Scanned pages/files
Request | Server response | Status |
http://sigorta-acentesi.com/ | 200 OK Content-Length: 1870 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By ...[154 bytes skipped]... color="#000000"> <center> <img src="http://zone-h.org/images/star.gif"> <img src="http://zone-h.org/images/star.gif"> <img src="http://zone-h.org/images/star.gif"> <img src="http://zone-h.org/images/star.gif"> <img src="http://zone-h.org/images/star.gif"> </center> <center> <div class="cont"> <pre><font size="7">Hacked By <i>Türk</i> Kartalı</font></pre></div> <pre><font color="#000000">[ <b>I'am A ~>> Turkish Eagle <<~ I am Turkish Eagle. I am back.</b> ]</font> <br><font color="#000000">[ <b>~ Great To : Türk Kartalı-Kapele Ayyıldız-Demolotion-By Dokunulmaz- TechGangster-ThePathron-Nefer-Sirmax ~</b> ]</font> <br><img src="http://upload.wikimedia.org/wikipedia/commo ...[1274 bytes skipped]... | ||
http://sigorta-acentesi.com/test404page.js | 200 OK Content-Length: 1870 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sigorta-acentesi.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 27 Apr 2014 22:28:08 GMT
Server: Apache/2.4.7 (Unix) OpenSSL/1.0.1e-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Type: text/html
X-Powered-By: PHP/5.4.23
GET / HTTP/1.1
Host: sigorta-acentesi.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 27 Apr 2014 22:28:08 GMT
Server: Apache/2.4.7 (Unix) OpenSSL/1.0.1e-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Type: text/html
X-Powered-By: PHP/5.4.23
Second query (visit from search engine):
GET / HTTP/1.1
Host: sigorta-acentesi.com
Referer: http://www.google.com/search?q=sigorta-acentesi.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sigorta-acentesi.com
Referer: http://www.google.com/search?q=sigorta-acentesi.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sigorta-acentesi.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sigorta-acentesi.com/
Result: sigorta-acentesi.com is not infected or malware details are not published yet.
Result: sigorta-acentesi.com is not infected or malware details are not published yet.