Scanned pages/files
| Request | Server response | Status |
http://pulcuoglu.net/ | 200 OK Content-Length: 5423 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By MuhmadEmad | <html><head><!-- Devleped by MuhmadEmad--><meta http-equiv="Content-Language" content="en-us"><title> Hacked By MuhmadEmad |</title><link href="http://teste-MuhmadEmad.cum.ir/MuhmadEmad.Gov.png" rel="SHORTCUT ICON"><link rel="shortcut icon" href="http://teste-MuhmadEmad.cum.ir/MuhmadEmad.Gov.png" type="image/x-icon"><script src="http://teste-MuhmadEmad.cum.ir/AZe-titel.js"type="text/javascript"></script>
<!-- Meta --><meta name="keywords" content="MuhmadEmad , MuhmadEmad , Hackers , Exploit , Anonymous"& ...[5661 bytes skipped]... | ||
http://teste-MuhmadEmad.cum.ir/AZe-titel.js | HTTP/1.1 200 OK Connection: close Date: Tue, 08 Sep 2015 04:13:19 GMT Server: Apache Content-Length: 647 Content-Type: text/html X-Powered-By: PHP/5.2.17 | clean |
http://error.hostinger.eu/ | HTTP/1.1 200 OK Connection: close Date: Tue, 08 Sep 2015 04:13:19 GMT Server: nginx/1.9.3 Content-Type: text/html; charset=UTF-8 | clean |
http://www.hostinger.lt/klaida_404 | 200 OK Content-Length: 14761 Content-Type: text/html | clean |
http://www.hostinger.lt//ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 08 Sep 2015 04:13:21 GMT Via: 1.1 vegur Location: http://www.hostinger.lt/error_404 Server: nginx/1.6.0 Content-Length: 184 Content-Type: text/html | clean |
http://www.hostinger.lt/error_404 | 200 OK Content-Length: 14761 Content-Type: text/html | clean |
http://www.hostinger.lt//ajax.googleapis.com/ajax/libs/jqueryui/1.8.14/jquery-ui.min.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 08 Sep 2015 04:13:21 GMT Via: 1.1 vegur Location: http://www.hostinger.lt/error_404 Server: nginx/1.6.0 Content-Length: 184 Content-Type: text/html | clean |
http://www.hostinger.lt/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 08 Sep 2015 04:13:22 GMT Via: 1.1 vegur Location: http://www.hostinger.lt/error_404 Server: nginx/1.6.0 Content-Length: 184 Content-Type: text/html | clean |
http://www.hostinger.lt//apis.google.com/js/plusone.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 08 Sep 2015 04:13:22 GMT Via: 1.1 vegur Location: http://www.hostinger.lt/error_404 Server: nginx/1.6.0 Content-Length: 184 Content-Type: text/html | clean |
http://www.hostinger.lt//connect.facebook.net/en_US/all.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 08 Sep 2015 04:13:22 GMT Via: 1.1 vegur Location: http://www.hostinger.lt/error_404 Server: nginx/1.6.0 Content-Length: 184 Content-Type: text/html | clean |
http://www.hostinger.lt//s3.amazonaws.com/cc.silktide.com/cookieconsent.latest.min.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 08 Sep 2015 04:13:23 GMT Via: 1.1 vegur Location: http://www.hostinger.lt/error_404 Server: nginx/1.6.0 Content-Length: 184 Content-Type: text/html | clean |
http://www.hostinger.lt//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 08 Sep 2015 04:13:23 GMT Via: 1.1 vegur Location: http://www.hostinger.lt/error_404 Server: nginx/1.6.0 Content-Length: 184 Content-Type: text/html | clean |
http://teste-MuhmadEmad.cum.ir//ajax.googleapis.com/ajax/libs/jqueryui/1.8.14/jquery-ui.min.js/ | HTTP/1.1 200 OK Connection: close Date: Tue, 08 Sep 2015 04:13:24 GMT Server: Apache Content-Length: 647 Content-Type: text/html X-Powered-By: PHP/5.2.17 | clean |
http://teste-MuhmadEmad.cum.ir//apis.google.com/js/plusone.js/ | HTTP/1.1 200 OK Connection: close Date: Tue, 08 Sep 2015 04:13:24 GMT Server: Apache Content-Length: 647 Content-Type: text/html X-Powered-By: PHP/5.2.17 | clean |
http://teste-MuhmadEmad.cum.ir//connect.facebook.net/en_US/all.js/ | HTTP/1.1 200 OK Connection: close Date: Tue, 08 Sep 2015 04:13:24 GMT Server: Apache Content-Length: 647 Content-Type: text/html X-Powered-By: PHP/5.2.17 | clean |
http://teste-MuhmadEmad.cum.ir//s3.amazonaws.com/cc.silktide.com/cookieconsent.latest.min.js/ | HTTP/1.1 200 OK Connection: close Date: Tue, 08 Sep 2015 04:13:25 GMT Server: Apache Content-Length: 647 Content-Type: text/html X-Powered-By: PHP/5.2.17 | clean |
http://teste-MuhmadEmad.cum.ir//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | HTTP/1.1 200 OK Connection: close Date: Tue, 08 Sep 2015 04:13:25 GMT Server: Apache Content-Length: 647 Content-Type: text/html X-Powered-By: PHP/5.2.17 | clean |
https://ajax.googleapis.com/ajax/libs/jquery/1.6.4/jquery.min.js | 200 OK Content-Length: 91668 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: pulcuoglu.net
Result:
HTTP/1.1 200 OK
Date: Tue, 08 Sep 2015 04:13:55 GMT
Accept-Ranges: bytes
ETag: "fee265ca5acad01:0"
Server: Microsoft-IIS/8.5
Content-Length: 5423
Content-Type: text/html
Last-Modified: Thu, 30 Jul 2015 00:00:48 GMT
X-Powered-By: ASP.NET
...5423 bytes of data.
GET / HTTP/1.1
Host: pulcuoglu.net
Result:
HTTP/1.1 200 OK
Date: Tue, 08 Sep 2015 04:13:55 GMT
Accept-Ranges: bytes
ETag: "fee265ca5acad01:0"
Server: Microsoft-IIS/8.5
Content-Length: 5423
Content-Type: text/html
Last-Modified: Thu, 30 Jul 2015 00:00:48 GMT
X-Powered-By: ASP.NET
...5423 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: pulcuoglu.net
Referer: http://www.google.com/search?q=pulcuoglu.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: pulcuoglu.net
Referer: http://www.google.com/search?q=pulcuoglu.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pulcuoglu.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://pulcuoglu.net/
Result: pulcuoglu.net is not infected or malware details are not published yet.
Result: pulcuoglu.net is not infected or malware details are not published yet.