Scanned pages/files
| Request | Server response | Status |
http://sexmarketim.com/ | 200 OK Content-Length: 3191 Content-Type: text/html | clean |
http://sexmarketim.com/index.php | 200 OK Content-Length: 77473 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By TrojantaneR ...[18356 bytes skipped]... p://www.sexmarketim.com/cinsel-saglik-urunleri/medikal-kaydirici-jeller">Medikal Kaydırıcı Jeller</a> </li> <li id="menu_63"> <a href="http://www.sexmarketim.com/cinsel-saglik-urunleri/prezervatif-condom">Prezervatif (condom)</a> </li> <li id="menu_80"> <a href="http://www.sexmarketim.com/cinsel-saglik-urunleri/hediyeli-urunler-1">Hacked By TrojantaneR</a> </li> </ul> </div> </div> </li> <li id="menu_68" class="s_category_menu"> <a href="http://www.sexmarketim.com/fantazi-urunleri">Fantazi Ãrünleri</a> <div class="s_submenu"> <!-- Subcategories --> <div class="s_category_group s_menu_group"> <h3> Fantazi Ãrünleri</h3> <u ...[72651 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js | 200 OK Content-Length: 94840 Content-Type: text/javascript | clean |
http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.21/jquery-ui.min.js | 200 OK Content-Length: 202604 Content-Type: text/javascript | clean |
http://sexmarketim.com/catalog/view/javascript/jquery/jquery.jcarousel.min.js | 200 OK Content-Length: 15650 Content-Type: application/javascript | clean |
http://sexmarketim.com/catalog/view/theme/shoppica2/javascript/jquery/jquery.slides.min.js | 200 OK Content-Length: 6784 Content-Type: application/javascript | clean |
http://sexmarketim.com/catalog/view/theme/shoppica2/javascript/products_slide.js | 200 OK Content-Length: 1146 Content-Type: application/javascript | clean |
http://twitter.com/javascripts/blogger.js | HTTP/1.1 301 Moved Permanently Date: Wed, 28 May 2014 06:59:07 UTC Location: https://twitter.com/javascripts/blogger.js Server: tfe Content-Length: 0 Set-Cookie: guest_id=v1%3A140126034770721769; Domain=.twitter.com; Path=/; Expires=Fri, 27-May-2016 06:59:07 UTC | clean |
https://twitter.com/javascripts/blogger.js | 404 Not Found Content-Length: 4429 Content-Type: text/html | clean |
https://abs.twimg.com/errors/404-7fdc040757e48e020c4fe7c892326307.js | 200 OK Content-Length: 9818 Content-Type: application/javascript | clean |
http://twitter.com//twitter.com/ | HTTP/1.1 301 Moved Permanently Date: Wed, 28 May 2014 06:59:09 UTC Location: https://twitter.com/twitter.com/ Server: tfe Content-Length: 0 Set-Cookie: guest_id=v1%3A140126034904624622; Domain=.twitter.com; Path=/; Expires=Fri, 27-May-2016 06:59:09 UTC | clean |
https://twitter.com/twitter.com/ | 404 Not Found Content-Length: 4429 Content-Type: text/html | clean |
https://twitter.com//twitter.com/ | 404 Not Found Content-Length: 4429 Content-Type: text/html | clean |
https://twitter.com/about | HTTP/1.1 301 Moved Permanently Date: Wed, 28 May 2014 06:59:11 UTC Location: https://about.twitter.com/about Server: tfe Content-Length: 0 Set-Cookie: guest_id=v1%3A140126035121105136; Domain=.twitter.com; Path=/; Expires=Fri, 27-May-2016 06:59:11 UTC Strict-Transport-Security: max-age=631138519 | clean |
https://about.twitter.com/about | HTTP/1.1 301 Moved Permanently Cache-Control: public, max-age=60 Date: Wed, 28 May 2014 06:59:12 GMT Accept-Ranges: bytes Age: 0 Location: https://about.twitter.com/ Server: tfe Vary: Cookie Content-Length: 1 Content-Type: text/html Expires: Wed, 28 May 2014 07:00:11 +0000 Last-Modified: Wed, 28 May 2014 06:59:11 +0000 Set-Cookie: guest_id=v1%3A140126035184118739; Domain=.twitter.com; Path=/; Expires=Fri, 27-May-2016 06:59:12 UTC Strict-Transport-Security: max-age=631138519 X-Drupal-Cache: MISS X-Gazebo-App-Rev: bb7d0c4 X-Gazebo-Git-Rev: c1415149f480a78c89bfa778d047d9e176451700 X-Gazebo-Host: 27dada5 X-Redirect-Id: 536 X-Varnish: 1488496176 X-Varnish-Cache: MISS X-Varnish-Curl: SUCCESS X-Xss-Protection: 1; mode=block | clean |
https://about.twitter.com/ | 200 OK Content-Length: 16862 Content-Type: text/html | clean |
https://g.twimg.com/js/c141514/js_9cEwmglrERSv_pnrT4DVOs1iIU4vGUjHI4LpvNCpoVQ.js | 200 OK Content-Length: 127915 Content-Type: application/javascript | clean |
https://g.twimg.com/js/c141514/js_jPLjsaJeqE71xlmSe6M9fL19K1FdqudkTwOV0wVCuug.js | 200 OK Content-Length: 23466 Content-Type: application/javascript | clean |
https://g.twimg.com/js/c141514/js_ASdcCD2jMQ6yTaftYlcM4H1an0YWiHxzzWSJOvCJsYc.js | 200 OK Content-Length: 16512 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sexmarketim.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 28 May 2014 06:59:03 GMT
Accept-Ranges: bytes
Server: LiteSpeed
Content-Length: 3191
Content-Type: text/html
Last-Modified: Mon, 03 Feb 2014 19:31:06 GMT
...3191 bytes of data.
GET / HTTP/1.1
Host: sexmarketim.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 28 May 2014 06:59:03 GMT
Accept-Ranges: bytes
Server: LiteSpeed
Content-Length: 3191
Content-Type: text/html
Last-Modified: Mon, 03 Feb 2014 19:31:06 GMT
...3191 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: sexmarketim.com
Referer: http://www.google.com/search?q=sexmarketim.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sexmarketim.com
Referer: http://www.google.com/search?q=sexmarketim.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sexmarketim.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sexmarketim.com/
Result: sexmarketim.com is not infected or malware details are not published yet.
Result: sexmarketim.com is not infected or malware details are not published yet.