Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=a1a.su
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://a1a.su/
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: a1a.su
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 14 Dec 2014 05:48:02 GMT
Server: nginx
Content-Type: text/html; charset=utf-8
GET / HTTP/1.1
Host: a1a.su
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 14 Dec 2014 05:48:02 GMT
Server: nginx
Content-Type: text/html; charset=utf-8
Second query (visit from search engine):
GET / HTTP/1.1
Host: a1a.su
Referer: http://www.google.com/search?q=a1a.su
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: a1a.su
Referer: http://www.google.com/search?q=a1a.su
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://a1a.su/ | HTTP/1.1 200 OK Connection: close Date: Sun, 14 Dec 2014 05:48:02 GMT Server: nginx Content-Type: text/html; charset=utf-8 | clean |
http://www.a1pay.ru/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 14 Dec 2014 05:48:02 GMT Location: http://a1pay.ru/ Server: nginx Content-Length: 178 Content-Type: text/html | clean |
http://a1pay.ru/ | HTTP/1.1 302 Found Cache-Control: no-cache Connection: close Date: Sun, 14 Dec 2014 05:48:02 GMT Location: http://partner.a1pay.ru Server: nginx Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html Set-Cookie: ci_session=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%227cd923a89ce155bb219393a2f72931ee%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%2278.158.11.226%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A50%3A%22Mozilla%2F4.0+%28compatible%3B+MSIE+8.0%3B+Windows+NT+5.1%29%22%3Bs%3A13%3A%22last_activity%22%3Bs%3A10%3A%221418536392%22%3B%7D3d57e1e86f7dc1a5d90eae57efd18ff1; expires=Sun, 14-Dec-2014 07:53:12 GMT; path=/ | clean |
http://partner.a1pay.ru/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 14 Dec 2014 05:48:03 GMT Location: https://partner.a1pay.ru/ Server: nginx Content-Length: 178 Content-Type: text/html | clean |
https://partner.a1pay.ru/ | HTTP/1.1 302 Found Connection: close Date: Sun, 14 Dec 2014 05:48:03 GMT Location: https://home.a1pay.ru/sso/?request=wbO2Jh8tBFQgFVvxH0lRNtz5eCeYxc8n2JxGF8z1g2z1UO445lwmdTA2zUPBo4PIE-gX4zyeooE0i1hVWPTS82yce7OcSWOVbM16YxfKXGG-0KXTTFrDt0KXR3sItgvu Server: nginx Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Set-Cookie: cisession=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%22d96f037fb984de296ac7e70d1d1fe03b%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%2278.158.11.226%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A50%3A%22Mozilla%2F4.0+%28compatible%3B+MSIE+8.0%3B+Windows+NT+5.1%29%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1418536393%3B%7D8b1123ddf64dfdbec818802687e4cd90; expires=Sun, 14-Dec-2014 07:53:13 GMT; path=/ | clean |
https://home.a1pay.ru/sso/?request=wbo2jh8tbfqgfvvxh0lrntz5eceyxc8n2jxgf8z1g2z1uo445lwmdta2zupbo4pie-gx4zyeooe0i1hvwpts82yce7ocswovbm16yxfkxgg-0kxttfrdt0kxr3sitgvu | 500 Internal Server Error Content-Length: 1148 Content-Type: text/html | clean |
http://home.a1pay.ru/test404page.js | 404 Not Found Content-Length: 1175 Content-Type: text/html | clean |