Scanned pages/files
Request | Server response | Status |
http://opt-granit.ru/ | 200 OK Content-Length: 20728 Content-Type: text/html | clean |
http://opt-granit.ru/img/java/fukony.js | 200 OK Content-Length: 112397 Content-Type: application/x-javascript | clean |
http://opt-granit.ru/catalog/catalog.html | 200 OK Content-Length: 10602 Content-Type: text/html | clean |
http://opt-granit.ru/catalog/01a.shtml | 200 OK Content-Length: 11943 Content-Type: text/html | clean |
http://opt-granit.ru/js/mootools.svn.js | 200 OK Content-Length: 183659 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var MooTools = { version: '1.11' }; function $defined(obj){ return (obj != undefined); }; function $type(obj){ if (!$defined(obj)) return false; if (obj.htmlElement) return 'element'; var type = typeof obj; if (type == 'object' && obj.nodeName){ switch(obj.nodeType){ case 1: return 'element'; case 3: return (/\S/).test(obj.nodeValue) ? 'textnode' : 'whitespace'; } } if (type == 'object' || type == 'functio this.elements.each(function(el, i){ obj[i] = {}; var hide = (i != index) || (this.options.alwaysHide && (el.offsetHeight > 0)); this.fireEvent(hide ? 'onBackground' : 'onActive', [this.togglers[i], el]); for (var fx in this.effects) obj[i][fx] = hide ? 0 : el[this.effects[fx]]; }, this); return this.start(obj); }, showThisHideOpen: function(index){return this.display(index);} }); Fx.Accordion = Accordion; Antivirus reports:
| ||
http://opt-granit.ru/ostatok.html | 200 OK Content-Length: 64018 Content-Type: text/html | clean |
http://opt-granit.ru/index.html | 200 OK Content-Length: 20728 Content-Type: text/html | clean |
http://opt-granit.ru/karelia-granit.html | 200 OK Content-Length: 7278 Content-Type: text/html | clean |
http://opt-granit.ru/contacts.html | 200 OK Content-Length: 9873 Content-Type: text/html | clean |
http://opt-granit.ru/catalog/07.shtml | 200 OK Content-Length: 11953 Content-Type: text/html | clean |
http://opt-granit.ru/catalog/01b.shtml | 200 OK Content-Length: 11956 Content-Type: text/html | clean |
http://opt-granit.ru/catalog/02.shtml | 200 OK Content-Length: 11965 Content-Type: text/html | clean |
http://opt-granit.ru/catalog/03a.shtml | 200 OK Content-Length: 11934 Content-Type: text/html | clean |
http://opt-granit.ru/catalog/03b.shtml | 200 OK Content-Length: 11934 Content-Type: text/html | clean |
http://opt-granit.ru/catalog/04.shtml | 200 OK Content-Length: 11926 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: opt-granit.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 16 Jun 2015 13:02:47 GMT
Server: nginx/1.1.19
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.3.10-1ubuntu3.8
GET / HTTP/1.1
Host: opt-granit.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 16 Jun 2015 13:02:47 GMT
Server: nginx/1.1.19
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.3.10-1ubuntu3.8
Second query (visit from search engine):
GET / HTTP/1.1
Host: opt-granit.ru
Referer: http://www.google.com/search?q=opt-granit.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: opt-granit.ru
Referer: http://www.google.com/search?q=opt-granit.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=opt-granit.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://opt-granit.ru/
Result: opt-granit.ru is not infected or malware details are not published yet.
Result: opt-granit.ru is not infected or malware details are not published yet.