Scanned pages/files
Request | Server response | Status |
http://gasphotel.com/ | 200 OK Content-Length: 4336 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HaCkeD By KamraN HellisH ...[174 bytes skipped]... r/><style> body{background:#400 url(http://www.uplooder.net/img/image/68/09a8de2364bbeb43e51884eb4ddc08b6/zHNCk2e.gif) repeat; font-family:'Cosmic Sans'} GWMc/cok.gif) scroll repeat center center; </style> </script> <br><br><br><br><br><br><br><br><br><font color=green size=10> HaCkeD By KamraN HellisH<br><hr> kamranhellish@gmail.com<br><font size=5 color=brown> Not Forget KamraN HellisH<br> <font size=5 color=brown>Israel Will Destroy<font size=5 color=brown><br>our Lifes Are For Iran<font size=5 color=red><br>FuCk All Arabs <body> <script type="text/javascript"> function tb14_makeArray(n){ this.length = n; return this.length; } tb1 ...[4106 bytes skipped]... | ||
http://gasphotel.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: gasphotel.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 02 Mar 2015 02:39:14 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 4336
Content-Type: text/html
Last-Modified: Mon, 03 Nov 2014 15:38:55 GMT
...4336 bytes of data.
GET / HTTP/1.1
Host: gasphotel.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 02 Mar 2015 02:39:14 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 4336
Content-Type: text/html
Last-Modified: Mon, 03 Nov 2014 15:38:55 GMT
...4336 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: gasphotel.com
Referer: http://www.google.com/search?q=gasphotel.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: gasphotel.com
Referer: http://www.google.com/search?q=gasphotel.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=gasphotel.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://gasphotel.com/
Result: gasphotel.com is not infected or malware details are not published yet.
Result: gasphotel.com is not infected or malware details are not published yet.