Scanned pages/files
| Request | Server response | Status |
http://nbik.ru/ | 200 OK Content-Length: 15511 Content-Type: text/html | suspicious |
Suspicious code found <span style="float: left;"> <!--LiveInternet counter--><script type="text/javascript">document.write("<a href='http://www.liveinternet.ru/click' style='border: none;' target=_blank><img src='//counter.yadro.ru/hit?t26.6;r" + escape(document.referrer) + ((typeof(screen)=="undefined")?"":";s"+screen.width+"*"+screen.height+"*"+(screen.colorDepth?screen.colorDepth:screen.pixelDepth)) + ";u" + escape(document.URL) + ";" + Math.random() + "' border=0 width=88 height=1 <noscript><a target="_top" href="http://top.mail.ru/jump?from=1015114"> <img src="http://dd.c7.bf.a0.top.mail.ru/counter?js=na;id=1015114;t=181" height="15" width="88" border="0" alt="Ðåéòèíã@Mail.ru"></a></noscript> <script language="javascript" type="text/javascript"><!-- if(11<js)d.write('--'+'>');//--></script> <!--// Rating@Mail.ru counter--> </span> | ||
https://ajax.googleapis.com/ajax/libs/jquery/1.4.3/jquery.min.js | 200 OK Content-Length: 77746 Content-Type: text/javascript | clean |
http://nbik.ru/inc/main.js | 200 OK Content-Length: 0 Content-Type: application/javascript | clean |
http://nbik.ru/inc/js/google_click.js | 200 OK Content-Length: 830 Content-Type: application/javascript | clean |
http://nbik.ru/inc/js/ajax.js | 200 OK Content-Length: 6757 Content-Type: application/javascript | clean |
http://live01.liveoperator.ru:443/chat/cl.php?site=11306 | 500 Can't connect to live01.liveoperator.ru:443 (Bad hostname) Content-Length: 177 Content-Type: text/plain | clean |
http://live01.liveoperator.ru:443/test404page.js | 500 Can't connect to live01.liveoperator.ru:443 (Bad hostname) Content-Length: 177 Content-Type: text/plain | clean |
http://nbik.ru//mc.yandex.ru/metrika/watch.js/ | HTTP/1.1 302 Moved Temporarily Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 17 Sep 2014 22:36:27 GMT Pragma: no-cache Location: / Server: nginx/0.8.55 Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=2aa077eeabf3f7219d25ad71f7868bfc; path=/ X-Powered-By: PHP/5.2.17 | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: nbik.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 17 Sep 2014 22:36:25 GMT
Pragma: no-cache
Server: nginx/0.8.55
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=2d9c9758b7bbae6aa75e18ef6f511289; path=/
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: nbik.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 17 Sep 2014 22:36:25 GMT
Pragma: no-cache
Server: nginx/0.8.55
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=2d9c9758b7bbae6aa75e18ef6f511289; path=/
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: nbik.ru
Referer: http://www.google.com/search?q=nbik.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: nbik.ru
Referer: http://www.google.com/search?q=nbik.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=nbik.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://nbik.ru/
Result: nbik.ru is not infected or malware details are not published yet.
Result: nbik.ru is not infected or malware details are not published yet.