Malicious/Suspicious Redirects
| Request | Server response | Status |
URL: http://titasyapi.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: titasyapi.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Wed, 24 Sep 2014 15:02:22 GMT Location: http://ilksahibinden.com/ezwd.html?h=3373874 Server: Apache/2.2.25 (Unix) mod_ssl/2.2.25 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Content-Length: 403 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
| Request | Server response | Status |
http://titasyapi.com/ | 200 OK Content-Length: 13966 Content-Type: text/html | clean |
http://titasyapi.com/templates/jv_dilo/js/jv.script.js.php | 200 OK Content-Length: 77946 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var MooTools={version:'1.11'};function $defined(obj){return(obj!=undefined);};function $type(obj){if(!$defined(obj))return false;if(obj.htmlElement)return'element';var type=typeof obj;if(type=='object'&&obj.nodeName){switch(obj.nodeType){case 1:return'element';case 3:return(/\S/).test(obj.nodeValue)?'textnode':'whitespace';}} if(type=='object'||type=='function'){switch(obj.constructor){case Array:return'array';case RegExp:return'regexp';case Class:return'class';} if(typeof obj.le { if(!str || typeof str != 'string') return null; return str.replace(/^[\s]+/,'').replace(/[\s]+$/,'').replace(/[\s]{2,}/,' '); } function hide_nocontent(){ var title = $('jv-maincontent'); if (title) { var titlestring = "a" + trim(title.innerHTML); if (titlestring.length <= 15) { $('mdl-content').setStyle('display','none'); } } } window.addEvent('load', function(){ hide_nocontent(); }); Antivirus reports:
| ||
http://titasyapi.com/modules/mod_cu3er/elements/swfobject.js | 200 OK Content-Length: 9759 Content-Type: application/javascript | clean |
http://titasyapi.com/templates/jv_dilo/jv_menus/jv_moomenu/jv.moomenu.js | 200 OK Content-Length: 3127 Content-Type: application/javascript | clean |
http://titasyapi.com/index.php?option=com_content&view=frontpage&Itemid=1 | 200 OK Content-Length: 14076 Content-Type: text/html | clean |
http://titasyapi.com/index.php?option=com_content&view=category&layout=blog&id=18&Itemid=2 | 200 OK Content-Length: 14081 Content-Type: text/html | clean |
http://titasyapi.com/index.php?option=com_content&view=article&id=9&Itemid=9 | 200 OK Content-Length: 19656 Content-Type: text/html | clean |
http://titasyapi.com/index.php?option=com_content&view=article&id=26&Itemid=10 | 200 OK Content-Length: 14872 Content-Type: text/html | clean |
http://titasyapi.com/plugins/content/jwsigpro/slimbox/english/slimbox.js | 200 OK Content-Length: 7197 Content-Type: application/javascript | clean |
http://titasyapi.com/index.php?option=com_content&view=article&id=7&Itemid=26 | 200 OK Content-Length: 34706 Content-Type: text/html | clean |
http://titasyapi.com/index.php?option=com_content&view=article&id=13&Itemid=27 | 200 OK Content-Length: 31471 Content-Type: text/html | clean |
http://titasyapi.com/index.php?option=com_content&view=article&id=14&Itemid=28 | 200 OK Content-Length: 13532 Content-Type: text/html | clean |
http://titasyapi.com/index.php?option=com_content&view=article&id=28&Itemid=11 | 200 OK Content-Length: 15867 Content-Type: text/html | clean |
http://titasyapi.com/index.php?option=com_content&view=article&id=15&Itemid=12 | 200 OK Content-Length: 16171 Content-Type: text/html | clean |
http://titasyapi.com/index.php?option=com_content&view=article&id=29&Itemid=13 | 200 OK Content-Length: 16724 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=titasyapi.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://titasyapi.com/
Result: titasyapi.com is not infected or malware details are not published yet.
Result: titasyapi.com is not infected or malware details are not published yet.