Fortinet's flags malware, many DOM XSS sinks & sources found up..

[polonus]

See: https://urlquery.net/report/0ef71dd3-3581-4004-810d-bd54c452363c
See: https://www.virustotal.com/gui/url/8314d453cf1d5733e3c31791b26e70d55ab34c67afad07098e15b07ce5ec70e0/details  (no flags)
various IP detection on IP relations: https://www.virustotal.com/gui/ip-address/109.120.167.1/relations
Results from scanning URL: -http://yantarny.net
Number of sources found: 7
Number of sinks found: 306
&
Results from scanning URL: -http://yantarny.net/t3-assets/jsf2fe3.js
Number of sources found: 330
Number of sinks found: 105
On that uri recommendations towards improvement by linting:
https://webhint.io/scanner/ce4a1356-5a38-4628-a2f8-d54677f86b67

web app. security tool results: https://webcookies.org/cookies/yantarny.net/28498672?258820
various security glitches alerted
also consider link on website: https://aw-snap.info/file-viewer/?protocol=secure&ref_sel=GSP2&ua_sel=ff&chk-cache=&fs=1&tgt=Z112MzkufXVg~enc  -> https://webhint.io/scanner/9dccb7e5-dffe-435c-b30a-9ae24af44ab6
GData flags malware there: https://www.virustotal.com/gui/url/ccd0daedc3d3ea23221a745316928cc052b7c41200e73506abe583871d1296ae/detection
relations and detections for the Kalingrad section: https://www.virustotal.com/gui/ip-address/91.209.69.210/relations
See the SQL Database here with various DOM XSS sinks and sources, while scanning URL: -https://tarif39.ru/bitrix/js/main/core/core_db.js?142847797010954 (Dr Web's URL check gives it the all green, tags included).
Number of sources found: 43
Number of sinks found: 20  Vulnerable to Bitrix 1.0.3 Path Traversal Vulnerability code injection exploit
-> https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=sql+injection

polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)