Scanned pages/files
Request | Server response | Status |
http://voronkova.org/ | 200 OK Content-Length: 4204 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by ...[1215 bytes skipped]... src="https://fbcdn-sphotos-f-a.akamaihd.net/hphotos-ak-xap1/t1.0-9/10371894_691548260939258_388986167118990225_n.jpg"></center> <p align="center"> <body bgcolor="black"> <font size='6' face=' One'style="color: white; text-shadow: 0px 1px 7px aqua";>#OpSaveGaza 11/07/2014</font><br> <font size='4' face=' One'style="color: green; text-shadow: 0px 1px 7px red";>Hacked by </font><font size='4' face=' One'style="color: green; text-shadow: 0px 1px 7px green";> AnonGhost </font> <br><font size='3' face=' One'style="color: white; text-shadow: 0px 1px 8px white";>Hi IsraHell , where is the security bitchs?</font><br> <font size='4' face=' One'style="color: yellow; text-shadow: 0px 1px 7px aqua";>Greetings world we are AnonGhost</font><br> <font size='4' face=' One'style="color: ...[2925 bytes skipped]... | ||
http://voronkova.org/test404page.js | 404 Not Found Content-Length: 291 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: voronkova.org
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 28 Aug 2014 15:17:19 GMT
Server: nginx/1.2.1
Vary: Accept-Encoding
Content-Type: text/html
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: voronkova.org
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 28 Aug 2014 15:17:19 GMT
Server: nginx/1.2.1
Vary: Accept-Encoding
Content-Type: text/html
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: voronkova.org
Referer: http://www.google.com/search?q=voronkova.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: voronkova.org
Referer: http://www.google.com/search?q=voronkova.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=voronkova.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://voronkova.org/
Result: voronkova.org is not infected or malware details are not published yet.
Result: voronkova.org is not infected or malware details are not published yet.