Scanned pages/files
| Request | Server response | Status |
http://actionhoster.com/ | 200 OK Content-Length: 6491 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By XtReMiSt <HTML><HEAD><TITLE>Hacked By XtReMiSt</TITLE>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="keywords" content="Hacked By Muslim Liberation Army - XtReMiSt , Killermind Haxor,Fasy Al laghari, Mindy , Jerry Hassan , Hacked by XtReMiSt, Muslim Libration Army,Hacked , Muslims , Cyber , hackers , " /> <meta name="description" content="Hacked By Muslim Liber ...[7352 bytes skipped]... | ||
http://actionhoster.com/test404page.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: actionhoster.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Tue, 14 Jul 2015 20:54:01 GMT
Content-Length: 6491
Content-Type: text/html; charset=utf-8
Set-Cookie: .ASPXANONYMOUS=nr8UDQn10AEkAAAANGQ4MjYwZDAtNzg3Mi00NzZiLTlhMjEtMWY5YjBjYWM1YTJi0; expires=Tue, 22-Sep-2015 07:34:01 GMT; path=/; HttpOnly
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
...6491 bytes of data.
GET / HTTP/1.1
Host: actionhoster.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Tue, 14 Jul 2015 20:54:01 GMT
Content-Length: 6491
Content-Type: text/html; charset=utf-8
Set-Cookie: .ASPXANONYMOUS=nr8UDQn10AEkAAAANGQ4MjYwZDAtNzg3Mi00NzZiLTlhMjEtMWY5YjBjYWM1YTJi0; expires=Tue, 22-Sep-2015 07:34:01 GMT; path=/; HttpOnly
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
...6491 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: actionhoster.com
Referer: http://www.google.com/search?q=actionhoster.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: actionhoster.com
Referer: http://www.google.com/search?q=actionhoster.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=actionhoster.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://actionhoster.com/
Result: actionhoster.com is not infected or malware details are not published yet.
Result: actionhoster.com is not infected or malware details are not published yet.