Malware Scanner report for hernia.ru

Malicious/Suspicious/Total urls checked: 0/3/19

3 pages have suspicious code. See details below

Blacklists: OK

Malicious Redirects: OK

Malicious/Hidden/Total iFrames: 0/0/0

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Scanned pages/files

Request	Server response	Status
http://hernia.ru/	HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 05 Jun 2014 01:51:45 GMT Location: http://www.hernia.ru/ Server: nginx/Zenon Content-Length: 0 Content-Type: text/html; charset=utf-8 X-Powered-By: PHP/5.4.27	clean
http://www.hernia.ru/	200 OK Content-Length: 21718 Content-Type: text/html	suspicious
Suspicious code found <div class="footer_in"> <div class="footer"> <a href="/site-partners/" class="redb" >Ð¡Ð°Ð¹ÑÑ-Ð¿Ð°ÑÑÐ½ÐµÑÑ</a> <div class="text"><p>© Johnson & Johnson LLC (ÐÐÐ «ÐÐ¶Ð¾Ð½ÑÐ¾Ð½ & ÐÐ¶Ð¾Ð½ÑÐ¾Ð½») 2013<br /> ÐÐ°Ð½Ð½ÑÐ¹ ÑÐ°Ð¹Ñ Ð¾Ð¿ÑÐ±Ð»Ð¸ÐºÐ¾Ð²Ð°Ð½ ÐºÐ¾Ð¼Ð¿Ð°Ð½Ð¸ÐµÐ¹ ÐÐÐ «ÐÐ¶Ð¾Ð½ÑÐ¾Ð½ & ÐÐ¶Ð¾Ð½ÑÐ¾Ð½», ÐºÐ¾ÑÐ¾ÑÐ°Ñ Ð½ÐµÑ ... 128 bytes are skipped ...´Ð»Ñ Ð¿Ð¾ÑÐµÑÐ¸ÑÐµÐ»ÐµÐ¹ Ð¸Ð· Ð Ð¾ÑÑÐ¸Ð¸ Ð¸ ÑÑÑÐ°Ð½ Ð¡ÐÐ.<br /> ÐÐ¾Ð¶Ð°Ð»ÑÐ¹ÑÑÐ°, Ð¾Ð·Ð½Ð°ÐºÐ¾Ð¼ÑÑÐµÑÑ Ñ Ð½Ð°ÑÐ¸Ð¼Ð¸ <a href="/additional-information/privacy/" target="_self">Ð¿ÑÐ°Ð²Ð¸Ð»Ð°Ð¼Ð¸ ÐºÐ¾Ð½ÑÐ¸Ð´ÐµÐ½ÑÐ¸Ð°Ð»ÑÐ½Ð¾ÑÑÐ¸</a> Ð¸ <a href="/additional-information/legal-information/" target="_self">ÑÑÐ»Ð¾Ð²Ð¸ÑÐ¼Ð¸ Ð¸ÑÐ¿Ð¾Ð»ÑÐ·Ð¾Ð²Ð°Ð½Ð¸Ñ</a>.<br />  </p></div> </div> </div>
http://www.hernia.ru/themes/hernia/js/jq.js	200 OK Content-Length: 93107 Content-Type: application/x-javascript	clean
http://hernia.ru/themes/hernia/js/jq-ui.js	200 OK Content-Length: 300288 Content-Type: application/x-javascript	clean
http://hernia.ru/themes/hernia/js/slides.js	200 OK Content-Length: 32765 Content-Type: application/x-javascript	clean
http://hernia.ru/themes/hernia/js/jq.placeholder.js	200 OK Content-Length: 4218 Content-Type: application/x-javascript	clean
http://hernia.ru/themes/hernia/js/jq.formalize.js	200 OK Content-Length: 5367 Content-Type: application/x-javascript	clean
http://hernia.ru/themes/hernia/jplayer/js/jquery.jplayer.min.js	200 OK Content-Length: 48815 Content-Type: application/x-javascript	clean
http://api-maps.yandex.ru/2.0-stable/?load=package.full&lang=ru-RU	200 OK Content-Length: 69555 Content-Type: text/javascript	clean
http://hernia.ru/themes/hernia/js/main.js	200 OK Content-Length: 10557 Content-Type: application/x-javascript	clean
http://hernia.ru/themes/hernia/js/script.js	200 OK Content-Length: 547 Content-Type: application/x-javascript	clean
http://hernia.ru/themes/hernia/js/calendar.js	200 OK Content-Length: 6734 Content-Type: application/x-javascript	clean
http://hernia.ru/themes/hernia/js/integration.js	200 OK Content-Length: 7122 Content-Type: application/x-javascript	clean
http://hernia.ru/doctors/	HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 05 Jun 2014 01:51:49 GMT Location: http://www.hernia.ru/doctors/ Server: nginx/Zenon Content-Length: 0 Content-Type: text/html; charset=utf-8 X-Powered-By: PHP/5.4.27	clean
http://www.hernia.ru/doctors/	HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 05 Jun 2014 01:51:49 GMT Pragma: no-cache Location: /netcat/modules/auth/?template=23 Server: nginx/Zenon Content-Length: 0 Content-Type: text/html; charset=utf-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: sid=0st5nv9fdtlcnpokirdojp4n06; path=/; domain=hernia.ru Set-Cookie: CookieID=2f1e7f3da572bf6f2f73ace1a9ab890f; expires=Fri, 05-Jun-2015 01:51:49 GMT; path=/ X-Powered-By: PHP/5.4.27	clean
http://www.hernia.ru/netcat/modules/auth/?template=23	200 OK Content-Length: 10183 Content-Type: text/html	suspicious
Suspicious code found <div class="footer_in"> <div class="footer"> <a href="/site-partners/" class="redb" >Ð¡Ð°Ð¹ÑÑ-Ð¿Ð°ÑÑÐ½ÐµÑÑ</a> <div class="text"><p>© Johnson & Johnson LLC (ÐÐÐ «ÐÐ¶Ð¾Ð½ÑÐ¾Ð½ & ÐÐ¶Ð¾Ð½ÑÐ¾Ð½») 2013<br /> ÐÐ°Ð½Ð½ÑÐ¹ ÑÐ°Ð¹Ñ Ð¾Ð¿ÑÐ±Ð»Ð¸ÐºÐ¾Ð²Ð°Ð½ ÐºÐ¾Ð¼Ð¿Ð°Ð½Ð¸ÐµÐ¹ ÐÐÐ «ÐÐ¶Ð¾Ð½ÑÐ¾Ð½ & ÐÐ¶Ð¾Ð½ÑÐ¾Ð½», ÐºÐ¾ÑÐ¾ÑÐ°Ñ Ð½ÐµÑ ... 128 bytes are skipped ...´Ð»Ñ Ð¿Ð¾ÑÐµÑÐ¸ÑÐµÐ»ÐµÐ¹ Ð¸Ð· Ð Ð¾ÑÑÐ¸Ð¸ Ð¸ ÑÑÑÐ°Ð½ Ð¡ÐÐ.<br /> ÐÐ¾Ð¶Ð°Ð»ÑÐ¹ÑÑÐ°, Ð¾Ð·Ð½Ð°ÐºÐ¾Ð¼ÑÑÐµÑÑ Ñ Ð½Ð°ÑÐ¸Ð¼Ð¸ <a href="/additional-information/privacy/" target="_self">Ð¿ÑÐ°Ð²Ð¸Ð»Ð°Ð¼Ð¸ ÐºÐ¾Ð½ÑÐ¸Ð´ÐµÐ½ÑÐ¸Ð°Ð»ÑÐ½Ð¾ÑÑÐ¸</a> Ð¸ <a href="/additional-information/legal-information/" target="_self">ÑÑÐ»Ð¾Ð²Ð¸ÑÐ¼Ð¸ Ð¸ÑÐ¿Ð¾Ð»ÑÐ·Ð¾Ð²Ð°Ð½Ð¸Ñ</a>.<br />  </p></div> </div> </div>
http://www.hernia.ru/themes/hernia/js/jq-ui.js	200 OK Content-Length: 300166 Content-Type: application/x-javascript	clean
http://hernia.ru/about-hernias/what-is-hernia/	HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 05 Jun 2014 01:51:51 GMT Location: http://www.hernia.ru/about-hernias/what-is-hernia/ Server: nginx/Zenon Content-Length: 0 Content-Type: text/html; charset=utf-8 X-Powered-By: PHP/5.4.27	clean
http://www.hernia.ru/about-hernias/what-is-hernia/	200 OK Content-Length: 12255 Content-Type: text/html	suspicious
Suspicious code found <div class="footer_in"> <div class="footer"> <a href="/site-partners/" class="redb" >Ð¡Ð°Ð¹ÑÑ-Ð¿Ð°ÑÑÐ½ÐµÑÑ</a> <div class="text"><p>© Johnson & Johnson LLC (ÐÐÐ «ÐÐ¶Ð¾Ð½ÑÐ¾Ð½ & ÐÐ¶Ð¾Ð½ÑÐ¾Ð½») 2013<br /> ÐÐ°Ð½Ð½ÑÐ¹ ÑÐ°Ð¹Ñ Ð¾Ð¿ÑÐ±Ð»Ð¸ÐºÐ¾Ð²Ð°Ð½ ÐºÐ¾Ð¼Ð¿Ð°Ð½Ð¸ÐµÐ¹ ÐÐÐ «ÐÐ¶Ð¾Ð½ÑÐ¾Ð½ & ÐÐ¶Ð¾Ð½ÑÐ¾Ð½», ÐºÐ¾ÑÐ¾ÑÐ°Ñ Ð½ÐµÑ ... 128 bytes are skipped ...´Ð»Ñ Ð¿Ð¾ÑÐµÑÐ¸ÑÐµÐ»ÐµÐ¹ Ð¸Ð· Ð Ð¾ÑÑÐ¸Ð¸ Ð¸ ÑÑÑÐ°Ð½ Ð¡ÐÐ.<br /> ÐÐ¾Ð¶Ð°Ð»ÑÐ¹ÑÑÐ°, Ð¾Ð·Ð½Ð°ÐºÐ¾Ð¼ÑÑÐµÑÑ Ñ Ð½Ð°ÑÐ¸Ð¼Ð¸ <a href="/additional-information/privacy/" target="_self">Ð¿ÑÐ°Ð²Ð¸Ð»Ð°Ð¼Ð¸ ÐºÐ¾Ð½ÑÐ¸Ð´ÐµÐ½ÑÐ¸Ð°Ð»ÑÐ½Ð¾ÑÑÐ¸</a> Ð¸ <a href="/additional-information/legal-information/" target="_self">ÑÑÐ»Ð¾Ð²Ð¸ÑÐ¼Ð¸ Ð¸ÑÐ¿Ð¾Ð»ÑÐ·Ð¾Ð²Ð°Ð½Ð¸Ñ</a>.<br />  </p></div> </div> </div>

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: hernia.ru

Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 05 Jun 2014 01:51:45 GMT
Location: http://www.hernia.ru/
Server: nginx/Zenon
Content-Length: 0
Content-Type: text/html; charset=utf-8
X-Powered-By: PHP/5.4.27

...0 bytes of data.

Second query (visit from search engine):
GET / HTTP/1.1
Host: hernia.ru
Referer: http://www.google.com/search?q=hernia.ru

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=hernia.ru

Result: This site is not currently listed as suspicious.

Query: http://yandex.com/infected?l10n=en&url=http://hernia.ru/

Result: hernia.ru is not infected or malware details are not published yet.

Recently found suspicious websites

Malware Scanner report for hernia.ru

Malware & Hack Repair

Website Hack Insurance

Scanned pages/files

Malicious Redirects

Safe Browsing / Blacklists

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools