Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=10val.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://10val.ru/
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 10val.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 14 Sep 2014 06:32:32 GMT
Pragma: no-cache
Server: nginx/1.2.3
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=76bMypjBEJ3gsi7sz1GkI3; expires=Sun, 14-Sep-2014 12:32:32 GMT; path=/
Set-Cookie: cook=ok; expires=Tue, 14-Oct-2014 06:32:32 GMT; path=/
Set-Cookie: acc=21002; expires=Tue, 14-Oct-2014 06:32:32 GMT; path=/
Set-Cookie: pss=1410676352; expires=Sun, 14-Sep-2014 16:32:32 GMT; path=/
Set-Cookie: country=LT; expires=Tue, 14-Oct-2014 06:32:32 GMT; path=/
Set-Cookie: _ft=1410687152; expires=Tue, 14-Oct-2014 06:32:32 GMT; path=/
X-Powered-By: PHP/5.4.6
GET / HTTP/1.1
Host: 10val.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 14 Sep 2014 06:32:32 GMT
Pragma: no-cache
Server: nginx/1.2.3
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=76bMypjBEJ3gsi7sz1GkI3; expires=Sun, 14-Sep-2014 12:32:32 GMT; path=/
Set-Cookie: cook=ok; expires=Tue, 14-Oct-2014 06:32:32 GMT; path=/
Set-Cookie: acc=21002; expires=Tue, 14-Oct-2014 06:32:32 GMT; path=/
Set-Cookie: pss=1410676352; expires=Sun, 14-Sep-2014 16:32:32 GMT; path=/
Set-Cookie: country=LT; expires=Tue, 14-Oct-2014 06:32:32 GMT; path=/
Set-Cookie: _ft=1410687152; expires=Tue, 14-Oct-2014 06:32:32 GMT; path=/
X-Powered-By: PHP/5.4.6
Second query (visit from search engine):
GET / HTTP/1.1
Host: 10val.ru
Referer: http://www.google.com/search?q=10val.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 10val.ru
Referer: http://www.google.com/search?q=10val.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://10val.ru/ | 200 OK Content-Length: 87422 Content-Type: text/html | clean |
http://10val.ru/js/jquery.min.js | 200 OK Content-Length: 93867 Content-Type: application/x-javascript | clean |
http://10val.ru/js/default.js | 200 OK Content-Length: 2626 Content-Type: application/x-javascript | clean |
http://10val.ru/get_access/ | 200 OK Content-Length: 111113 Content-Type: text/html | clean |
http://10val.ru/?category=1 | 200 OK Content-Length: 147993 Content-Type: text/html | clean |
http://10val.ru/?category=2 | 200 OK Content-Length: 168059 Content-Type: text/html | clean |
http://10val.ru/?category=3 | 200 OK Content-Length: 120335 Content-Type: text/html | clean |
http://10val.ru/?category=4 | 200 OK Content-Length: 86483 Content-Type: text/html | clean |
http://10val.ru/?category=5 | 200 OK Content-Length: 87370 Content-Type: text/html | clean |
http://10val.ru/?category=6 | 200 OK Content-Length: 89562 Content-Type: text/html | clean |
http://10val.ru/?q=%D0%9F%D1%80%D0%BE%D0%B5%D0%BA%D1%82+%D0%BF%D1%80%D0%B8%D0%BA%D0%B0%D0%B7%D0%B0+%D0%A0%D0%BE%D1%81%D0%BF%D0%BE%D1%82%D1%80%D0%B5%D0%B1%D0%BD%D0%B0%D0%B4%D0%B7%D0%BE%D1%80%D0%B0+%22%D0%9E%D0%B1+%D1%83%D1%82%D0%B2%D0%B5%D1%80%D0%B6%D0%B4%D0%B5%D0%BD%D0%B8%D0%B8+%D0%9A%D1%80%D0%B8%D1%82%D0%B5%D1%80%D0%B8%D0%B5%D0%B2+%D1%81%D1%83%D1%89%D0%B5%D1%81%D1%82%D0%B2%D0%B5%D0%BD%D0%BD%D0%BE <span>...987 symbols skipped</span> | 200 OK Content-Length: 184665 Content-Type: text/html | clean |
http://10val.ru/?q=%D0%A4%D0%B5%D0%B4%D0%B5%D1%80%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B9+%D0%B7%D0%B0%D0%BA%D0%BE%D0%BD+%D0%BE%D1%82+07.06.2013+N+113-%D0%A4%D0%97+%22%D0%9E+%D0%B2%D0%BD%D0%B5%D1%81%D0%B5%D0%BD%D0%B8%D0%B8+%D0%B8%D0%B7%D0%BC%D0%B5%D0%BD%D0%B5%D0%BD%D0%B8%D0%B9+%D0%B2+%D0%BE%D1%82%D0%B4%D0%B5%D0%BB%D1%8C%D0%BD%D1%8B%D0%B5+%D0%B7%D0%B0%D0%BA%D0%BE%D0%BD%D0%BE%D0%B4%D0%B0%D1%82%D0%B5%D0% <span>...516 symbols skipped</span> | 200 OK Content-Length: 168439 Content-Type: text/html | clean |
http://10val.ru/?q=%D0%9F%D0%BE%D1%81%D1%82%D0%B0%D0%BD%D0%BE%D0%B2%D0%BB%D0%B5%D0%BD%D0%B8%D0%B5+%D0%9F%D1%80%D0%B0%D0%B2%D0%B8%D1%82%D0%B5%D0%BB%D1%8C%D1%81%D1%82%D0%B2%D0%B0+%D0%A0%D0%A4+%D0%BE%D1%82+21.02.2013+N+146+%22%D0%9E+%D1%84%D0%B5%D0%B4%D0%B5%D1%80%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D1%85+%D1%81%D1%82%D0%B0%D0%BD%D0%B4%D0%B0%D1%80%D1%82%D0%B0%D1%85+%D0%BE%D0%BF%D0%BB%D0%B0%D1%82%D1%8B+%D0%B <span>...260 symbols skipped</span> | 200 OK Content-Length: 170136 Content-Type: text/html | clean |
http://10val.ru/?q=%D0%9F%D0%B8%D1%81%D1%8C%D0%BC%D0%BE+%D0%A4%D0%9D%D0%A1+%D0%A0%D0%BE%D1%81%D1%81%D0%B8%D0%B8+%D0%BE%D1%82+22.03.2013+N+%D0%95%D0%94-4-3%2F5024%40+%22%D0%9E+%D0%BD%D0%B0%D0%BF%D1%80%D0%B0%D0%B2%D0%BB%D0%B5%D0%BD%D0%B8%D0%B8+%D0%BF%D0%B8%D1%81%D1%8C%D0%BC%D0%B0+%D0%9C%D0%B8%D0%BD%D0%B8%D1%81%D1%82%D0%B5%D1%80%D1%81%D1%82%D0%B2%D0%B0+%D1%84%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2 <span>...68 symbols skipped</span> | 200 OK Content-Length: 130651 Content-Type: text/html | clean |
http://10val.ru/?q=%D0%9F%D1%80%D0%BE%D0%B5%D0%BA%D1%82+%D0%A4%D0%B5%D0%B4%D0%B5%D1%80%D0%B0%D0%BB%D1%8C%D0%BD%D0%BE%D0%B3%D0%BE+%D0%B7%D0%B0%D0%BA%D0%BE%D0%BD%D0%B0+%22%D0%9E+%D0%B2%D0%BD%D0%B5%D1%81%D0%B5%D0%BD%D0%B8%D0%B8+%D0%B8%D0%B7%D0%BC%D0%B5%D0%BD%D0%B5%D0%BD%D0%B8%D0%B9+%D0%B2+%D0%BD%D0%B5%D0%BA%D0%BE%D1%82%D0%BE%D1%80%D1%8B%D0%B5+%D0%B7%D0%B0%D0%BA%D0%BE%D0%BD%D0%BE%D0%B4%D0%B0%D1%82%D0% <span>...83 symbols skipped</span> | 200 OK Content-Length: 167546 Content-Type: text/html | clean |