Single IP defacement

Site hack detected here: http://sitecheck.sucuri.net/scanner/?scan=http%3A%2F%2Faremabatam.com
See badness history of IP: https://www.virustotal.com/nl/ip-address/31.170.164.137/information/
See: http://sucuri.net/malware/entry/MW:DEFACED:01
Security warning for htxp://aremabatam.com/404testpage4525d2fdc Error while fetching URL
See Notifier data: http://www.zone-h.org/archive/notifier=Natsu007
details: http://maldb.com/aremabatam.com/#pages
Not adding to IP security: http://sameid.net/ip/31.170.164.137/
No alerts here: http://urlquery.net/report.php?id=9837374
See: http://builtwith.com/aremabatam.com (facebook hack?)
active malware there (what?) according to virus tracker classification: aremabatam dot com,31.170.164.137,ns1.idhostinger dot com,Criminals,
Criminals means only that there is active malware up and running!
Injection Check comes up with: Suspicious Text after HTML

hacked by natsu007

./surprise!!!! :d

Spam check reveals the hack: Suspicion of Spam/Defacement

com/2008/fbml"> hacked by natsu007

natsu007 was here!!

the requested …
redirect to: htxp://4.bp.blogspot.com/-CZe8OFLpP84/UO1jR9kBaAI/AAAAAAAAD0Q/yDOE2Zk9cK4/s1600/persib-bandung12.gif
→ 4.bp.blogspot dot com,Ghosted,

pol

A nice scanner to detect hacked sites with is this Fetch HTTP analyzer and debugger.
See this excample: http://fetch.scritch.org/%2Bfetch/?url=aknyenterprisescorp.com&useragent=Fetch+useragent&accept_encoding=
Document Hacked by H4x0r HuSsY referenced content () (i.e. css, rss)
embedded content: (htXp://www.youtube.com/v/kMZVAUFyJW4&autoplay=1)
source: http://fetch.scritch.org/%2Bfetch/?url=aknyenterprisescorp.com&useragent=Fetch+useragent&accept_encoding=
Re: http://hackread.com/?s=H4x0r+HuSsY

enjoy,

pol