Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=polozovs.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://polozovs.com/ | 200 OK Content-Length: 50388 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.6/jquery.min.js?ver=3.5.1 | 200 OK Content-Length: 91668 Content-Type: text/javascript | clean |
http://polozovs.com/wp-content/themes/cooperatenewwpthemes/lib/js/superfish.js?ver=3.5.1 | 200 OK Content-Length: 3714 Content-Type: application/javascript | clean |
http://polozovs.com/wp-content/plugins/wp-media-player/scripts/microsoftajax.js?ver=3.5.1 | 200 OK Content-Length: 83812 Content-Type: application/javascript | clean |
http://polozovs.com/wp-content/plugins/wp-media-player/scripts/silverlight.js?ver=3.5.1 | 200 OK Content-Length: 10615 Content-Type: application/javascript | clean |
http://polozovs.com/wp-content/plugins/wp-media-player/scripts/silverlightcontrol.js?ver=3.5.1 | 200 OK Content-Length: 6537 Content-Type: application/javascript | clean |
http://polozovs.com/wp-content/plugins/wp-media-player/scripts/silverlightmedia.js?ver=3.5.1 | 200 OK Content-Length: 36110 Content-Type: application/javascript | clean |
http://polozovs.com/wp-content/plugins/wp-media-player/scripts/expressionplayer.js?ver=3.5.1 | 200 OK Content-Length: 8084 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below)  Type.registerNamespace('ExpressionPlayer');ExpressionPlayer.UrlParam={startTime:"startTime",chapter:"chapter",loopCount:"loopCount",mediaSource:"mediaSource",volume:"volume",muted:"muted",duration:"duration",autoplay:"autoplay",autoload:"autoload",wmSource:"wmSource",wmOpacity:"wmOpacity",wpPosition:"wmPosition",mediainfo:"mediainfo",fakeoutput:"fakeoutput"};ExpressionPlayer.Player=function(domElement){ExpressionPlayer.Player.initializeBase(this,[domElement]);} ExpressionPlayer.Playe ExpressionPlayer.HotspotButton.registerClass('ExpressionPlayer.HotspotButton',Sys.UI.Silverlight._Button);function $getArgument(strArg,defVal){var urlArgs=window.location.search.substring(1);var vals=urlArgs.split("&");var strArgLower=strArg.toLowerCase();for(var i=0;i<vals.length;i++){var nvPair=vals[i].split("=");if(nvPair[0].toLowerCase()===strArgLower){return unescape(nvPair[1]);}} if(typeof(defVal)!=='undefined'){return defVal;} return"";} Antivirus reports:
| ||
http://polozovs.com/wp-content/plugins/wp-media-player/styles/blitz/player.js?ver=3.5.1 | 200 OK Content-Length: 829 Content-Type: application/javascript | clean |
http://polozovs.com/wp-content/plugins/wp-media-player/scripts/startplayer.js?ver=3.5.1 | 200 OK Content-Length: 3141 Content-Type: application/javascript | clean |
http://polozovs.com/wp-content/plugins/wp-simpleviewer/svcore/js/simpleviewer.js?ver=2.3.2 | 200 OK Content-Length: 112212 Content-Type: application/javascript | clean |
http://polozovs.com/wp-content/plugins/audio-player/assets/audio-player.js?ver=2.0.4.3 | 200 OK Content-Length: 29223 Content-Type: application/javascript | clean |
http://polozovs.com/wp-content/plugins/auto-highslide/highslide/highslide-with-html.packed.js | 200 OK Content-Length: 32179 Content-Type: application/javascript | clean |
http://polozovs.com/wp-content/themes/cooperatenewwpthemes/includes/featuredposts/scripts/jquery.cycle.all.js | 200 OK Content-Length: 51300 Content-Type: application/javascript | clean |
http://polozovs.com//vk.com/js/api/openapi.js?96/ | 404 Not Found Content-Length: 644 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: polozovs.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 07 Jan 2015 05:42:31 GMT
Server: nginx
Content-Type: text/html; charset=UTF-8
X-Pingback: http://polozovs.com/xmlrpc.php
GET / HTTP/1.1
Host: polozovs.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 07 Jan 2015 05:42:31 GMT
Server: nginx
Content-Type: text/html; charset=UTF-8
X-Pingback: http://polozovs.com/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: polozovs.com
Referer: http://www.google.com/search?q=polozovs.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: polozovs.com
Referer: http://www.google.com/search?q=polozovs.com
Result:
The result is similar to the first query. There are no suspicious redirects found.