Scanned pages/files
Request | Server response | Status |
http://ishemrabotu.ru/ | 200 OK Content-Length: 53718 Content-Type: text/html | clean |
http://ishemrabotu.ru/js/jquery-1.6.1.min.js | 200 OK Content-Length: 91342 Content-Type: application/x-javascript | clean |
http://ishemrabotu.ru/js/main.js | 200 OK Content-Length: 905 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function changeCity() {
var selcurcity = $('#icityselect option:selected').val(); if(selcurcity == "other") { $('#cityinput').show(); $('#icity').val("ÐведиÑе название гоÑода"); } else { $('#cityinput').hide(); $('#icity').val(selcurcity); } } function selectCity(city) { if(!city) { city = $('#icity').val(); $('#wselectcity').hide(); } $('#current_city').text(city $.get( 'actions/json_city_stat.php', 'city=' + city, function(data){ var jdata = jQuery.parseJSON(data); if(jdata) { $('#cs_total_vacancys').text(jdata.total_vacancys); $('#cs_total_companys').text(jdata.total_companys); $('#cs_am_price').text(jdata.am_price); $('#cs_vip_vacancys').text(jdata.vip_vacancys); $('#cs_vip_companys').text(jdata.vip_companys); } } ); } Antivirus reports:
| ||
http://ishemrabotu.ru/js/jpfilmstrip.js | 200 OK Content-Length: 3170 Content-Type: application/x-javascript | clean |
http://ishemrabotu.ru/?p=search | 200 OK Content-Length: 208731 Content-Type: text/html | clean |
http://ishemrabotu.ru/?p=vip_companys | 200 OK Content-Length: 24446 Content-Type: text/html | clean |
http://ishemrabotu.ru/?p=static&sp=about | 200 OK Content-Length: 23854 Content-Type: text/html | clean |
http://ishemrabotu.ru/?p=static&sp=contacts | 200 OK Content-Length: 19515 Content-Type: text/html | clean |
http://ishemrabotu.ru/sysop.php?act=form&sp=registration | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 26 Feb 2015 02:14:16 GMT Pragma: no-cache Location: /?error=reg-close Server: nginx/1.0.14 Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=79kt8k3ggrp5dv2kl8d6gb1mu2; path=/ Set-Cookie: jc_country=lt; expires=Thu, 26-Feb-2015 05:14:16 GMT; path=/ Set-Cookie: jc_counted=1; expires=Thu, 26-Feb-2015 05:14:16 GMT; path=/ Set-Cookie: aaaaa=1;path=/ X-Powered-By: PHP/5.2.17 | clean |
http://ishemrabotu.ru/?error=reg-close | 200 OK Content-Length: 53718 Content-Type: text/html | clean |
http://ishemrabotu.ru/index.php?p=vacancy_view&vid=14 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 26 Feb 2015 02:14:16 GMT Pragma: no-cache Location: /sysop.php?act=form&sp=registration Server: nginx/1.0.14 Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=7k7bransmrqbtkso4bb2630oj0; path=/ Set-Cookie: aaaaa=1;path=/ X-Powered-By: PHP/5.2.17 | clean |
http://ishemrabotu.ru/test404page.js | 404 Not Found Content-Length: 571 Content-Type: text/html | clean |
http://ishemrabotu.ru/index.php?p=vacancy_view&vid=22 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 26 Feb 2015 02:14:17 GMT Pragma: no-cache Location: /sysop.php?act=form&sp=registration Server: nginx/1.0.14 Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=jehiqlrhj24e9tcefvuviso3t1; path=/ Set-Cookie: aaaaa=1;path=/ X-Powered-By: PHP/5.2.17 | clean |
http://ishemrabotu.ru/index.php?p=vacancy_view&vid=23 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 26 Feb 2015 02:14:17 GMT Pragma: no-cache Location: /sysop.php?act=form&sp=registration Server: nginx/1.0.14 Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=j2ll49kukkuq7rp3d5gcekdvh7; path=/ Set-Cookie: aaaaa=1;path=/ X-Powered-By: PHP/5.2.17 | clean |
http://ishemrabotu.ru/index.php?p=vacancy_view&vid=24 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 26 Feb 2015 02:14:17 GMT Pragma: no-cache Location: /sysop.php?act=form&sp=registration Server: nginx/1.0.14 Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=uj3ld0f8ailmjt2u3usqai4802; path=/ Set-Cookie: aaaaa=1;path=/ X-Powered-By: PHP/5.2.17 | clean |
http://ishemrabotu.ru/index.php?p=vacancy_view&vid=25 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 26 Feb 2015 02:14:17 GMT Pragma: no-cache Location: /sysop.php?act=form&sp=registration Server: nginx/1.0.14 Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=2lmib90r0qio71rclsg06fqu61; path=/ Set-Cookie: aaaaa=1;path=/ X-Powered-By: PHP/5.2.17 | clean |
http://ishemrabotu.ru/index.php?p=vacancy_view&vid=74102 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 26 Feb 2015 02:14:17 GMT Pragma: no-cache Location: /sysop.php?act=form&sp=registration Server: nginx/1.0.14 Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=ol49m3gptchb6v39p1tqo78144; path=/ Set-Cookie: aaaaa=1;path=/ X-Powered-By: PHP/5.2.17 | clean |
http://ishemrabotu.ru/index.php?p=vacancy_view&vid=74098 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 26 Feb 2015 02:14:17 GMT Pragma: no-cache Location: /sysop.php?act=form&sp=registration Server: nginx/1.0.14 Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=rs67lf4ot89apv23niqv0bfbs6; path=/ Set-Cookie: aaaaa=1;path=/ X-Powered-By: PHP/5.2.17 | clean |
http://ishemrabotu.ru/index.php?p=vacancy_view&vid=74097 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 26 Feb 2015 02:14:17 GMT Pragma: no-cache Location: /sysop.php?act=form&sp=registration Server: nginx/1.0.14 Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=9f92kb7o67lbgh758dqvhub0k2; path=/ Set-Cookie: aaaaa=1;path=/ X-Powered-By: PHP/5.2.17 | clean |
http://ishemrabotu.ru/index.php?p=vacancy_view&vid=74077 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 26 Feb 2015 02:14:17 GMT Pragma: no-cache Location: /sysop.php?act=form&sp=registration Server: nginx/1.0.14 Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=gaapi4ug7887j47mij8qvupkt6; path=/ Set-Cookie: aaaaa=1;path=/ X-Powered-By: PHP/5.2.17 | clean |
http://ishemrabotu.ru/index.php?p=vacancy_view&vid=74074 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 26 Feb 2015 02:14:17 GMT Pragma: no-cache Location: /sysop.php?act=form&sp=registration Server: nginx/1.0.14 Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=0beh8384n7a013gk37fi0pcdf5; path=/ Set-Cookie: aaaaa=1;path=/ X-Powered-By: PHP/5.2.17 | clean |
http://ishemrabotu.ru/sysop.php?act=form&sp=login | 200 OK Content-Length: 30371 Content-Type: text/html | clean |
http://ishemrabotu.ru/tpl/elitrabota.ru/js/swfobject.js | 200 OK Content-Length: 6088 Content-Type: application/x-javascript | clean |
http://ishemrabotu.ru/tpl/elitrabota.ru/js/jquery.cj-simple-slideshow.js | 200 OK Content-Length: 8163 Content-Type: application/x-javascript | clean |
http://ishemrabotu.ru/index.php | 200 OK Content-Length: 53718 Content-Type: text/html | clean |
http://ishemrabotu.ru/sysop.php?act=page&sp=mt_rools | 200 OK Content-Length: 52063 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ishemrabotu.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 26 Feb 2015 02:14:14 GMT
Pragma: no-cache
Server: nginx/1.0.14
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=o3u3hpakvskp6pnpvgseh50mq7; path=/
Set-Cookie: jc_country=lt; expires=Thu, 26-Feb-2015 05:14:14 GMT; path=/
Set-Cookie: jc_counted=1; expires=Thu, 26-Feb-2015 05:14:14 GMT; path=/
Set-Cookie: aaaaa=1;path=/
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: ishemrabotu.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 26 Feb 2015 02:14:14 GMT
Pragma: no-cache
Server: nginx/1.0.14
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=o3u3hpakvskp6pnpvgseh50mq7; path=/
Set-Cookie: jc_country=lt; expires=Thu, 26-Feb-2015 05:14:14 GMT; path=/
Set-Cookie: jc_counted=1; expires=Thu, 26-Feb-2015 05:14:14 GMT; path=/
Set-Cookie: aaaaa=1;path=/
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: ishemrabotu.ru
Referer: http://www.google.com/search?q=ishemrabotu.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ishemrabotu.ru
Referer: http://www.google.com/search?q=ishemrabotu.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ishemrabotu.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ishemrabotu.ru/
Result: ishemrabotu.ru is not infected or malware details are not published yet.
Result: ishemrabotu.ru is not infected or malware details are not published yet.