Scanned pages/files
Request | Server response | Status |
http://selectahotel.net/ | 200 OK Content-Length: 8635 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By ...[5065 bytes skipped]... y background="http://m-h-a-c-k-e-r.persiangig.com/Black.Hack3r/back.jpg"> <center> <div id="con"> <center><img border="0" src="http://m-h-a-c-k-e-r.persiangig.com/Black.Hack3r/IR.gif"/></center> <font size="3" face="Denk One" color=Black>[ In The Name Of ALLAH ]</font><br></br> <font size="6" face="Denk One" color=Blue>Hacked By </font><font size="6" face="Denk One" color=Black>KurD_HaCK3R </font><br> <font size="6" face="Denk One" color=Black>I</font> <font size="6" face="Denk One" color=Red>ranian_</font> <font size="6" face="Denk One" color=Black>D</font> <font size="6" face="Denk One" color=Red>ark_</font> <font size="6" face="Denk One" color=Black>C</font> <font size="6" ...[4386 bytes skipped]... | ||
http://m-h-a-c-k-e-r.persiangig.com/Black.Hack3r/ghatarat-shabnam.js | 200 OK Content-Length: 1213 Content-Type: application/x-javascript | clean |
http://selectahotel.net/test404page.js | 404 Not Found Content-Length: 292 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: selectahotel.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 08 Nov 2014 21:11:32 GMT
Accept-Ranges: bytes
ETag: "301ac2-21bb-505e0bf92f3be"
Server: Apache/2.2.27 (Unix)
Content-Length: 8635
Content-Type: text/html; charset=UTF-8
Last-Modified: Mon, 20 Oct 2014 20:42:08 GMT
...8635 bytes of data.
GET / HTTP/1.1
Host: selectahotel.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 08 Nov 2014 21:11:32 GMT
Accept-Ranges: bytes
ETag: "301ac2-21bb-505e0bf92f3be"
Server: Apache/2.2.27 (Unix)
Content-Length: 8635
Content-Type: text/html; charset=UTF-8
Last-Modified: Mon, 20 Oct 2014 20:42:08 GMT
...8635 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: selectahotel.net
Referer: http://www.google.com/search?q=selectahotel.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: selectahotel.net
Referer: http://www.google.com/search?q=selectahotel.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=selectahotel.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://selectahotel.net/
Result: selectahotel.net is not infected or malware details are not published yet.
Result: selectahotel.net is not infected or malware details are not published yet.