Scanned pages/files
Request | Server response | Status |
http://media-xchange.com/ | 200 OK Content-Length: 2496 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HaCKeD By kajmeran <title>HaCKeD By kajmeran</title>
<!-- body { background-color: #000000; } --> </style><style type="text/css"> <!-- body { background-color: #000000; } --> </style></head> <body background-color="#000000" onLoad="StartTexte()"> <p align="center" style="text-align: center;"> <a href="mailto:xzadx@mavideniz1.org">< ...[2664 bytes skipped]... | ||
http://media-xchange.com/test404page.js | HTTP/1.1 302 Found Cache-Control: max-age=3600 Connection: close Date: Tue, 16 Sep 2014 16:06:26 GMT Accept-Ranges: bytes Age: 0 Location: http://aeroflighttraining.com/v-web/index2.html Server: Apache/2 Content-Length: 231 Content-Type: text/html; charset=iso-8859-1 Expires: Tue, 16 Sep 2014 17:06:26 GMT | clean |
http://aeroflighttraining.com/v-web/index2.html | 500 Can't connect to aeroflighttraining.com:80 (Bad hostname) Content-Length: 176 Content-Type: text/plain | clean |
http://aeroflighttraining.com/test404page.js | 500 Can't connect to aeroflighttraining.com:80 (Bad hostname) Content-Length: 176 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: media-xchange.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=3600
Connection: close
Date: Tue, 16 Sep 2014 16:06:25 GMT
Accept-Ranges: bytes
Age: 111
ETag: "9c0-46ad6c1587890"
Server: Apache/2
Content-Length: 2496
Content-Type: text/html
Expires: Tue, 16 Sep 2014 17:04:34 GMT
Last-Modified: Tue, 26 May 2009 20:41:46 GMT
...2496 bytes of data.
GET / HTTP/1.1
Host: media-xchange.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=3600
Connection: close
Date: Tue, 16 Sep 2014 16:06:25 GMT
Accept-Ranges: bytes
Age: 111
ETag: "9c0-46ad6c1587890"
Server: Apache/2
Content-Length: 2496
Content-Type: text/html
Expires: Tue, 16 Sep 2014 17:04:34 GMT
Last-Modified: Tue, 26 May 2009 20:41:46 GMT
...2496 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: media-xchange.com
Referer: http://www.google.com/search?q=media-xchange.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: media-xchange.com
Referer: http://www.google.com/search?q=media-xchange.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=media-xchange.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://media-xchange.com/
Result: media-xchange.com is not infected or malware details are not published yet.
Result: media-xchange.com is not infected or malware details are not published yet.