Scanned pages/files
Request | Server response | Status |
http://hotdomains.tv/ | 200 OK Content-Length: 1696 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HaCkEd By IQ-GST ...[642 bytes skipped]... xx-large; color: #00FF00; } .style11 { font-size: larger; color: #FF0000; } .style15 { text-align: center; font-family: "Buxton Sketch"; font-size: 36pt; color: #FF0000; } .style16 { text-align: center; color: #FFFFFF; font-size: xx-large; font-family: "Buxton Sketch"; } </style> <p class="style15">HaCkEd By IQ-GST</p> <p class="style15">This Is For <Gaza></p> <p class="style1"><img alt="" height="282" src="http://im46.gulfup.com/ykdeXX.jpg" width="720" /></p> <p class="style10">ThIs iS fOr <span class="style11">Palastine</span> hOmE oF bRaVeS</p> <p class="style10">Please find another Server to host your files because the</p> <p class="style ...[622 bytes skipped]... | ||
http://hotdomains.tv/test404page.js | 200 OK Content-Length: 1696 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hotdomains.tv
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 02 Sep 2014 01:50:21 GMT
Server: Apache
Content-Length: 1696
Content-Type: text/html
X-Powered-By: PHP/5.2.17
...1696 bytes of data.
GET / HTTP/1.1
Host: hotdomains.tv
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 02 Sep 2014 01:50:21 GMT
Server: Apache
Content-Length: 1696
Content-Type: text/html
X-Powered-By: PHP/5.2.17
...1696 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: hotdomains.tv
Referer: http://www.google.com/search?q=hotdomains.tv
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hotdomains.tv
Referer: http://www.google.com/search?q=hotdomains.tv
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hotdomains.tv
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://hotdomains.tv/
Result: hotdomains.tv is not infected or malware details are not published yet.
Result: hotdomains.tv is not infected or malware details are not published yet.