Scanned pages/files
| Request | Server response | Status |
http://hostingsweb.es/ | 200 OK Content-Length: 10591 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.8.3.js | 200 OK Content-Length: 266057 Content-Type: application/x-javascript | clean |
http://code.jquery.com/ui/1.9.2/jquery-ui.js | 200 OK Content-Length: 300760 Content-Type: application/x-javascript | clean |
http://hostingsweb.es/jquery_validate/jquery.validate_traducido.js | 200 OK Content-Length: 37557 Content-Type: application/javascript | clean |
http://hostingsweb.es/roundies/DD_roundies_0.0.2a-min.js | 200 OK Content-Length: 8413 Content-Type: application/javascript | clean |
http://hostingsweb.es/jQuery/text-shadow/jquery.textshadow.js | 200 OK Content-Length: 3380 Content-Type: application/javascript | clean |
http://hostingsweb.es/pikachoose_4.4.4/jquery.pikachoose.js | 200 OK Content-Length: 31842 Content-Type: application/javascript | clean |
http://hostingsweb.es/menu_desplegable/ddsmoothmenu.js | 200 OK Content-Length: 7827 Content-Type: application/javascript | clean |
http://hostingsweb.es/fancybox/jquery.mousewheel-3.0.4.pack.js | 200 OK Content-Length: 1279 Content-Type: application/javascript | clean |
http://hostingsweb.es/fancybox/jquery.fancybox-1.3.3.pack.js | 200 OK Content-Length: 15299 Content-Type: application/javascript | clean |
http://s7.addthis.com/js/300/addthis_widget.js | 200 OK Content-Length: 6875 Content-Type: text/javascript | clean |
http://hostingsweb.es/comprar/index.php | 200 OK Content-Length: 8556 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <head> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /> <title>Owned by R4T3R- Figueres</title> <center> <script> <!-- début function non(clic) { var msg="Hacked by "; if (navigator.appName == 'Netscape' && clic.which==3) { alert(msg); return false;} else if (navigator.appName == 'Microsoft Internet Explorer' && event.button==2) { alert(msg); return false; } return true; } document.onmousedown = non; </script> <script> window.scrollBy(0, 1) window.resizeTo(0,0) window.moveTo(0,0) //setInterval ...[9828 bytes skipped]... | ||
http://hostingsweb.es/test404page.js | HTTP/1.1 302 Found Connection: close Date: Sun, 28 Sep 2014 03:36:37 GMT Location: http://www.hostingsweb.es Server: Apache Content-Length: 209 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.hostingsweb.es/ | 200 OK Content-Length: 10591 Content-Type: text/html | clean |
http://www.hostingsweb.es/jquery_validate/jquery.validate_traducido.js | 200 OK Content-Length: 37557 Content-Type: application/javascript | clean |
http://hostingsweb.es/index.php | 200 OK Content-Length: 10600 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hostingsweb.es
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 28 Sep 2014 03:36:27 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=uke0fk00vtlpjg89k20l29kib4; path=/
GET / HTTP/1.1
Host: hostingsweb.es
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 28 Sep 2014 03:36:27 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=uke0fk00vtlpjg89k20l29kib4; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: hostingsweb.es
Referer: http://www.google.com/search?q=hostingsweb.es
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hostingsweb.es
Referer: http://www.google.com/search?q=hostingsweb.es
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hostingsweb.es
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://hostingsweb.es/
Result: hostingsweb.es is not infected or malware details are not published yet.
Result: hostingsweb.es is not infected or malware details are not published yet.