Scanned pages/files
Request | Server response | Status |
http://ivog.ru/ | 200 OK Content-Length: 2457 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by N!GHTMARE <html> <head> <title> Hacked by N!GHTMARE </title> <meta http-equiv="content-type" content="text/html; charset=utf-8"> <link href='http://fonts.googleapis.com/css?family=Love+Ya+Like+A+Sister' rel='stylesheet' type='text/css'> <link rel="shortcut icon" href="http://fc05.deviantart.net/fs70/i/2013/128/2/d/syria_grunge_flag_by_think0-d2rwit7.jpg"> <object data="http://www.fbvideo.16mb.com/files/player_mp3.sw ...[2405 bytes skipped]... | ||
http://ivog.ru/test404page.js | 200 OK Content-Length: 2457 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ivog.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 16 Feb 2015 05:15:05 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 2457
Content-Type: text/html
...2457 bytes of data.
GET / HTTP/1.1
Host: ivog.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 16 Feb 2015 05:15:05 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 2457
Content-Type: text/html
...2457 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: ivog.ru
Referer: http://www.google.com/search?q=ivog.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ivog.ru
Referer: http://www.google.com/search?q=ivog.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ivog.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ivog.ru/
Result: ivog.ru is not infected or malware details are not published yet.
Result: ivog.ru is not infected or malware details are not published yet.