Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: yuventa-karcher.com.ua
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 05 Oct 2014 12:46:18 GMT
Pragma: no-cache
Server: nginx
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Link: <http://yuventa-karcher.com.ua/?p=5>; rel=shortlink
Set-Cookie: PHPSESSID=re4s3h9v35iq7p0ud9m8ps6fk0; path=/
X-Pingback: http://yuventa-karcher.com.ua/xmlrpc.php
GET / HTTP/1.1
Host: yuventa-karcher.com.ua
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 05 Oct 2014 12:46:18 GMT
Pragma: no-cache
Server: nginx
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Link: <http://yuventa-karcher.com.ua/?p=5>; rel=shortlink
Set-Cookie: PHPSESSID=re4s3h9v35iq7p0ud9m8ps6fk0; path=/
X-Pingback: http://yuventa-karcher.com.ua/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: yuventa-karcher.com.ua
Referer: http://www.google.com/search?q=yuventa-karcher.com.ua
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: yuventa-karcher.com.ua
Referer: http://www.google.com/search?q=yuventa-karcher.com.ua
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://yuventa-karcher.com.ua/ | 200 OK Content-Length: 34636 Content-Type: text/html | clean |
http://yuventa-karcher.com.ua/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: application/x-javascript | clean |
http://yuventa-karcher.com.ua/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/x-javascript | clean |
http://yuventa-karcher.com.ua/wp-content/themes/boutique/js/jquery_002.js?ver=3.8.4 | 200 OK Content-Length: 11942 Content-Type: application/x-javascript | clean |
http://yuventa-karcher.com.ua/wp-content/themes/boutique/js/jquery.ulslide.js?ver=3.8.4 | 200 OK Content-Length: 21333 Content-Type: application/x-javascript | clean |
http://yuventa-karcher.com.ua/wp-content/themes/boutique/shop/jquery.json-2.3.min.js?ver=3.8.4 | 200 OK Content-Length: 2199 Content-Type: application/x-javascript | clean |
http://yuventa-karcher.com.ua/wp-content/themes/boutique/shop/shopscript.js?ver=3.8.4 | 200 OK Content-Length: 19390 Content-Type: application/x-javascript | clean |
http://yuventa-karcher.com.ua/wp-content/themes/boutique/js/jquery.countdown.js?ver=3.8.4 | 200 OK Content-Length: 33248 Content-Type: application/x-javascript | clean |
http://yuventa-karcher.com.ua/wp-content/plugins/contact-form-7/includes/js/jquery.form.js?ver=3.14 | 200 OK Content-Length: 14689 Content-Type: application/x-javascript | clean |
http://yuventa-karcher.com.ua/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.2.1 | 200 OK Content-Length: 6856 Content-Type: application/x-javascript | clean |
http://yuventa-karcher.com.ua/wp-content/themes/boutique/core/libs/login/loginjs.js?ver=3.8.4 | 200 OK Content-Length: 11431 Content-Type: application/x-javascript | clean |
http://yuventa-karcher.com.ua/garantiya/ | 200 OK Content-Length: 31967 Content-Type: text/html | clean |
http://yuventa-karcher.com.ua/%d0%b0%d0%ba%d1%86%d0%b8%d0%b8-%d0%b8-%d1%81%d0%ba%d0%b8%d0%b4%d0%ba%d0%b8/ | 200 OK Content-Length: 47891 Content-Type: text/html | clean |
http://yuventa-karcher.com.ua/%d0%be%d0%bf%d0%bb%d0%b0%d1%82%d0%b0-%d0%b8-%d0%b4%d0%be%d1%81%d1%82%d0%b0%d0%b2%d0%ba%d0%b0/ | 200 OK Content-Length: 32376 Content-Type: text/html | clean |
http://yuventa-karcher.com.ua/%d0%b7%d0%b0%d0%b4%d0%b0%d1%82%d1%8c-%d0%b2%d0%be%d0%bf%d1%80%d0%be%d1%81/ | 200 OK Content-Length: 30062 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=yuventa-karcher.com.ua
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://yuventa-karcher.com.ua/
Result: yuventa-karcher.com.ua is not infected or malware details are not published yet.
Result: yuventa-karcher.com.ua is not infected or malware details are not published yet.