Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=vemma-nutrition.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://vemma-nutrition.ru/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://vemma-nutrition.ru/ | 200 OK Content-Length: 25685 Content-Type: text/html | clean |
http://vemma-nutrition.ru/tmp/img/pigizo.js | 200 OK Content-Length: 109881 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(e,t){var n,r,i=typeof t,o=e.document,a=e.location,s=e.jQuery,u=e.$,l={},c=[],p="1.9.1",f=c.concat,d=c.push,h=c.slice,g=c.indexOf,m=l.toString,y=l.hasOwnProperty,v=p.trim,b=function(e,t){return new b.fn.init(e,t,r)},x=/[+-]?(?:\d*\.|)\d+(?:[eE][+-]?\d+|)/.source,w=/\S+/g,T=/^[\s\uFEFF\xA0]+|[\s\uFEFF\xA0]+$/g,N=/^(?:(<[\w\W]+>)[^>]*|#([\w-]*))$/,C=/^<(\w+)\s*\/?>(?:<\/\1>|)$/,k=/^[\],:{}\s]*$/,E=/(?:^|:|,)(?:\s*\[)+/g,S=/\\(?:["\\\/bfnrt]|u[\da-fA-F]{4})/g,A=/"[^"\\ document.write('<div id="basic-modal-content2" style="display:none"></div>'); document.write("<style>.hahivodn { display:none; }</style>"); Antivirus reports:
| ||
http://vemma-nutrition.ru/js/250/addthis_widget.js | 200 OK Content-Length: 7397 Content-Type: application/x-javascript | clean |
http://vemma-nutrition.ru/product-comparison.htm | 200 OK Content-Length: 14409 Content-Type: text/html | clean |
http://vemma-nutrition.ru/js/jquery.js | 200 OK Content-Length: 21172 Content-Type: application/x-javascript | clean |
http://vemma-nutrition.ru/js/interface.js | 200 OK Content-Length: 12770 Content-Type: application/x-javascript | clean |
http://vemma-nutrition.ru/js/favorite.js | 200 OK Content-Length: 13254 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getBrowserInfo() { var t="",v = ""; if (window.opera) t = 'Opera'; else if (document.all) { t = 'IE'; var nv = navigator.appVersion; var s = nv.indexOf('MSIE')+5; v = nv.substring(s,s+1); } else if (navigator.appName) t = 'Netscape'; return { type:t, version:v }; } function bookmark(a){ var url = window.document.location; var title = window.document.title; var b = getBrowserInfo(); if (b.type == 'IE' Antivirus reports:
| ||
http://vemma-nutrition.ru/vemma-next.htm | 200 OK Content-Length: 21919 Content-Type: text/html | clean |
http://vemma-nutrition.ru/vemma.htm | 200 OK Content-Length: 38344 Content-Type: text/html | clean |
http://vemma-nutrition.ru/verve.htm | 200 OK Content-Length: 30720 Content-Type: text/html | clean |
http://vemma-nutrition.ru/vemma-thirst.htm | 200 OK Content-Length: 29742 Content-Type: text/html | clean |
http://vemma-nutrition.ru/company.htm | 200 OK Content-Length: 20682 Content-Type: text/html | clean |
http://vemma-nutrition.ru/doki.htm | 200 OK Content-Length: 15223 Content-Type: text/html | clean |
http://vemma-nutrition.ru/best.htm | 200 OK Content-Length: 20365 Content-Type: text/html | clean |
http://vemma-nutrition.ru/presentations.htm | 200 OK Content-Length: 12959 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: vemma-nutrition.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 02 Oct 2014 13:35:42 GMT
Server: nginx/0.8.54
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.3.5-1ubuntu7.11
GET / HTTP/1.1
Host: vemma-nutrition.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 02 Oct 2014 13:35:42 GMT
Server: nginx/0.8.54
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.3.5-1ubuntu7.11
Second query (visit from search engine):
GET / HTTP/1.1
Host: vemma-nutrition.ru
Referer: http://www.google.com/search?q=vemma-nutrition.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: vemma-nutrition.ru
Referer: http://www.google.com/search?q=vemma-nutrition.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.