Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bestportalxxx.info
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bestportalxxx.info/
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://bestportalxxx.info/ | 200 OK Content-Length: 8551 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://imobl.ru/counter.php <iframe src="http://imobl.ru/counter.php" frameborder="0" style="display:none"> | ||
http://bestportalxxx.info/portal/skins/js/jquery-1.7.2.min.js | 200 OK Content-Length: 94840 Content-Type: application/x-javascript | clean |
http://bestportalxxx.info/content/js/format_number.js | 200 OK Content-Length: 5947 Content-Type: application/x-javascript | clean |
http://bestportalxxx.info/?page=control | 200 OK Content-Length: 8917 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://imobl.ru/counter.php <iframe src="http://imobl.ru/counter.php" frameborder="0" style="display:none"> | ||
http://bestportalxxx.info/portal/skins/js/jquery-ui-1.8.23.custom.min.js | 200 OK Content-Length: 61960 Content-Type: application/x-javascript | clean |
http://bestportalxxx.info/portal/rules.php | 200 OK Content-Length: 30837 Content-Type: text/html | clean |
http://bestportalxxx.info/test404page.js | 404 Not Found Content-Length: 571 Content-Type: text/html | clean |
http://bestportalxxx.info/?page=activate | 200 OK Content-Length: 7335 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://imobl.ru/counter.php <iframe src="http://imobl.ru/counter.php" frameborder="0" style="display:none"> | ||
http://bestportalxxx.info/?page=mail | 200 OK Content-Length: 2135 Content-Type: text/html | clean |
http://bestportalxxx.info/thrones/ | 200 OK Content-Length: 8685 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://imobl.ru/counter.php <iframe src="http://imobl.ru/counter.php" frameborder="0" style="display:none"> | ||
http://bestportalxxx.info/thrones/skins/default/js/jquery-1.7.2.min.js | 200 OK Content-Length: 94840 Content-Type: application/x-javascript | clean |
http://bestportalxxx.info/thrones/skins/default/js/jquery-ui-1.8.23.custom.min.js | 200 OK Content-Length: 61960 Content-Type: application/x-javascript | clean |
http://bestportalxxx.info/thrones/skins/default/js/jquery.cookie.js | 200 OK Content-Length: 1941 Content-Type: application/x-javascript | clean |
http://bestportalxxx.info/thrones/skins/default/js/scripts.js | 200 OK Content-Length: 2173 Content-Type: application/x-javascript | clean |
http://bestportalxxx.info/thrones/?page=join&action=activate&join=1 | 200 OK Content-Length: 9525 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://imobl.ru/counter.php <iframe src="http://imobl.ru/counter.php" frameborder="0" style="display:none"> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bestportalxxx.info
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=259200
Connection: close
Date: Fri, 18 Jul 2014 01:56:20 GMT
Pragma: no-cache
Server: nginx/1.0.14
Content-Type: text/html; charset=utf-8
Expires: Mon, 21 Jul 2014 01:56:20 GMT
Set-Cookie: PHPSESSID=2m5soej2970ackdr7nvc21vq97; path=/
Set-Cookie: s328=1%3A1%3A%3A%3A; expires=Sat, 19-Jul-2014 01:56:20 GMT; path=/
Set-Cookie: ip=78.158.11.226; expires=Sat, 19-Jul-2014 01:56:20 GMT; path=/
X-Powered-By: PHP/5.3.10
GET / HTTP/1.1
Host: bestportalxxx.info
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=259200
Connection: close
Date: Fri, 18 Jul 2014 01:56:20 GMT
Pragma: no-cache
Server: nginx/1.0.14
Content-Type: text/html; charset=utf-8
Expires: Mon, 21 Jul 2014 01:56:20 GMT
Set-Cookie: PHPSESSID=2m5soej2970ackdr7nvc21vq97; path=/
Set-Cookie: s328=1%3A1%3A%3A%3A; expires=Sat, 19-Jul-2014 01:56:20 GMT; path=/
Set-Cookie: ip=78.158.11.226; expires=Sat, 19-Jul-2014 01:56:20 GMT; path=/
X-Powered-By: PHP/5.3.10
Second query (visit from search engine):
GET / HTTP/1.1
Host: bestportalxxx.info
Referer: http://www.google.com/search?q=bestportalxxx.info
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bestportalxxx.info
Referer: http://www.google.com/search?q=bestportalxxx.info
Result:
The result is similar to the first query. There are no suspicious redirects found.