Scanned pages/files
Request | Server response | Status |
http://shtora.ua/ | 200 OK Content-Length: 1657 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: ≡【 Hacked By xc0d30ffx 】≡ <html><head><title>≡【 Hacked By xc0d30ffx 】≡ </title><style type="text/css">body {background-color:#000000;color:#FFFFFF;magin:0px;padding:0px;font-family:Trebuchet MS; background-repeat: no-repeat;}</style><embed src="http://divine-music.info/musicfiles/50cent-pimp.swf" autostart="true" loop="true" width="0" height="0" align="center"></embed>& ...[1622 bytes skipped]... | ||
http://shtora.ua/test404page.js | 200 OK Content-Length: 1657 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: shtora.ua
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 11 Jul 2015 18:18:03 GMT
Server: nginx
Content-Type: text/html; charset=UTF-8
GET / HTTP/1.1
Host: shtora.ua
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 11 Jul 2015 18:18:03 GMT
Server: nginx
Content-Type: text/html; charset=UTF-8
Second query (visit from search engine):
GET / HTTP/1.1
Host: shtora.ua
Referer: http://www.google.com/search?q=shtora.ua
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: shtora.ua
Referer: http://www.google.com/search?q=shtora.ua
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=shtora.ua
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://shtora.ua/
Result: shtora.ua is not infected or malware details are not published yet.
Result: shtora.ua is not infected or malware details are not published yet.