.google.com/search?q=kbbistanbul.com.tr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: kbbistanbul.com.tr
Referer: http://www.google.com/search?q=kbbistanbul.com.tr
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://kbbistanbul.com.tr/ | 200 OK Content-Length: 82216 Content-Type: text/html | clean |
http://detect.deviceatlas.com/redirect.js?m=http://m.kbbistanbul.com.tr | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 05 Sep 2014 00:42:39 GMT Location: http://detect-deviceatlas-com.appspot.com/redirect.js?m=http://m.kbbistanbul.com.tr Server: nginx/1.4.2 Content-Length: 184 Content-Type: text/html | clean |
http://detect-deviceatlas-com.appspot.com/redirect.js?m=http://m.kbbistanbul.com.tr | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://detect-deviceatlas-com.appspot.com/test404page.js | 404 Not Found Content-Length: 52 Content-Type: text/plain | clean |
http://kbbistanbul.com.tr/js/vendor/modernizr.min.js | 200 OK Content-Length: 14521 Content-Type: application/x-javascript | clean |
http://kbbistanbul.com.tr/js/vendor/jquery.min.js | 200 OK Content-Length: 92793 Content-Type: application/x-javascript | clean |
http://kbbistanbul.com.tr/js/vendor/bootstrap.min.js | 200 OK Content-Length: 25544 Content-Type: application/x-javascript | clean |
http://kbbistanbul.com.tr/js/vendor/retina.js | 200 OK Content-Length: 3478 Content-Type: application/x-javascript | clean |
http://kbbistanbul.us7.list-manage.com/subscriber-count?b=00&u=7ec5c400-dfb0-4445-9e77-8859eaefd74f&id=9cc759a7c8 | 200 OK Content-Length: 51 Content-Type: application/x-javascript | clean |
http://kbbistanbul.com.tr/js/vendor/jquery.jcarousel.min.js | 200 OK Content-Length: 15650 Content-Type: application/x-javascript | clean |
http://kbbistanbul.com.tr/js/vendor/jquery.flexslider.min.js | 200 OK Content-Length: 16917 Content-Type: application/x-javascript | clean |
http://kbbistanbul.com.tr/js/vendor/jquery.parallax.min.js | 200 OK Content-Length: 936 Content-Type: application/x-javascript | clean |
http://kbbistanbul.com.tr/js/vendor/jquery.waypoints.min.js | 200 OK Content-Length: 8044 Content-Type: application/x-javascript | clean |
http://kbbistanbul.com.tr/js/vendor/jquery.fitvids.min.js | 200 OK Content-Length: 1457 Content-Type: application/x-javascript | clean |
http://kbbistanbul.com.tr/js/vendor/jquery.prettyPhoto.min.js | 200 OK Content-Length: 22060 Content-Type: application/x-javascript | clean |
http://kbbistanbul.com.tr/js/vendor/jquery.qrcode.min.js | 200 OK Content-Length: 13995 Content-Type: application/x-javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=kbbistanbul.com.tr
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://kbbistanbul.com.tr/
Result: kbbistanbul.com.tr is not infected or malware details are not published yet.
Result: kbbistanbul.com.tr is not infected or malware details are not published yet.