Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=spasstroy.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://spasstroy.ru/ | 200 OK Content-Length: 12815 Content-Type: text/html | clean |
http://spasstroy.ru/templates/js/jquery.js | 200 OK Content-Length: 58749 Content-Type: application/x-javascript | clean |
http://spasstroy.ru/templates/js/ui.js | 200 OK Content-Length: 18433 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) jQuery.ui||(function(c){var i=c.fn.remove,d=c.browser.mozilla&&(parseFloat(c.browser.version)<1.9);c.ui={version:"1.7.2",plugin:{add:function(k,l,n){var m=c.ui[k].prototype;for(var j in n){m.plugins[j]=m.plugins[j]||[];m.plugins[j].push([l,n[j]])}},call:function(j,l,k){var n=j.plugins[l];if(!n||!j.element[0].parentNode){return}for(var m=0;m<n.length;m++){if(j.options[n[m][0]]){n[m][1].apply(j.element,k)}}}},contains:function(k,j){return document.compareDocumentPosition?k.compareDoc Antivirus reports:
| ||
http://spasstroy.ru/templates/js/jquery.lightbox-0.5.js | 200 OK Content-Length: 21104 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($) { $.fn.lightBox = function(settings) { settings = jQuery.extend({ overlayBgColor: '#000', overlayOpacity: 0.8, fixedNavigation: false, imageLoading: '/images/lightbox-ico-loading.gif', imageBtnPrev: '/images/lightbox-btn-prev.gif', imageBtnNext: '/images/lightbox-btn-next.gif', imageBtnClose: '/images/lightbox-btn-close.gif', imageBlank: '/images/lightbox-blank.gif', containerBorderSize: 10, Antivirus reports:
| ||
http://spasstroy.ru//mc.yandex.ru/metrika/watch.js/ | 404 Not Found Content-Length: 408 Content-Type: text/html | clean |
http://spasstroy.ru/test404page.js | 404 Not Found Content-Length: 392 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: spasstroy.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 22 Dec 2014 01:17:31 GMT
Pragma: no-cache
Server: nginx
Content-Encoding: x-compress
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: ctech=88035e6cd1eaa05512e67c5f48a60111; path=/
X-Powered-By: PHP/5.3.23
GET / HTTP/1.1
Host: spasstroy.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 22 Dec 2014 01:17:31 GMT
Pragma: no-cache
Server: nginx
Content-Encoding: x-compress
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: ctech=88035e6cd1eaa05512e67c5f48a60111; path=/
X-Powered-By: PHP/5.3.23
Second query (visit from search engine):
GET / HTTP/1.1
Host: spasstroy.ru
Referer: http://www.google.com/search?q=spasstroy.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: spasstroy.ru
Referer: http://www.google.com/search?q=spasstroy.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.