Website not flagged by AOS.

Viruses and worms
1

htxp://cdd.net.ua/apothecary/products_new.php?=194&page=7 is in Dr.Web malicious sites list!
Trojans detected:
Object: htxp://cdd.net.ua/apothecary/products_new.php?=194&page=7
SHA1: 60326f5d2f388a69afc589f619706b24d5e6a3ae
Name: TrojWare.JS.Agent.SCP
Website generating errors:
Internal Server Error 500-error?v1
-http://cdd.net.ua/404testpage4525d2fdc (
Internal Server Error 500-error?v1 -http://cdd.net.ua/404javascript.js
Site error detected. Details: http://labs.sucuri.net/db/malware/500-error?v1
HTTP/1.1 500 Internal Server Error

System Details:
Running on: nginx/1.8.0
Powered by: PHP/5.2.6-1+lenny16

Web application details:
Application: WordPress 2.7.1 - http://www.wordpress.org

Web application version:
WordPress version: WordPress 2.7.1
Wordpress Version 2.5 for: -http://cdd.net.ua/wp-includes/js/scriptaculous/wp-scriptaculous.js
WordPress theme: -http://cdd.net.ua/wp-content/themes/cdd/
Wordpress internal path: /var/www/cddIqh/cdd.net.ua/wp-content/themes/cdd/index.php
WordPress version outdated: Upgrade required.
Outdated WordPress Found: WordPress Under 4.2
WordPress Version
2.7.1
Version does not appear to be latest 4.3.1 - update now.
WordPress Plugins
The following plugins were detected by reading the HTML source of the WordPress sites front page.

floatbox-plus 0.3.3 latest release (1.4.4) Update required
http://blog.splash.de/plugins/floatbox-plus

plug-in jLanguage

WordPress Theme
The theme has been found by examining the path /wp-content/themes/ theme name /

cdd -http://code.fridge.com.ua/

Warning Directory Indexing Enabled
In the test we attempted to list the directory contents of the uploads and plugins folders to determine if Directory Indexing is enabled. This is an information leakage vulnerability that can reveal sensitive information regarding your site configuration or content.

/wp-content/uploads/ enabled
/wp-content/plugins/ enabled

See: http://fetch.scritch.org/%2Bfetch/?url=cdd.net.ua&useragent=Fetch+useragent&accept_encoding=

See: Recent reports on same IP/ASN/Domain → https://urlquery.net/report.php?id=1443629218924

Linux may not be secure: http://resources.infosecinstitute.com/securing-linux-web-server/
See: -http://cdd.net.ua/wp-content/plugins/floatbox-plus/floatbox/languages/
Bitdefender TrafficLight flags as with malware.

polonus (volunteer website security analyst and website error-hunter)