Scanned pages/files
Request | Server response | Status |
http://raveneyestudio.com/ | 200 OK Content-Length: 7937 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: root@rloveution:~# SITE HAS BEEN HACKED BY RLOVEUTION ...[4157 bytes skipped]... _|\__,_|\__|_|\___/|_| |_| |___/ </pre> <br /> <script language="JavaScript"> msg = new Array(); //strings written in screen msg[0] = "<font face='Courier' color='red' new size='3'><center><br>[+] <font color='#CCCCCC'>root@rloveution:~# SITE HAS BEEN HACKED BY RLOVEUTION</center></font>"; msg[1] = "<font face='Courier' color='red' new size='3'><center></center><br></font> </b>"; msg[2] = "<font face='Courier' color='red' new size='3'><center>[+] <font color='#CCCCCC'>root@rloveution:~# We are anonymous We are legion We do not forgive We do not forget Expect us</center></font><br></font> </b>"; m ...[4954 bytes skipped]... | ||
http://raveneyestudio.com/test404page.js | 200 OK Content-Length: 7937 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: raveneyestudio.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 03 Sep 2014 17:41:21 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
GET / HTTP/1.1
Host: raveneyestudio.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 03 Sep 2014 17:41:21 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: raveneyestudio.com
Referer: http://www.google.com/search?q=raveneyestudio.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: raveneyestudio.com
Referer: http://www.google.com/search?q=raveneyestudio.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=raveneyestudio.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://raveneyestudio.com/
Result: raveneyestudio.com is not infected or malware details are not published yet.
Result: raveneyestudio.com is not infected or malware details are not published yet.