Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=door-center.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://door-center.ru/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.door-center.ru/ | 200 OK Content-Length: 41465 Content-Type: text/html | clean |
http://www.door-center.ru/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/x-javascript | clean |
http://www.door-center.ru/modules/mod_jaslideshow2/assets/script.js | 200 OK Content-Length: 19556 Content-Type: application/x-javascript | clean |
http://www.door-center.ru/templates/ja_kyanite_ii/js/ja.script.js | 200 OK Content-Length: 6992 Content-Type: application/x-javascript | clean |
http://www.door-center.ru/templates/ja_kyanite_ii/js/ja.ddmod.js | 200 OK Content-Length: 16110 Content-Type: application/x-javascript | clean |
http://www.door-center.ru/templates/ja_kyanite_ii/js/menu/mega.js | 200 OK Content-Length: 17802 Content-Type: application/x-javascript | clean |
http://www.door-center.ru/plugins/content/highslide/highslide-with-html.js | 200 OK Content-Length: 62996 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var hs = { graphicsDir : 'plugins/content/highslide/graphics/', restoreCursor : 'zoomout.cur', expandSteps : 10, expandDuration : 250, restoreSteps : 10, restoreDuration : 250, marginLeft : 15, marginRight : 15, marginTop : 15, marginBottom : 15, zIndexCounter : 1001, restoreTitle : 'ÐликнÑÑÑ Ð´Ð»Ñ Ð·Ð°ÐºÑÑÑиÑ, нажаÑÑ Ð¸ ÑÑнÑÑÑ Ð´Ð»Ñ Ð¿ÐµÑемеÑениÑ. ÐÑполÑзÑйÑе ÑÑÑелки дл } } hs.getElementByClass(this.content, 'DIV', 'highslide-body').innerHTML = s; this.onLoad(); for (var x in this) this[x] = null; } }; var HsExpander = hs.Expander; hs.addEventListener(document, 'mousedown', hs.mouseClickHandler); hs.addEventListener(document, 'mouseup', hs.mouseClickHandler); hs.addEventListener(window, 'load', hs.preloadImages); hs.addEventListener(window, 'load', hs.preloadAjax); Antivirus reports:
| ||
http://www.door-center.ru/modules/mod_search_vmproduct/js/globalsearch.js | 200 OK Content-Length: 6154 Content-Type: application/x-javascript | clean |
http://www.door-center.ru/index.php | 200 OK Content-Length: 41483 Content-Type: text/html | clean |
http://www.door-center.ru/katalog/doors | 500 Internal Server Error Content-Length: 628 Content-Type: text/html | clean |
http://www.door-center.ru/test404page.js | 404 Not Found Content-Length: 296 Content-Type: text/html | clean |
http://www.door-center.ru/katalog/doors/volhovec | 500 Internal Server Error Content-Length: 628 Content-Type: text/html | clean |
http://www.door-center.ru/katalog/doors/dcraft | 500 Internal Server Error Content-Length: 628 Content-Type: text/html | clean |
http://www.door-center.ru/katalog/doors/krasnoderevwik | 500 Internal Server Error Content-Length: 628 Content-Type: text/html | clean |
http://www.door-center.ru/katalog/doors/vfd | 500 Internal Server Error Content-Length: 628 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: door-center.ru
Result:
GET / HTTP/1.1
Host: door-center.ru
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: door-center.ru
Referer: http://www.google.com/search?q=door-center.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: door-center.ru
Referer: http://www.google.com/search?q=door-center.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.