Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=301java.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://301java.ru/ | HTTP/1.1 200 OK Connection: close Date: Thu, 29 Jan 2015 18:23:33 GMT Accept-Ranges: bytes ETag: "680007-2434-50cafcebddd62" Server: nginx Vary: Accept-Encoding Content-Length: 9268 Content-Type: text/html; charset=UTF-8 Last-Modified: Thu, 15 Jan 2015 12:15:10 GMT | clean |
http://301java.lark.ru/ | 200 OK Content-Length: 8562 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: takewap.biz ...[736 bytes skipped]... e="padding: 0px 3px; margin:0px;background-color:#C71585"><a href="http://ihlas.lark.ru" style="color: #FFFFFF; background-color: #C71585">ihlas.lark.ru </a></span></p><div class="head"/><div style="text-align:left; font-weight:bolder;"><div style="text-align:center; font-weight:bolder;"><img src="/Rasm/Saytnomi2.png" alt="..."/><br/></div> <br/><a href="http://takewap.biz" style="color:yellow;"><img src="http://takewap.biz/favicon.ico" alt=""/>takewap.biz - Barcha uchun!</a><br/><a href="http://unversal.ru" style="color:white;"><img src="http://unversal.ru/favicon.ico" alt=""/>Unversal.Ru - Eng unversal portal</a><br/><a href="http://masteruz.ru" style="color:lime;"><img src="http://masteruz.ru/favicon.ico" alt=""/>MasterUz.Ru - Sayt ochish sirlari</a><br/><a href="http://birinc ...[3114 bytes skipped]... | ||
http://nclick.su/bn/29636/1/1 | 200 OK Content-Length: 212 Content-Type: text/html | clean |
http://nclick.su/bnout.php?ids=29636&n=1416119 | HTTP/1.1 200 OK Cache-Control: no-cache Connection: close Date: Thu, 29 Jan 2015 18:23:16 GMT Pragma: no-cache Server: nginx/1.4.3 Vary: Accept-Encoding Content-Length: 1400 Content-Type: text/html; charset=utf-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: ses=h96n5m9ljsnk8tr3ip8u4kem31; path=/ X-Powered-By: PHP/5.3.3 | clean |
http://nclick.su/bnout2.php?ids=29636&kod1=5869049&ses=h96n5m9ljsnk8tr3ip8u4kem31&n=1416119 | HTTP/1.1 302 Found Cache-Control: no-cache Connection: close Date: Thu, 29 Jan 2015 18:23:16 GMT Pragma: no-cache Location: http://mox.su Server: nginx/1.4.3 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: ses=1p0kcpjpb878bolin7d7d38tt4; path=/ X-Powered-By: PHP/5.3.3 | clean |
http://mox.su/ | 200 OK Content-Length: 8135 Content-Type: text/html | clean |
http://v.visitweb.com/v/84558 | 200 OK Content-Length: 6119 Content-Type: text/javascript | clean |
http://nclick.ru/tlnk/4443/1/1 | 200 OK Content-Length: 1064 Content-Type: text/html | clean |
http://nclick.ru/test404page.js | HTTP/1.1 302 Found Connection: close Date: Thu, 29 Jan 2015 18:23:20 GMT Location: http://nclick.ru/index.php Server: nginx/1.4.3 Content-Length: 285 Content-Type: text/html; charset=iso-8859-1 | clean |
http://nclick.ru/index.php | 200 OK Content-Length: 7092 Content-Type: text/html | clean |
http://nclick.su/jl2/11384/1/1 | 200 OK Content-Length: 172 Content-Type: text/html | clean |
http://nclick.su/jout.php?ids=11384&n=544468 | HTTP/1.1 200 OK Cache-Control: no-cache Connection: close Date: Thu, 29 Jan 2015 18:23:20 GMT Pragma: no-cache Server: nginx/1.4.3 Vary: Accept-Encoding Content-Length: 1345 Content-Type: text/html; charset=utf-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: ses=v2j7bp8fd8i7rrcfurqi3kipv2; path=/ X-Powered-By: PHP/5.3.3 | clean |
http://nclick.su/jout2.php?ids=11384&kod1=2062270&ses=v2j7bp8fd8i7rrcfurqi3kipv2&n=544468 | HTTP/1.1 302 Found Cache-Control: no-cache Connection: close Date: Thu, 29 Jan 2015 18:23:20 GMT Pragma: no-cache Location: http://mox.su Server: nginx/1.4.3 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: ses=d1ermnto19noq9jr2qskvr52g3; path=/ X-Powered-By: PHP/5.3.3 | clean |
http://mox.su/test404page.js | HTTP/1.1 302 Found Connection: close Date: Thu, 29 Jan 2015 18:23:21 GMT Location: http://mox.su Server: nginx/1.4.3 Content-Length: 269 Content-Type: text/html; charset=iso-8859-1 | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 301java.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 29 Jan 2015 18:23:33 GMT
Accept-Ranges: bytes
ETag: "680007-2434-50cafcebddd62"
Server: nginx
Vary: Accept-Encoding
Content-Length: 9268
Content-Type: text/html; charset=UTF-8
Last-Modified: Thu, 15 Jan 2015 12:15:10 GMT
...9268 bytes of data.
GET / HTTP/1.1
Host: 301java.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 29 Jan 2015 18:23:33 GMT
Accept-Ranges: bytes
ETag: "680007-2434-50cafcebddd62"
Server: nginx
Vary: Accept-Encoding
Content-Length: 9268
Content-Type: text/html; charset=UTF-8
Last-Modified: Thu, 15 Jan 2015 12:15:10 GMT
...9268 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: 301java.ru
Referer: http://www.google.com/search?q=301java.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 301java.ru
Referer: http://www.google.com/search?q=301java.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.