Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pdarus.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://pdarus.ru/ | 200 OK Content-Length: 38537 Content-Type: text/html | suspicious |
Suspicious code found <div class="verticalBanner"><div id="rontar_adplace_5468"></div>
<script type="text/javascript"><!-- (function (w, d, n) { var ri = { rontar_site_id: 1742, rontar_adplace_id: 5468, rontar_place_id: 'rontar_adplace_5468', adCode_rootUrl: 'http://adcode.rontar.com/' }; w[n] = w[n] || []; w[n].push( ri ); var a = document.createElement('script'); a.type = 'text/javascript'; a.async = true; a.src = 'http://adcode.rontar.com/rontar2_async.js?rnd=' + Math.round(Math.random() * 100000); var b = document.getElementById('rontar_adplace_' + ri.rontar_adplace_id); b.parentNode.insertBefore(a, b); })(window, document, 'rontar_ads'); //--></script></div> | ||
http://pdalife.ru/js/jquery.min.js | 200 OK Content-Length: 93868 Content-Type: application/x-javascript | clean |
http://pdalife.ru/js/chosen.jquery.min.js?15005c162b95cdc5604ff4f5eb700726 | 200 OK Content-Length: 21975 Content-Type: application/x-javascript | clean |
http://pdalife.ru/js/libs.js?0b20e7bd052ca06c0f18464322165db9 | 200 OK Content-Length: 66906 Content-Type: application/x-javascript | clean |
http://pdalife.ru/js/common.js?15005c162b95cdc5604ff4f5eb700726 | 200 OK Content-Length: 63694 Content-Type: application/x-javascript | clean |
http://pdarus.ru/content/windows/ | 200 OK Content-Length: 46661 Content-Type: text/html | suspicious |
Suspicious code found <div class="verticalBanner"><div id="rontar_adplace_5468"></div>
<script type="text/javascript"><!-- (function (w, d, n) { var ri = { rontar_site_id: 1742, rontar_adplace_id: 5468, rontar_place_id: 'rontar_adplace_5468', adCode_rootUrl: 'http://adcode.rontar.com/' }; w[n] = w[n] || []; w[n].push( ri ); var a = document.createElement('script'); a.type = 'text/javascript'; a.async = true; a.src = 'http://adcode.rontar.com/rontar2_async.js?rnd=' + Math.round(Math.random() * 100000); var b = document.getElementById('rontar_adplace_' + ri.rontar_adplace_id); b.parentNode.insertBefore(a, b); })(window, document, 'rontar_ads'); //--></script></div> | ||
http://pdarus.ru/content/android/ | 200 OK Content-Length: 47678 Content-Type: text/html | suspicious |
Suspicious code found <div class="verticalBanner"><div id="rontar_adplace_5468"></div>
<script type="text/javascript"><!-- (function (w, d, n) { var ri = { rontar_site_id: 1742, rontar_adplace_id: 5468, rontar_place_id: 'rontar_adplace_5468', adCode_rootUrl: 'http://adcode.rontar.com/' }; w[n] = w[n] || []; w[n].push( ri ); var a = document.createElement('script'); a.type = 'text/javascript'; a.async = true; a.src = 'http://adcode.rontar.com/rontar2_async.js?rnd=' + Math.round(Math.random() * 100000); var b = document.getElementById('rontar_adplace_' + ri.rontar_adplace_id); b.parentNode.insertBefore(a, b); })(window, document, 'rontar_ads'); //--></script></div> | ||
http://pdarus.ru/content/bada/ | 200 OK Content-Length: 45627 Content-Type: text/html | suspicious |
Suspicious code found <div class="verticalBanner"><div id="rontar_adplace_5468"></div>
<script type="text/javascript"><!-- (function (w, d, n) { var ri = { rontar_site_id: 1742, rontar_adplace_id: 5468, rontar_place_id: 'rontar_adplace_5468', adCode_rootUrl: 'http://adcode.rontar.com/' }; w[n] = w[n] || []; w[n].push( ri ); var a = document.createElement('script'); a.type = 'text/javascript'; a.async = true; a.src = 'http://adcode.rontar.com/rontar2_async.js?rnd=' + Math.round(Math.random() * 100000); var b = document.getElementById('rontar_adplace_' + ri.rontar_adplace_id); b.parentNode.insertBefore(a, b); })(window, document, 'rontar_ads'); //--></script></div> | ||
http://pdarus.ru/content/symbian/ | 200 OK Content-Length: 46216 Content-Type: text/html | suspicious |
Suspicious code found <div class="verticalBanner"><div id="rontar_adplace_5468"></div>
<script type="text/javascript"><!-- (function (w, d, n) { var ri = { rontar_site_id: 1742, rontar_adplace_id: 5468, rontar_place_id: 'rontar_adplace_5468', adCode_rootUrl: 'http://adcode.rontar.com/' }; w[n] = w[n] || []; w[n].push( ri ); var a = document.createElement('script'); a.type = 'text/javascript'; a.async = true; a.src = 'http://adcode.rontar.com/rontar2_async.js?rnd=' + Math.round(Math.random() * 100000); var b = document.getElementById('rontar_adplace_' + ri.rontar_adplace_id); b.parentNode.insertBefore(a, b); })(window, document, 'rontar_ads'); //--></script></div> | ||
http://pdarus.ru/content/system/O_proekte.html | 200 OK Content-Length: 22526 Content-Type: text/html | suspicious |
Suspicious code found <div class="verticalBanner"><div id="rontar_adplace_5468"></div>
<script type="text/javascript"><!-- (function (w, d, n) { var ri = { rontar_site_id: 1742, rontar_adplace_id: 5468, rontar_place_id: 'rontar_adplace_5468', adCode_rootUrl: 'http://adcode.rontar.com/' }; w[n] = w[n] || []; w[n].push( ri ); var a = document.createElement('script'); a.type = 'text/javascript'; a.async = true; a.src = 'http://adcode.rontar.com/rontar2_async.js?rnd=' + Math.round(Math.random() * 100000); var b = document.getElementById('rontar_adplace_' + ri.rontar_adplace_id); b.parentNode.insertBefore(a, b); })(window, document, 'rontar_ads'); //--></script></div> | ||
http://pdarus.ru/content/news/ | 200 OK Content-Length: 18707 Content-Type: text/html | suspicious |
Suspicious code found <div class="verticalBanner"><div id="rontar_adplace_5468"></div>
<script type="text/javascript"><!-- (function (w, d, n) { var ri = { rontar_site_id: 1742, rontar_adplace_id: 5468, rontar_place_id: 'rontar_adplace_5468', adCode_rootUrl: 'http://adcode.rontar.com/' }; w[n] = w[n] || []; w[n].push( ri ); var a = document.createElement('script'); a.type = 'text/javascript'; a.async = true; a.src = 'http://adcode.rontar.com/rontar2_async.js?rnd=' + Math.round(Math.random() * 100000); var b = document.getElementById('rontar_adplace_' + ri.rontar_adplace_id); b.parentNode.insertBefore(a, b); })(window, document, 'rontar_ads'); //--></script></div> | ||
http://pdarus.ru/content/registration/ | 200 OK Content-Length: 22176 Content-Type: text/html | suspicious |
Suspicious code found <div class="verticalBanner"><div id="rontar_adplace_5468"></div>
<script type="text/javascript"><!-- (function (w, d, n) { var ri = { rontar_site_id: 1742, rontar_adplace_id: 5468, rontar_place_id: 'rontar_adplace_5468', adCode_rootUrl: 'http://adcode.rontar.com/' }; w[n] = w[n] || []; w[n].push( ri ); var a = document.createElement('script'); a.type = 'text/javascript'; a.async = true; a.src = 'http://adcode.rontar.com/rontar2_async.js?rnd=' + Math.round(Math.random() * 100000); var b = document.getElementById('rontar_adplace_' + ri.rontar_adplace_id); b.parentNode.insertBefore(a, b); })(window, document, 'rontar_ads'); //--></script></div> | ||
http://pdarus.ru/content/blueprint3d-hd-android-a5289.html | 200 OK Content-Length: 83557 Content-Type: text/html | suspicious |
Suspicious code found <div class="verticalBanner"><div id="rontar_adplace_5468"></div>
<script type="text/javascript"><!-- (function (w, d, n) { var ri = { rontar_site_id: 1742, rontar_adplace_id: 5468, rontar_place_id: 'rontar_adplace_5468', adCode_rootUrl: 'http://adcode.rontar.com/' }; w[n] = w[n] || []; w[n].push( ri ); var a = document.createElement('script'); a.type = 'text/javascript'; a.async = true; a.src = 'http://adcode.rontar.com/rontar2_async.js?rnd=' + Math.round(Math.random() * 100000); var b = document.getElementById('rontar_adplace_' + ri.rontar_adplace_id); b.parentNode.insertBefore(a, b); })(window, document, 'rontar_ads'); //--></script></div> | ||
http://pdalife.ru/share42/share42.js | 200 OK Content-Length: 2963 Content-Type: application/x-javascript | clean |
http://pdarus.ru/content/ | 200 OK Content-Length: 38537 Content-Type: text/html | suspicious |
Suspicious code found <div class="verticalBanner"><div id="rontar_adplace_5468"></div>
<script type="text/javascript"><!-- (function (w, d, n) { var ri = { rontar_site_id: 1742, rontar_adplace_id: 5468, rontar_place_id: 'rontar_adplace_5468', adCode_rootUrl: 'http://adcode.rontar.com/' }; w[n] = w[n] || []; w[n].push( ri ); var a = document.createElement('script'); a.type = 'text/javascript'; a.async = true; a.src = 'http://adcode.rontar.com/rontar2_async.js?rnd=' + Math.round(Math.random() * 100000); var b = document.getElementById('rontar_adplace_' + ri.rontar_adplace_id); b.parentNode.insertBefore(a, b); })(window, document, 'rontar_ads'); //--></script></div> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: pdarus.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 05 Sep 2014 09:18:29 GMT
Server: Apache/2.2.16 (Debian)
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: user_id=2773830; expires=Sat, 05-Sep-2015 09:18:29 GMT; path=/
X-Powered-By: PHP/5.3.3-7+squeeze18
GET / HTTP/1.1
Host: pdarus.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 05 Sep 2014 09:18:29 GMT
Server: Apache/2.2.16 (Debian)
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: user_id=2773830; expires=Sat, 05-Sep-2015 09:18:29 GMT; path=/
X-Powered-By: PHP/5.3.3-7+squeeze18
Second query (visit from search engine):
GET / HTTP/1.1
Host: pdarus.ru
Referer: http://www.google.com/search?q=pdarus.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: pdarus.ru
Referer: http://www.google.com/search?q=pdarus.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.