Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=48800.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://48800.ru/
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://48800.ru/ | 200 OK Content-Length: 20046 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: transekb.ru ...[2716 bytes skipped]... gt; </form> </div> </div> </div> <script type="text/javascript"> document.write('<' + 'di' + 'v sty' + 'le="position: absolute; l' + 'eft: -1914px; t' + 'op' + ': -2858px;">');</script> <a href="http://volga2013.ru/pages/levitra-cena-v-dnepropetrovske-.html">Ëåâèòðà öåíà â äíåïðîïåòðîâñêå </a> <a href="http://transekb.ru/pages/viagra-kupit-v-bratske-.html">Âèàãðà êóïèòü â Áðàòñêå </a> <a href="http://taksi-shelkovo.ru/pages/sialis-dlya-jenshin-gde-kupit-.html">Ñèàëèñ äëÿ æåíùèí ãäå êóïèòü </a> <a href="http://taksireutov.ru/pages/kak-priobresti-viagru-.html">Êàê ïðèîáðåñòè âèàãðó </a> <a href="http://taksidolgoprudniy.ru/pages/viagra-soft-kupit-v-tveri-.html">Âèàãðà ñîôò êóïèòü â Òâåðè </a> <a href="http://str01.ru/pages/super-siali ...[1029 bytes skipped]... | ||
http://48800.ru/js/jquery-1.7.1.js | 200 OK Content-Length: 248235 Content-Type: application/javascript | clean |
http://48800.ru/js/iColorPicker.js | 200 OK Content-Length: 8092 Content-Type: application/javascript | clean |
http://48800.ru/js/jquery.form.js | 200 OK Content-Length: 27151 Content-Type: application/javascript | clean |
http://48800.ru/templates/atomic/js/template.js | 200 OK Content-Length: 27 Content-Type: application/javascript | clean |
http://48800.ru/index.php | 200 OK Content-Length: 20046 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: transekb.ru ...[2716 bytes skipped]... gt; </form> </div> </div> </div> <script type="text/javascript"> document.write('<' + 'di' + 'v sty' + 'le="position: absolute; l' + 'eft: -1914px; t' + 'op' + ': -2858px;">');</script> <a href="http://volga2013.ru/pages/levitra-cena-v-dnepropetrovske-.html">Ëåâèòðà öåíà â äíåïðîïåòðîâñêå </a> <a href="http://transekb.ru/pages/viagra-kupit-v-bratske-.html">Âèàãðà êóïèòü â Áðàòñêå </a> <a href="http://taksi-shelkovo.ru/pages/sialis-dlya-jenshin-gde-kupit-.html">Ñèàëèñ äëÿ æåíùèí ãäå êóïèòü </a> <a href="http://taksireutov.ru/pages/kak-priobresti-viagru-.html">Êàê ïðèîáðåñòè âèàãðó </a> <a href="http://taksidolgoprudniy.ru/pages/viagra-soft-kupit-v-tveri-.html">Âèàãðà ñîôò êóïèòü â Òâåðè </a> <a href="http://str01.ru/pages/super-siali ...[1029 bytes skipped]... | ||
http://48800.ru/index.php/component/users/?view=reset | 200 OK Content-Length: 13281 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: transekb.ru ...[2716 bytes skipped]... gt; </form> </div> </div> </div> <script type="text/javascript"> document.write('<' + 'di' + 'v sty' + 'le="position: absolute; l' + 'eft: -1914px; t' + 'op' + ': -2858px;">');</script> <a href="http://volga2013.ru/pages/levitra-cena-v-dnepropetrovske-.html">Ëåâèòðà öåíà â äíåïðîïåòðîâñêå </a> <a href="http://transekb.ru/pages/viagra-kupit-v-bratske-.html">Âèàãðà êóïèòü â Áðàòñêå </a> <a href="http://taksi-shelkovo.ru/pages/sialis-dlya-jenshin-gde-kupit-.html">Ñèàëèñ äëÿ æåíùèí ãäå êóïèòü </a> <a href="http://taksireutov.ru/pages/kak-priobresti-viagru-.html">Êàê ïðèîáðåñòè âèàãðó </a> <a href="http://taksidolgoprudniy.ru/pages/viagra-soft-kupit-v-tveri-.html">Âèàãðà ñîôò êóïèòü â Òâåðè </a> <a href="http://str01.ru/pages/super-siali ...[1029 bytes skipped]... | ||
http://48800.ru/index.php/component/users/?view=remind | 200 OK Content-Length: 13010 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: transekb.ru ...[2716 bytes skipped]... gt; </form> </div> </div> </div> <script type="text/javascript"> document.write('<' + 'di' + 'v sty' + 'le="position: absolute; l' + 'eft: -1914px; t' + 'op' + ': -2858px;">');</script> <a href="http://volga2013.ru/pages/levitra-cena-v-dnepropetrovske-.html">Ëåâèòðà öåíà â äíåïðîïåòðîâñêå </a> <a href="http://transekb.ru/pages/viagra-kupit-v-bratske-.html">Âèàãðà êóïèòü â Áðàòñêå </a> <a href="http://taksi-shelkovo.ru/pages/sialis-dlya-jenshin-gde-kupit-.html">Ñèàëèñ äëÿ æåíùèí ãäå êóïèòü </a> <a href="http://taksireutov.ru/pages/kak-priobresti-viagru-.html">Êàê ïðèîáðåñòè âèàãðó </a> <a href="http://taksidolgoprudniy.ru/pages/viagra-soft-kupit-v-tveri-.html">Âèàãðà ñîôò êóïèòü â Òâåðè </a> <a href="http://str01.ru/pages/super-siali ...[1029 bytes skipped]... | ||
http://48800.ru/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 48800.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Thu, 15 Jan 2015 10:49:26 GMT
Pragma: no-cache
Server: Apache/2.2.17 (FreeBSD) mod_ssl/2.2.17 OpenSSL/0.9.8q DAV/2
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 02045d46c6587e69b67087c99aae564c=ho72rii02fs26rv9rafv95lb35; expires=Fri, 16-Jan-2015 10:49:26 GMT; path=/
GET / HTTP/1.1
Host: 48800.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Thu, 15 Jan 2015 10:49:26 GMT
Pragma: no-cache
Server: Apache/2.2.17 (FreeBSD) mod_ssl/2.2.17 OpenSSL/0.9.8q DAV/2
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 02045d46c6587e69b67087c99aae564c=ho72rii02fs26rv9rafv95lb35; expires=Fri, 16-Jan-2015 10:49:26 GMT; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: 48800.ru
Referer: http://www.google.com/search?q=48800.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 48800.ru
Referer: http://www.google.com/search?q=48800.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.