Scanned pages/files
| Request | Server response | Status |
http://www.yvelaferi.at.ua/ | HTTP/1.1 301 Moved Permanently Cache-Control: private Connection: close Date: Wed, 25 Jun 2014 13:41:28 GMT Location: http://yvelaferi.at.ua/ Server: uServ/3.2.2 Content-Type: application/octet-stream | clean |
http://yvelaferi.at.ua/ | 200 OK Content-Length: 188093 Content-Type: text/html | suspicious |
Suspicious code found <div class="bbCodeBlock"><div class="bbCodeName" style="padding-left:5px;font-weight:bold;font-size:7pt">Code</div><div class="codeMessage" style="border:1px inset;max-height:200px;overflow:auto;height:expression(this.scrollHeight<5?this.style.height:scrollHeight>200?'200px':''+(this.scrollHeight+5)+'px');"><!--uzc--><iframe width="á¡ááá á«á" height="á¡áááá¦áá" src="áááááá¡ ááá¡áááá áá" frameborder="0" scrolling="no" allowfullscreen></iframe><!--/uzc--></div></div> | ||
http://zeus.pp.ua/highslide/highslide-full.packed.js | 200 OK Content-Length: 43556 Content-Type: text/javascript | clean |
http://s57.ucoz.net/src/jquery-1.3.2.js | 200 OK Content-Length: 57533 Content-Type: text/javascript | clean |
http://s57.ucoz.net/src/uwnd.js?2 | 200 OK Content-Length: 228554 Content-Type: text/javascript | clean |
http://s105.ucoz.net/src/jquery-1.7.2.js | 200 OK Content-Length: 94840 Content-Type: text/javascript | clean |
http://s105.ucoz.net/src/ulightbox/ulightbox.js | 200 OK Content-Length: 39799 Content-Type: text/javascript | clean |
http://s105.ucoz.net/src/uwnd.js?2 | 200 OK Content-Length: 228554 Content-Type: text/javascript | clean |
http://esezo.com/she/skr/001/151/skr151.js | 500 Can't connect to esezo.com:80 (Bad hostname) Content-Length: 150 Content-Type: text/plain | clean |
http://esezo.com/test404page.js | 500 Can't connect to esezo.com:80 (Bad hostname) Content-Length: 150 Content-Type: text/plain | clean |
http://.jquery.com/jquery-latest.pack.js | 500 Can't connect to .jquery.com:80 (Bad hostname) Content-Length: 154 Content-Type: text/plain | clean |
http://1x.do.am/script/jquery.coda-bubble.sp.js | 200 OK Content-Length: 199 Content-Type: text/javascript | clean |
http://counter.top.ge/cgi-bin/cod?100+86243 | 200 OK Content-Length: 371 Content-Type: application/x-javascript | clean |
http://links.boom.ge/jc.php?id=58528 | 200 OK Content-Length: 276 Content-Type: text/html | clean |
http://allfiless.com/media/?t=video;w=202;h=166;f=http%3A//www.youtube.com/watch%3Fv%3D7UzezOP2bX4 | 404 Not Found Content-Length: 5644 Content-Type: text/html | clean |
http://allfiless.com/ | 200 OK Content-Length: 9196 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: yvelaferi.at.ua
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Cache-Control: no-store
Cache-Control: private
Connection: close
Date: Wed, 25 Jun 2014 13:41:28 GMT
Pragma: no-cache
Server: uServ/3.2.2
Content-Type: text/html; charset=UTF-8
Set-Cookie: 2yvelaferiuCoz=; path=/; expires=Mon, 25-Jun-2012 13:41:29 GMT; domain=.yvelaferi.at.ua;
Set-Cookie: 2yvelaferiuzll=1403703689; path=/; expires=Thu, 25-Jun-2015 13:41:29 GMT; domain=.yvelaferi.at.ua;
GET / HTTP/1.1
Host: yvelaferi.at.ua
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Cache-Control: no-store
Cache-Control: private
Connection: close
Date: Wed, 25 Jun 2014 13:41:28 GMT
Pragma: no-cache
Server: uServ/3.2.2
Content-Type: text/html; charset=UTF-8
Set-Cookie: 2yvelaferiuCoz=; path=/; expires=Mon, 25-Jun-2012 13:41:29 GMT; domain=.yvelaferi.at.ua;
Set-Cookie: 2yvelaferiuzll=1403703689; path=/; expires=Thu, 25-Jun-2015 13:41:29 GMT; domain=.yvelaferi.at.ua;
Second query (visit from search engine):
GET / HTTP/1.1
Host: yvelaferi.at.ua
Referer: http://www.google.com/search?q=yvelaferi.at.ua
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: yvelaferi.at.ua
Referer: http://www.google.com/search?q=yvelaferi.at.ua
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=yvelaferi.at.ua
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://yvelaferi.at.ua/
Result: yvelaferi.at.ua is not infected or malware details are not published yet.
Result: yvelaferi.at.ua is not infected or malware details are not published yet.