New scan:

Malware Scanner report for krystalunycorn.com

Malicious/Suspicious/Total urls checked
0/0/6
Blacklists
OK
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
Found
Probably the website is defaced. The following signature was found:

Hacked by Malaysia Security Tester   (154 websites defaced)

See details below

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Scanned pages/files

RequestServer responseStatus
http://krystalunycorn.com/
200 OK
Content-Length: 2259
Content-Type: text/html
suspicious
Deface/Content modification. The following signature was found: Hacked by Malaysia Security Tester

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html><head><link rel="shortcut icon"href="http://photo-img.nazuka.net/images/2013/04/03/Anonymous-Malaysia.gif" type="image/x-icon" />
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<title>Hacked by Malaysia Security Tester </title>
<embed src="http://www.youtube.com/v/dJ-QLl5qjLg&autoplay=1" type="application/x-shockwave-flash" wmode="transparent" width="0" height="0"></embed>
<img src='http://i.imgur.com/cjmUz2G.jpg' style='position:fixed;top:0px;left:0px;width:100%;height:100%;z-index:-1;'>
<body text="black" style="background-color:white;" oncontextmenu='return false;' onkeydown='return false;'
...[2146 bytes skipped]...


http://krystalunycorn.com/test404page.js
HTTP/1.1 302 Found
Connection: close
Date: Fri, 09 Oct 2015 12:15:27 GMT
Location: http://www.gogvo.com/404.html
Server: Apache
Content-Length: 213
Content-Type: text/html; charset=iso-8859-1
clean
http://www.gogvo.com/404.html
HTTP/1.1 200 OK
Connection: close
Date: Fri, 09 Oct 2015 12:15:27 GMT
Accept-Ranges: bytes
ETag: "2c1009c-cd-51fdf5bcec980"
Server: Apache
Content-Length: 205
Content-Type: text/html; charset=UTF-8
Last-Modified: Wed, 16 Sep 2015 15:57:42 GMT
clean
http://www.joeltherien.com/go/404
HTTP/1.1 302 Found
Connection: close
Date: Fri, 09 Oct 2015 12:15:28 GMT
Location: http://gvo19363.gvodatacenter.com/404.html
Server: Apache
Content-Length: 226
Content-Type: text/html; charset=iso-8859-1
clean
http://gvo19363.gvodatacenter.com/404.html
500 Can't connect to gvo19363.gvodatacenter.com:80
Content-Length: 201
Content-Type: text/plain
clean
http://gvo19363.gvodatacenter.com/test404page.js
500 Can't connect to gvo19363.gvodatacenter.com:80
Content-Length: 201
Content-Type: text/plain
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: krystalunycorn.com

Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 09 Oct 2015 12:15:25 GMT
Server: Apache
Content-Type: text/html
X-Powered-By: PHP/5.3.29
Second query (visit from search engine):
GET / HTTP/1.1
Host: krystalunycorn.com
Referer: http://www.google.com/search?q=krystalunycorn.com

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=krystalunycorn.com

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://krystalunycorn.com/

Result: krystalunycorn.com is not infected or malware details are not published yet.