Malware Scanner report for olimpland.ru

Malicious/Suspicious/Total urls checked: 0/10/20

10 pages have suspicious code. See details below

Blacklists: OK

Malicious Redirects: OK

Malicious/Hidden/Total iFrames: 0/0/1

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Scanned pages/files

Request	Server response	Status
http://olimpland.ru/	HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 30 Mar 2014 22:13:34 GMT Location: http://www.olimpland.ru/ Server: nginx/1.4.1 Content-Length: 232 Content-Type: text/html; charset=iso-8859-1	clean
http://www.olimpland.ru/	200 OK Content-Length: 40132 Content-Type: text/html	suspicious
Suspicious code found <!--Rating@Mail.ru counter--> <script language="javascript"><!-- d=document;var a='';a+=';r='+escape(d.referrer);js=10;//--></script> <script language="javascript1.1"><!-- a+=';j='+navigator.javaEnabled();js=11;//--></script> <script language="javascript1.2"><!-- s=screen;a+=';s='+s.width+''+s.height; a+=';d='+(s.colorDepth?s.colorDepth:s.pixelDepth);js=12;//--></script> <script language="javascript1. ... 2653 bytes are skipped ...<a href='http://www.liveinternet.ru/click' "+ "target=_blank rel='nofollow'><img src='//counter.yadro.ru/hit?t44.1;r"+ escape(document.referrer)+((typeof(screen)=="undefined")?"": ";s"+screen.width+""+screen.height+"*"+(screen.colorDepth? screen.colorDepth:screen.pixelDepth))+";u"+escape(document.URL)+ ";"+Math.random()+ "' alt='' title='LiveInternet' "+ "border='0' width='31' height='31'><\/a>") //--></script><!--/LiveInternet-->
http://www.olimpland.ru/js/jquery-1.4.2.min.js	200 OK Content-Length: 72176 Content-Type: application/x-javascript	clean
http://olimpland.ru/js/cufon-yui.js	HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 30 Mar 2014 22:13:35 GMT Location: http://www.olimpland.ru/js/cufon-yui.js Server: nginx/1.4.1 Content-Length: 247 Content-Type: text/html; charset=iso-8859-1	clean
http://www.olimpland.ru/js/cufon-yui.js	200 OK Content-Length: 18257 Content-Type: application/x-javascript	clean
http://olimpland.ru/js/ag_helvetica_regular-cufon.js	HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 30 Mar 2014 22:13:35 GMT Location: http://www.olimpland.ru/js/ag_helvetica_regular-cufon.js Server: nginx/1.4.1 Content-Length: 264 Content-Type: text/html; charset=iso-8859-1	clean
http://www.olimpland.ru/js/ag_helvetica_regular-cufon.js	200 OK Content-Length: 82135 Content-Type: application/x-javascript	clean
http://olimpland.ru/js/scripts.js	HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 30 Mar 2014 22:13:36 GMT Location: http://www.olimpland.ru/js/scripts.js Server: nginx/1.4.1 Content-Length: 245 Content-Type: text/html; charset=iso-8859-1	clean
http://www.olimpland.ru/js/scripts.js	200 OK Content-Length: 11617 Content-Type: application/x-javascript	clean
http://olimpland.ru/?user_uid=eiapecsna2v4c08nmkfvaik7u2	HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 30 Mar 2014 22:13:36 GMT Location: http://www.olimpland.ru/?user_uid=eiapecsna2v4c08nmkfvaik7u2 Server: nginx/1.4.1 Content-Length: 268 Content-Type: text/html; charset=iso-8859-1	clean
http://www.olimpland.ru/?user_uid=eiapecsna2v4c08nmkfvaik7u2	200 OK Content-Length: 40203 Content-Type: text/html	suspicious
Suspicious code found <!--Rating@Mail.ru counter--> <script language="javascript"><!-- d=document;var a='';a+=';r='+escape(d.referrer);js=10;//--></script> <script language="javascript1.1"><!-- a+=';j='+navigator.javaEnabled();js=11;//--></script> <script language="javascript1.2"><!-- s=screen;a+=';s='+s.width+''+s.height; a+=';d='+(s.colorDepth?s.colorDepth:s.pixelDepth);js=12;//--></script> <script language="javascript1. ... 2653 bytes are skipped ...<a href='http://www.liveinternet.ru/click' "+ "target=_blank rel='nofollow'><img src='//counter.yadro.ru/hit?t44.1;r"+ escape(document.referrer)+((typeof(screen)=="undefined")?"": ";s"+screen.width+""+screen.height+"*"+(screen.colorDepth? screen.colorDepth:screen.pixelDepth))+";u"+escape(document.URL)+ ";"+Math.random()+ "' alt='' title='LiveInternet' "+ "border='0' width='31' height='31'><\/a>") //--></script><!--/LiveInternet-->
http://www.olimpland.ru/shema/	200 OK Content-Length: 26301 Content-Type: text/html	suspicious
Suspicious code found <!--Rating@Mail.ru counter--> <script language="javascript"><!-- d=document;var a='';a+=';r='+escape(d.referrer);js=10;//--></script> <script language="javascript1.1"><!-- a+=';j='+navigator.javaEnabled();js=11;//--></script> <script language="javascript1.2"><!-- s=screen;a+=';s='+s.width+''+s.height; a+=';d='+(s.colorDepth?s.colorDepth:s.pixelDepth);js=12;//--></script> <script language="javascript1. ... 2653 bytes are skipped ...<a href='http://www.liveinternet.ru/click' "+ "target=_blank rel='nofollow'><img src='//counter.yadro.ru/hit?t44.1;r"+ escape(document.referrer)+((typeof(screen)=="undefined")?"": ";s"+screen.width+""+screen.height+"*"+(screen.colorDepth? screen.colorDepth:screen.pixelDepth))+";u"+escape(document.URL)+ ";"+Math.random()+ "' alt='' title='LiveInternet' "+ "border='0' width='31' height='31'><\/a>") //--></script><!--/LiveInternet-->
http://www.olimpland.ru/js/jquery.media5.js	200 OK Content-Length: 1565 Content-Type: application/x-javascript	clean
http://www.olimpland.ru/?user_uid=jl6e2h55aectqo14ctq3hde3f0	200 OK Content-Length: 40203 Content-Type: text/html	suspicious
Suspicious code found <!--Rating@Mail.ru counter--> <script language="javascript"><!-- d=document;var a='';a+=';r='+escape(d.referrer);js=10;//--></script> <script language="javascript1.1"><!-- a+=';j='+navigator.javaEnabled();js=11;//--></script> <script language="javascript1.2"><!-- s=screen;a+=';s='+s.width+''+s.height; a+=';d='+(s.colorDepth?s.colorDepth:s.pixelDepth);js=12;//--></script> <script language="javascript1. ... 2653 bytes are skipped ...<a href='http://www.liveinternet.ru/click' "+ "target=_blank rel='nofollow'><img src='//counter.yadro.ru/hit?t44.1;r"+ escape(document.referrer)+((typeof(screen)=="undefined")?"": ";s"+screen.width+""+screen.height+"*"+(screen.colorDepth? screen.colorDepth:screen.pixelDepth))+";u"+escape(document.URL)+ ";"+Math.random()+ "' alt='' title='LiveInternet' "+ "border='0' width='31' height='31'><\/a>") //--></script><!--/LiveInternet-->
http://www.olimpland.ru/sitemap/	200 OK Content-Length: 33394 Content-Type: text/html	suspicious
Suspicious code found <!--Rating@Mail.ru counter--> <script language="javascript"><!-- d=document;var a='';a+=';r='+escape(d.referrer);js=10;//--></script> <script language="javascript1.1"><!-- a+=';j='+navigator.javaEnabled();js=11;//--></script> <script language="javascript1.2"><!-- s=screen;a+=';s='+s.width+''+s.height; a+=';d='+(s.colorDepth?s.colorDepth:s.pixelDepth);js=12;//--></script> <script language="javascript1. ... 2653 bytes are skipped ...<a href='http://www.liveinternet.ru/click' "+ "target=_blank rel='nofollow'><img src='//counter.yadro.ru/hit?t44.1;r"+ escape(document.referrer)+((typeof(screen)=="undefined")?"": ";s"+screen.width+""+screen.height+"*"+(screen.colorDepth? screen.colorDepth:screen.pixelDepth))+";u"+escape(document.URL)+ ";"+Math.random()+ "' alt='' title='LiveInternet' "+ "border='0' width='31' height='31'><\/a>") //--></script><!--/LiveInternet-->
http://www.olimpland.ru/?user_uid=dffmluqsala2hkkt139qakoi31	200 OK Content-Length: 40203 Content-Type: text/html	suspicious
Suspicious code found <!--Rating@Mail.ru counter--> <script language="javascript"><!-- d=document;var a='';a+=';r='+escape(d.referrer);js=10;//--></script> <script language="javascript1.1"><!-- a+=';j='+navigator.javaEnabled();js=11;//--></script> <script language="javascript1.2"><!-- s=screen;a+=';s='+s.width+''+s.height; a+=';d='+(s.colorDepth?s.colorDepth:s.pixelDepth);js=12;//--></script> <script language="javascript1. ... 2653 bytes are skipped ...<a href='http://www.liveinternet.ru/click' "+ "target=_blank rel='nofollow'><img src='//counter.yadro.ru/hit?t44.1;r"+ escape(document.referrer)+((typeof(screen)=="undefined")?"": ";s"+screen.width+""+screen.height+"*"+(screen.colorDepth? screen.colorDepth:screen.pixelDepth))+";u"+escape(document.URL)+ ";"+Math.random()+ "' alt='' title='LiveInternet' "+ "border='0' width='31' height='31'><\/a>") //--></script><!--/LiveInternet-->
http://www.olimpland.ru/about/benefits/	200 OK Content-Length: 31183 Content-Type: text/html	suspicious
Suspicious code found <!--Rating@Mail.ru counter--> <script language="javascript"><!-- d=document;var a='';a+=';r='+escape(d.referrer);js=10;//--></script> <script language="javascript1.1"><!-- a+=';j='+navigator.javaEnabled();js=11;//--></script> <script language="javascript1.2"><!-- s=screen;a+=';s='+s.width+''+s.height; a+=';d='+(s.colorDepth?s.colorDepth:s.pixelDepth);js=12;//--></script> <script language="javascript1. ... 2653 bytes are skipped ...<a href='http://www.liveinternet.ru/click' "+ "target=_blank rel='nofollow'><img src='//counter.yadro.ru/hit?t44.1;r"+ escape(document.referrer)+((typeof(screen)=="undefined")?"": ";s"+screen.width+""+screen.height+"*"+(screen.colorDepth? screen.colorDepth:screen.pixelDepth))+";u"+escape(document.URL)+ ";"+Math.random()+ "' alt='' title='LiveInternet' "+ "border='0' width='31' height='31'><\/a>") //--></script><!--/LiveInternet-->
http://www.olimpland.ru/?user_uid=qb9nbt9ihslekjr2volgip1so6	200 OK Content-Length: 40203 Content-Type: text/html	suspicious
Suspicious code found <!--Rating@Mail.ru counter--> <script language="javascript"><!-- d=document;var a='';a+=';r='+escape(d.referrer);js=10;//--></script> <script language="javascript1.1"><!-- a+=';j='+navigator.javaEnabled();js=11;//--></script> <script language="javascript1.2"><!-- s=screen;a+=';s='+s.width+''+s.height; a+=';d='+(s.colorDepth?s.colorDepth:s.pixelDepth);js=12;//--></script> <script language="javascript1. ... 2653 bytes are skipped ...<a href='http://www.liveinternet.ru/click' "+ "target=_blank rel='nofollow'><img src='//counter.yadro.ru/hit?t44.1;r"+ escape(document.referrer)+((typeof(screen)=="undefined")?"": ";s"+screen.width+""+screen.height+"*"+(screen.colorDepth? screen.colorDepth:screen.pixelDepth))+";u"+escape(document.URL)+ ";"+Math.random()+ "' alt='' title='LiveInternet' "+ "border='0' width='31' height='31'><\/a>") //--></script><!--/LiveInternet-->
http://www.olimpland.ru/about/news/	200 OK Content-Length: 41647 Content-Type: text/html	suspicious
Suspicious code found <!--Rating@Mail.ru counter--> <script language="javascript"><!-- d=document;var a='';a+=';r='+escape(d.referrer);js=10;//--></script> <script language="javascript1.1"><!-- a+=';j='+navigator.javaEnabled();js=11;//--></script> <script language="javascript1.2"><!-- s=screen;a+=';s='+s.width+''+s.height; a+=';d='+(s.colorDepth?s.colorDepth:s.pixelDepth);js=12;//--></script> <script language="javascript1. ... 2653 bytes are skipped ...<a href='http://www.liveinternet.ru/click' "+ "target=_blank rel='nofollow'><img src='//counter.yadro.ru/hit?t44.1;r"+ escape(document.referrer)+((typeof(screen)=="undefined")?"": ";s"+screen.width+""+screen.height+"*"+(screen.colorDepth? screen.colorDepth:screen.pixelDepth))+";u"+escape(document.URL)+ ";"+Math.random()+ "' alt='' title='LiveInternet' "+ "border='0' width='31' height='31'><\/a>") //--></script><!--/LiveInternet-->
http://www.olimpland.ru/?user_uid=shcrtae9q4r1mldlvrhti33tb6	200 OK Content-Length: 40203 Content-Type: text/html	suspicious
Suspicious code found <!--Rating@Mail.ru counter--> <script language="javascript"><!-- d=document;var a='';a+=';r='+escape(d.referrer);js=10;//--></script> <script language="javascript1.1"><!-- a+=';j='+navigator.javaEnabled();js=11;//--></script> <script language="javascript1.2"><!-- s=screen;a+=';s='+s.width+''+s.height; a+=';d='+(s.colorDepth?s.colorDepth:s.pixelDepth);js=12;//--></script> <script language="javascript1. ... 2653 bytes are skipped ...<a href='http://www.liveinternet.ru/click' "+ "target=_blank rel='nofollow'><img src='//counter.yadro.ru/hit?t44.1;r"+ escape(document.referrer)+((typeof(screen)=="undefined")?"": ";s"+screen.width+""+screen.height+"*"+(screen.colorDepth? screen.colorDepth:screen.pixelDepth))+";u"+escape(document.URL)+ ";"+Math.random()+ "' alt='' title='LiveInternet' "+ "border='0' width='31' height='31'><\/a>") //--></script><!--/LiveInternet-->

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: olimpland.ru

Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sun, 30 Mar 2014 22:13:34 GMT
Location: http://www.olimpland.ru/
Server: nginx/1.4.1
Content-Length: 232
Content-Type: text/html; charset=iso-8859-1

...232 bytes of data.

Second query (visit from search engine):
GET / HTTP/1.1
Host: olimpland.ru
Referer: http://www.google.com/search?q=olimpland.ru

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=olimpland.ru

Result: This site is not currently listed as suspicious.

Query: http://yandex.com/infected?l10n=en&url=http://olimpland.ru/

Result: olimpland.ru is not infected or malware details are not published yet.

Recently found suspicious websites

Malware Scanner report for olimpland.ru

Malware & Hack Repair

Website Hack Insurance

Scanned pages/files

Malicious Redirects

Safe Browsing / Blacklists

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools