Scanned pages/files
Request | Server response | Status |
http://www.xtreme.be/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 03 Dec 2015 00:33:08 GMT Location: http://xtreme.be/ Server: Apache/2 Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Set-Cookie: qtrans_cookie_test=qTranslate+Cookie+Test; path=/; domain=www.xtreme.be X-Pingback: http://xtreme.be/xmlrpc.php X-Powered-By: PHP/5.4.37 | clean |
http://xtreme.be/ | 200 OK Content-Length: 48872 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: By CmTr,CmTr,cmtr,Hacked By CmTr,Hack ...[54309 bytes skipped]... </div> </div> </div> </div> <div id="footer"> <a class="anchor" href="#page"> </a> <div class="bannergroup"> </div> </div> <!-- footer end --> </div> <div style="display:none"> <a href="http://bycmtr.wordpress.com/" title="By CmTr,CmTr,cmtr,Hacked By CmTr,Hack">CmTr</a> <a href="http://yalansevdam.org/" title="Ask,Guzel Sozler,Duvar Yazilari,Siir,Ask Siirleri,Edebiyat ">Guzel Sozler</a> <a href="http://www.crazyclassic.tr.gg//" title="crazyclassic,Crazy,Classic,SmT,Laz,Bilisim">crazyclassic</a> </div> </div> <div style="display: none"> <a href="http://www.ozdenc.com/" title="seo">seo</a> <a href="http://www.haliyikama.tv" title="hal� y�kama" ...[1429 bytes skipped]... | ||
http://xtreme.be/wp-content/themes/xtreme/js/mootools-release-1.11.js | 200 OK Content-Length: 43715 Content-Type: application/javascript | clean |
http://xtreme.be/wp-content/themes/xtreme/js/mediaobject.js | 200 OK Content-Length: 3718 Content-Type: application/javascript | clean |
http://xtreme.be/wp-content/themes/xtreme/js/jquery-126.js | 200 OK Content-Length: 31033 Content-Type: application/javascript | clean |
http://xtreme.be/wp-content/themes/xtreme/js/jceutilities-217.js | 200 OK Content-Length: 19964 Content-Type: application/javascript | clean |
http://xtreme.be/wp-content/themes/xtreme/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/javascript | clean |
http://www.xtreme.be//platform.twitter.com/widgets.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Thu, 03 Dec 2015 00:33:12 GMT Pragma: no-cache Location: http://xtreme.be/platform.twitter.com/widgets.js/ Server: Apache/2 Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: qtrans_cookie_test=qTranslate+Cookie+Test; path=/; domain=www.xtreme.be X-Pingback: http://xtreme.be/xmlrpc.php X-Powered-By: PHP/5.4.37 | clean |
http://xtreme.be/platform.twitter.com/widgets.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Thu, 03 Dec 2015 00:33:12 GMT Pragma: no-cache Location: http://xtreme.be Server: Apache/2 Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: qtrans_cookie_test=qTranslate+Cookie+Test; path=/; domain=xtreme.be X-Pingback: http://xtreme.be/xmlrpc.php X-Powered-By: PHP/5.4.37 | clean |
http://xtreme.be/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Thu, 03 Dec 2015 00:33:12 GMT Pragma: no-cache Location: http://xtreme.be Server: Apache/2 Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: qtrans_cookie_test=qTranslate+Cookie+Test; path=/; domain=xtreme.be X-Pingback: http://xtreme.be/xmlrpc.php X-Powered-By: PHP/5.4.37 | clean |
http://www.xtreme.be/plugins/system/yoo_effects/yoo_effects.js.php?lb=1&re=1&sl=1 | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Thu, 03 Dec 2015 00:33:13 GMT Pragma: no-cache Location: http://xtreme.be/plugins/system/yoo_effects/yoo_effects.js.php?lb=1&re=1&sl=1 Server: Apache/2 Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: qtrans_cookie_test=qTranslate+Cookie+Test; path=/; domain=www.xtreme.be X-Pingback: http://xtreme.be/xmlrpc.php X-Powered-By: PHP/5.4.37 | clean |
http://xtreme.be/plugins/system/yoo_effects/yoo_effects.js.php?lb=1&re=1&sl=1 | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Thu, 03 Dec 2015 00:33:13 GMT Pragma: no-cache Location: http://xtreme.be Server: Apache/2 Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: qtrans_cookie_test=qTranslate+Cookie+Test; path=/; domain=xtreme.be X-Pingback: http://xtreme.be/xmlrpc.php X-Powered-By: PHP/5.4.37 | clean |
http://xtreme.be/wp-content/themes/xtreme/js/base.js | 200 OK Content-Length: 3608 Content-Type: application/javascript | clean |
http://xtreme.be/wp-content/themes/xtreme/js/accordionmenu.js | 200 OK Content-Length: 1161 Content-Type: application/javascript | clean |
http://xtreme.be/wp-content/themes/xtreme/js/fancymenu.js | 200 OK Content-Length: 2639 Content-Type: application/javascript | clean |
http://xtreme.be/wp-content/themes/xtreme/js/dropdownmenu.js | 200 OK Content-Length: 1148 Content-Type: application/javascript | clean |
http://xtreme.be/wp-content/themes/xtreme/js/yoo_tools.js | 200 OK Content-Length: 8472 Content-Type: application/javascript | clean |
http://xtreme.be/wp-content/themes/xtreme/js/mod_flashmod.js | 200 OK Content-Length: 3640 Content-Type: application/javascript | clean |
http://xtreme.be/wp-content/themes/xtreme/js/jquery-min.js | 200 OK Content-Length: 93085 Content-Type: application/javascript | clean |
http://xtreme.be/wp-content/themes/xtreme/js/jquery.jcarousel.js | 200 OK Content-Length: 43933 Content-Type: application/javascript | clean |
http://xtreme.be/wp-content/themes/xtreme/js/jcarousel.responsive.js | 200 OK Content-Length: 2790 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: xtreme.be
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 03 Dec 2015 00:33:09 GMT
Server: Apache/2
Vary: Accept-Encoding,User-Agent
Content-Type: text/html; charset=UTF-8
Link: <http://xtreme.be/>; rel=shortlink
Set-Cookie: qtrans_cookie_test=qTranslate+Cookie+Test; path=/; domain=xtreme.be
X-Pingback: http://xtreme.be/xmlrpc.php
X-Powered-By: PHP/5.4.37
GET / HTTP/1.1
Host: xtreme.be
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 03 Dec 2015 00:33:09 GMT
Server: Apache/2
Vary: Accept-Encoding,User-Agent
Content-Type: text/html; charset=UTF-8
Link: <http://xtreme.be/>; rel=shortlink
Set-Cookie: qtrans_cookie_test=qTranslate+Cookie+Test; path=/; domain=xtreme.be
X-Pingback: http://xtreme.be/xmlrpc.php
X-Powered-By: PHP/5.4.37
Second query (visit from search engine):
GET / HTTP/1.1
Host: xtreme.be
Referer: http://www.google.com/search?q=xtreme.be
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: xtreme.be
Referer: http://www.google.com/search?q=xtreme.be
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=xtreme.be
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://xtreme.be/
Result: xtreme.be is not infected or malware details are not published yet.
Result: xtreme.be is not infected or malware details are not published yet.