Scanned pages/files
| Request | Server response | Status |
http://site46.ru/ | 200 OK Content-Length: 33831 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Rooter-Ca ...[8444 bytes skipped]... <div class="section-4 clearfix"> <div class="col1"> <div class="region region-header"> <div id="block-block-2" class="block block-block block-odd"> <div class="content"> <p> <br /><br /></p><br /><meta charset="UTF-8" /><br /><meta name="description" content="Hacked By Rooter-Ca" /><br /><meta name="keywords" content="Hacked By Rooter-Ca" /><br /><meta name="Rooter-Ca,s3c-0ut" content="Hacked By Rooter-Ca" /><br /><title> :. Hacked by X-Sec Team .:</title><style> <!--/*--><![CDATA[/* ><!--*/ body { background-image:url("http://fc04.deviantart.net/fs70/i/2013/327/b/d/al_quds_wallpaper_by_gultalibk-d6v9cgp.jpg"); background- ...[31132 bytes skipped]... | ||
http://site46.ru/sites/all/themes/theme538/js/jquery-1.4.2.min.js | 200 OK Content-Length: 72328 Content-Type: application/x-javascript | clean |
http://site46.ru/sites/all/themes/theme538/js/jquery.prettyPhoto.js | 200 OK Content-Length: 22617 Content-Type: application/x-javascript | clean |
http://site46.ru/sites/all/themes/theme538/js/jquery.galleriffic.js | 200 OK Content-Length: 32721 Content-Type: application/x-javascript | clean |
http://site46.ru/sites/all/themes/theme538/js/jquery.opacityrollover.js | 200 OK Content-Length: 937 Content-Type: application/x-javascript | clean |
http://site46.ru/misc/jquery.js?v=1.4.4 | 200 OK Content-Length: 78602 Content-Type: application/x-javascript | clean |
http://site46.ru/misc/jquery.once.js?v=1.2 | 200 OK Content-Length: 2974 Content-Type: application/x-javascript | clean |
http://site46.ru/misc/drupal.js?mz3quy | 200 OK Content-Length: 14544 Content-Type: application/x-javascript | clean |
http://site46.ru/misc/ajax.js?mz3quy | 200 OK Content-Length: 22540 Content-Type: application/x-javascript | clean |
http://site46.ru/misc/progress.js?mz3quy | 200 OK Content-Length: 3112 Content-Type: application/x-javascript | clean |
http://site46.ru/sites/default/files/languages/ru_hzcahYBtlfR_iBAJe2peASD96Xbdd4hAPkZDO8RwQHI.js?mz3quy | 200 OK Content-Length: 7693 Content-Type: application/x-javascript | clean |
http://site46.ru/sites/all/libraries/colorbox/colorbox/jquery.colorbox-min.js?mz3quy | 200 OK Content-Length: 9192 Content-Type: application/x-javascript | clean |
http://site46.ru/sites/all/modules/colorbox/js/colorbox.js?mz3quy | 200 OK Content-Length: 419 Content-Type: application/x-javascript | clean |
http://site46.ru/sites/all/modules/colorbox/styles/default/colorbox_default_style.js?mz3quy | 200 OK Content-Length: 764 Content-Type: application/x-javascript | clean |
http://site46.ru/sites/all/modules/colorbox/js/colorbox_load.js?mz3quy | 200 OK Content-Length: 1065 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: site46.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 24 Jun 2015 15:16:01 GMT
ETag: "1435158961"
Server: nginx/0.7.67
Vary: Accept-Encoding
Content-Language: ru
Content-Type: text/html; charset=utf-8
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Wed, 24 Jun 2015 15:16:01 +0000
X-Generator: Drupal 7 (http://drupal.org)
X-Powered-By: PHP/5.3.3-7+squeeze14
GET / HTTP/1.1
Host: site46.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 24 Jun 2015 15:16:01 GMT
ETag: "1435158961"
Server: nginx/0.7.67
Vary: Accept-Encoding
Content-Language: ru
Content-Type: text/html; charset=utf-8
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Wed, 24 Jun 2015 15:16:01 +0000
X-Generator: Drupal 7 (http://drupal.org)
X-Powered-By: PHP/5.3.3-7+squeeze14
Second query (visit from search engine):
GET / HTTP/1.1
Host: site46.ru
Referer: http://www.google.com/search?q=site46.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: site46.ru
Referer: http://www.google.com/search?q=site46.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=site46.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://site46.ru/
Result: site46.ru is not infected or malware details are not published yet.
Result: site46.ru is not infected or malware details are not published yet.