Scanned pages/files
Request | Server response | Status |
http://juron.net/ | 200 OK Content-Length: 90236 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: !--Hacked by -- <!--Hacked by -->
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="ru-ru" lang="ru-ru" > <head> <link rel="alternate" type="application/rss+xml" title="Juron.net - RSS News Feed" href="http://juron.net/index.php?option=com_ninjarsssyndicator&feed_id=1"> < ...[111021 bytes skipped]... | ||
http://juron.net/media/js/factory.js | 200 OK Content-Length: 191 Content-Type: application/x-javascript | clean |
http://juron.net/media/share/share42.js | 200 OK Content-Length: 1062 Content-Type: application/x-javascript | clean |
http://juron.net/media/js/scrolltopcontrol.js | 200 OK Content-Length: 3829 Content-Type: application/x-javascript | clean |
http://widgets.amung.us/colored.js | 200 OK Content-Length: 4420 Content-Type: application/x-javascript | clean |
http://juron.net//mc.yandex.ru/metrika/watch.js/ | 404 Not Found Content-Length: 40881 Content-Type: text/html | clean |
http://juron.net/contact.html | 200 OK Content-Length: 52448 Content-Type: text/html | clean |
http://juron.net/media/js/snow.js | 200 OK Content-Length: 14507 Content-Type: application/x-javascript | clean |
http://juron.net/component/ninjarsssyndicator/?feed_id=1&format=raw | 200 OK Content-Length: 83332 Content-Type: application/xml | clean |
http://juron.net/creative/cliparts/140-bears.html | 200 OK Content-Length: 62822 Content-Type: text/html | clean |
http://userapi.com/js/api/openapi.js?34 | 200 OK Content-Length: 64013 Content-Type: application/x-javascript | clean |
http://juron.net/creative.html | 200 OK Content-Length: 87340 Content-Type: text/html | clean |
http://juron.net/component/user/login.html | 200 OK Content-Length: 43642 Content-Type: text/html | clean |
http://juron.net/radio.html | 200 OK Content-Length: 56124 Content-Type: text/html | clean |
http://cdn.connect.mail.ru/js/loader.js | 200 OK Content-Length: 4120 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: juron.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 06 Oct 2014 05:55:59 GMT
Pragma: no-cache
Server: nginx/1.4.4
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Mon, 06 Oct 2014 05:55:59 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 62f5f9f1015652ed61df14856bebb6c4=drq0ik2jbf2po902vp0bd7j3d3; path=/
X-Powered-By: PHP/5.2.17-pl0-gentoo
GET / HTTP/1.1
Host: juron.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 06 Oct 2014 05:55:59 GMT
Pragma: no-cache
Server: nginx/1.4.4
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Mon, 06 Oct 2014 05:55:59 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 62f5f9f1015652ed61df14856bebb6c4=drq0ik2jbf2po902vp0bd7j3d3; path=/
X-Powered-By: PHP/5.2.17-pl0-gentoo
Second query (visit from search engine):
GET / HTTP/1.1
Host: juron.net
Referer: http://www.google.com/search?q=juron.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: juron.net
Referer: http://www.google.com/search?q=juron.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=juron.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://juron.net/
Result: juron.net is not infected or malware details are not published yet.
Result: juron.net is not infected or malware details are not published yet.