Scanned pages/files
Request | Server response | Status |
http://unistrans.ru/ | 200 OK Content-Length: 30828 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: +ADw-/title+AD4APA-center+AD4APA-b+AD4-HACKED BY AYYILDIZ TEAM +AN0-N KARACABEY+ADw-/CENTER+AD4APA-/ ...[846 bytes skipped]... f lte IE 7]> <link rel="stylesheet" type="text/css" href="/wp-content/themes/unistrans/ie7.css" media="screen" /> <![endif]--> <!--[if lte IE 6]> <link rel="stylesheet" type="text/css" href="/wp-content/themes/unistrans/ie6.css" media="screen" /> <![endif]--> <link rel="alternate" type="application/rss+xml" title="+ADw-/title+AD4APA-center+AD4APA-b+AD4-HACKED BY AYYILDIZ TEAM +AN0-N KARACABEY+ADw-/CENTER+AD4APA-/B+AD4 +ADw-center+AD4APA-b+AD4-HACKED BY AYYILDIZ TEAM +AN0-N KARACABEY+ADw-/CENTER+AD4APA-/B+AD4 +ADw-center+AD4APA-b+AD4-HACKED BY AYYILDIZ TEAM +AN0-N KARACABEY+ADw-/CENTER+AD4APA-/B+AD4 +ADw-center+AD4APA-b+AD4-HACKED BY AYYILDIZ TEAM +AN0-N KARACABEY+ADw-/CENTER+AD4APA-/B+AD4 +ADw-center+AD4APA-b+AD4-HACKED BY AYYILDIZ TEAM +AN0-N KARACABEY+ADw-/CENTER+AD4APA-/B+AD4 +ADw-center+AD4APA-b+AD4-HACKED BY AY ...[34212 bytes skipped]... | ||
http://unistrans.ru/wp-includes/js/jquery/jquery.js?ver=1.7.2 | 200 OK Content-Length: 94861 Content-Type: application/x-javascript | clean |
http://unistrans.ru/wp-content/plugins/ajax-comment-posting/acp.js?ver=3.4.2 | 200 OK Content-Length: 3748 Content-Type: application/x-javascript | clean |
http://unistrans.ru/wp-content/plugins/traffic-counter-widget/wp-wtc-ajax.js?ver=3.4.2 | 200 OK Content-Length: 908 Content-Type: application/x-javascript | clean |
http://unistrans.ru/wp-includes/js/jquery/jquery.form.js?ver=2.73 | 200 OK Content-Length: 11116 Content-Type: application/x-javascript | clean |
http://reformal.ru/tab.js?title=unistrans.ru&domain=unistrans&color=6da125&align=right&charset=utf-8<itle=&lfont=&lsize=&waction=0®ime=0 | 200 OK Content-Length: 11217 Content-Type: application/x-javascript | clean |
http://unistrans.ru/sitemap | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://unistrans.ru/test404page.js | 404 Not Found Content-Length: 305 Content-Type: text/html | clean |
http://unistrans.ru/main | 200 OK Content-Length: 34261 Content-Type: text/html | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 19470 Content-Type: text/javascript | clean |
http://unistrans.ru/transfer | 200 OK Content-Length: 35238 Content-Type: text/html | clean |
http://unistrans.ru/transfer/international | 200 OK Content-Length: 35356 Content-Type: text/html | clean |
http://unistrans.ru/transfer/russian | 200 OK Content-Length: 34487 Content-Type: text/html | clean |
http://unistrans.ru/news | 200 OK Content-Length: 35327 Content-Type: text/html | clean |
http://unistrans.ru/information | 200 OK Content-Length: 34507 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: unistrans.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 04 Jan 2015 15:21:24 GMT
Server: nginx
Vary: Accept-Encoding
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
X-Powered-By: PHP/5.3.28
GET / HTTP/1.1
Host: unistrans.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 04 Jan 2015 15:21:24 GMT
Server: nginx
Vary: Accept-Encoding
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
X-Powered-By: PHP/5.3.28
Second query (visit from search engine):
GET / HTTP/1.1
Host: unistrans.ru
Referer: http://www.google.com/search?q=unistrans.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: unistrans.ru
Referer: http://www.google.com/search?q=unistrans.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=unistrans.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://unistrans.ru/
Result: unistrans.ru is not infected or malware details are not published yet.
Result: unistrans.ru is not infected or malware details are not published yet.