Scanned pages/files
Request | Server response | Status |
http://sehzademarket.com/ | 200 OK Content-Length: 17272 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By AKH <!doctype html> <html> <head> <meta charset="iso-8859-9"> <title>Hacked By AKH</title> <META http-equiv="content-language" content="TR"> <meta name="description" content="Þehzade Grup Market, Ýnþaat, Unlu Mamüller, Discount Þirketleri Ýle Siz Deðerli Müþterilerimize Hizmet Sunmaktayýz."> <meta name="keywords" content="þehzade market, þehzade inþaat, þehzade unlu mamülleri, dip10, discount dip10, dip10 kayseri, þehzade market kayseri, þehzade kayseri"> <meta nam ...[20643 bytes skipped]... | ||
http://sehzademarket.com/js/jquery-1.7.min.js | 200 OK Content-Length: 94020 Content-Type: application/javascript | clean |
http://sehzademarket.com/js/slides.min.jquery.js | 200 OK Content-Length: 6786 Content-Type: application/javascript | clean |
http://sehzademarket.com/js/menu.js | 200 OK Content-Length: 2379 Content-Type: application/javascript | clean |
http://sehzademarket.com/js/lytebox.js | 200 OK Content-Length: 38699 Content-Type: application/javascript | clean |
http://sehzademarket.com/js/jquery.ui.min.js | 200 OK Content-Length: 32542 Content-Type: application/javascript | clean |
http://sehzademarket.com/js/pirobox_extended_feb_2011.js | 200 OK Content-Length: 14788 Content-Type: application/javascript | clean |
http://sehzademarket.com/js/zorunlu.js | 200 OK Content-Length: 10914 Content-Type: application/javascript | clean |
http://sehzademarket.com/js/script.js | 200 OK Content-Length: 771 Content-Type: application/javascript | clean |
http://www.webtemsilcisi.com/online.php?url=sehzademarket.com&kenar=1&kenar_renk=333333&genislik=150&zemin_renk=E6E6E6&yazi_renk=000000&gizlimi=hayir | 200 OK Content-Length: 2513 Content-Type: text/html | clean |
http://www.webtemsilcisi.com/urlal.php?service=counter&urlid=87172&url='+url+'&refurl='+refurl+' | 200 OK Content-Length: 19 Content-Type: text/html | clean |
http://www.webtemsilcisi.com/test404page.js | 404 Not Found Content-Length: 2693 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sehzademarket.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 28 Jul 2015 17:16:07 GMT
Accept-Ranges: bytes
Server: LiteSpeed
Content-Type: text/html
X-Powered-By: PHP/5.3.29
GET / HTTP/1.1
Host: sehzademarket.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 28 Jul 2015 17:16:07 GMT
Accept-Ranges: bytes
Server: LiteSpeed
Content-Type: text/html
X-Powered-By: PHP/5.3.29
Second query (visit from search engine):
GET / HTTP/1.1
Host: sehzademarket.com
Referer: http://www.google.com/search?q=sehzademarket.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sehzademarket.com
Referer: http://www.google.com/search?q=sehzademarket.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sehzademarket.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sehzademarket.com/
Result: sehzademarket.com is not infected or malware details are not published yet.
Result: sehzademarket.com is not infected or malware details are not published yet.