Scanned pages/files
Request | Server response | Status |
http://help-html-css.narod.ru/webcolor.html | 200 OK Content-Length: 44699 Content-Type: text/html | clean |
http://help-html-css.narod.ru/abnl/?adsdata=f^0UJPDA1apRkjVhGjavNMVI4VzpFDnF9q5Wfg5XFVjrk0Ou9zCytn1zGYsVrpCnW0;auEAHSTuYKh3;ugY^diMQnRImS60wQayFJHDhVHVJKq2FO2EQjg95LJfC5u^;XtCNNwnrkRXnTGC1ycRjbXcyJ7uJBwio | 200 OK Content-Length: 2789 Content-Type: application/javascript | clean |
http://help-html-css.narod.ru/index.html | 200 OK Content-Length: 14184 Content-Type: text/html | clean |
http://help-html-css.narod.ru/abnl/?adsdata=DINIWp7E6hmL^k9lk^!Bw8xd;9KIj8X8XAdrs5u7qKtbwSyQV0QcgO;StZdhApqG3vOb71tSpd1k3NrhU35Ofn7Ke7nCFDPyEPZYntJwGfPDzZmTFFZb3ED!1FGw1fhKmY6WElXOk0dKx2LhwNdyDy^y^Wu5 | 200 OK Content-Length: 2761 Content-Type: application/javascript | clean |
http://help-html-css.narod.ru/jquery.js | 200 OK Content-Length: 57254 Content-Type: text/javascript | clean |
http://help-html-css.narod.ru/slid.js | 200 OK Content-Length: 1292 Content-Type: text/javascript | clean |
http://help-html-css.narod.ru/ajax/ok2.js | 200 OK Content-Length: 6584 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function NewOdnaknopka2() {
this.domain=location.href+'/'; this.domain=this.domain.substr(this.domain.indexOf('://')+3); this.domain=this.domain.substr(0,this.domain.indexOf('/')); this.location=false; this.selection=function() { var sel; if (window.getSelection) sel=window.getSelection(); else if (document.selection) sel=document.selection.createRange(); else sel=''; if (sel.text) sel=sel.text; return encodeURIComponent(sel); } th } } odnaknopka2=new NewOdnaknopka2(); odnaknopka2.init(); Antivirus reports:
| ||
http://help-html-css.narod.ru/guestlink.js | 200 OK Content-Length: 98 Content-Type: text/javascript | clean |
http://help-html-css.narod.ru/my-temp.js | 200 OK Content-Length: 548 Content-Type: text/javascript | clean |
http://help-html-css.narod.ru/link-templ.js | 404 Not Found Content-Length: 6869 Content-Type: text/html | clean |
http://help-html-css.narod.ru/ | 200 OK Content-Length: 14184 Content-Type: text/html | clean |
http://help-html-css.narod.ru/abnl/?adsdata=2SY^zl5IGQkrVvaJDgUi7xCYibAwJEUrWsOZjR0SuFTt6pa9Al3Xf8cdIMf2uvMv8gLDtThc9tycP3SuPrzK;F8n0deSzij94vGK^mDIYAqXwXxIb2w8ltu8zYeyWeR3lFirNXsiUuvuBfu81b7G2ZNTLx0o | 200 OK Content-Length: 2757 Content-Type: application/javascript | clean |
http://help-html-css.narod.ru/mylink.js | 200 OK Content-Length: 156 Content-Type: text/javascript | clean |
http://help-html-css.narod.ru/table.html | 200 OK Content-Length: 17972 Content-Type: text/html | clean |
http://help-html-css.narod.ru/abnl/?adsdata=mvJ8NH97pOIpNWFT9AWhndTt9TVQyK8dLa!gStKIlpiA8fGwvm^72BCZwFDhl50cAfQVg522ahNP5tck5dH5RFGudZkllcxnwz9YGlRrlEiKmN!TnsF9PMGKzXRfrWW0EK!AT^YbnZFNpHAaXdOAFlZuZsMNv8cJ | 200 OK Content-Length: 2769 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: help-html-css.narod.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 18 Dec 2014 12:55:41 GMT
Server: uServ/3.2.2
Content-Type: text/html; charset=UTF-8
GET / HTTP/1.1
Host: help-html-css.narod.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 18 Dec 2014 12:55:41 GMT
Server: uServ/3.2.2
Content-Type: text/html; charset=UTF-8
Second query (visit from search engine):
GET / HTTP/1.1
Host: help-html-css.narod.ru
Referer: http://www.google.com/search?q=help-html-css.narod.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: help-html-css.narod.ru
Referer: http://www.google.com/search?q=help-html-css.narod.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=help-html-css.narod.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://help-html-css.narod.ru/
Result: help-html-css.narod.ru is not infected or malware details are not published yet.
Result: help-html-css.narod.ru is not infected or malware details are not published yet.