Scanned pages/files
Request | Server response | Status |
http://buratina.net/ | 200 OK Content-Length: 56912 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="//am15.net/cu.php?s=52743"></script> | ||
http://buratina.net/engine/classes/js/jquery.js | 200 OK Content-Length: 93637 Content-Type: application/javascript | clean |
http://buratina.net/engine/classes/js/jqueryui.js | 200 OK Content-Length: 75927 Content-Type: application/javascript | clean |
http://buratina.net/engine/classes/js/dle_js.js | 200 OK Content-Length: 23054 Content-Type: application/javascript | clean |
http://buratina.net/engine/classes/highslide/highslide.js | 200 OK Content-Length: 33499 Content-Type: application/javascript | clean |
http://autocontext.begun.ru/autocontext2.js | 200 OK Content-Length: 214 Content-Type: application/x-javascript | clean |
http://buratina.net/index.php?do=register | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://buratina.net/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://buratina.net/index.php?do=lostpassword | 200 OK Content-Length: 18179 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="//am15.net/cu.php?s=52743"></script> | ||
http://buratina.net/index.php?do=feedback | 200 OK Content-Length: 20415 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="//am15.net/cu.php?s=52743"></script> | ||
http://buratina.net/index.php?do=cat&category=yumor | 200 OK Content-Length: 46829 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="//am15.net/cu.php?s=52743"></script> | ||
http://buratina.net/index.php?do=cat&category=devushki-nyu | 200 OK Content-Length: 47492 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="//am15.net/cu.php?s=52743"></script> | ||
http://buratina.net/index.php?do=cat&category=socialnye-seti | 200 OK Content-Length: 46806 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="//am15.net/cu.php?s=52743"></script> | ||
http://buratina.net/index.php?do=cat&category=interesnoe | 200 OK Content-Length: 47629 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="//am15.net/cu.php?s=52743"></script> | ||
http://buratina.net/index.php?do=cat&category=zhest | 200 OK Content-Length: 45398 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="//am15.net/cu.php?s=52743"></script> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: buratina.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 03 Jun 2014 03:44:05 GMT
Pragma: no-cache
Server: Apache mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Length: 56912
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=54a51adac820a3459d48cf274ccd08c6; path=/; domain=.buratina.net; HttpOnly
Set-Cookie: dle_user_id=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.buratina.net; httponly
Set-Cookie: dle_password=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.buratina.net; httponly
Set-Cookie: dle_hash=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.buratina.net; httponly
X-Powered-By: PHP/5.3.24
...56912 bytes of data.
GET / HTTP/1.1
Host: buratina.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 03 Jun 2014 03:44:05 GMT
Pragma: no-cache
Server: Apache mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Length: 56912
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=54a51adac820a3459d48cf274ccd08c6; path=/; domain=.buratina.net; HttpOnly
Set-Cookie: dle_user_id=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.buratina.net; httponly
Set-Cookie: dle_password=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.buratina.net; httponly
Set-Cookie: dle_hash=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.buratina.net; httponly
X-Powered-By: PHP/5.3.24
...56912 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: buratina.net
Referer: http://www.google.com/search?q=buratina.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: buratina.net
Referer: http://www.google.com/search?q=buratina.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=buratina.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://buratina.net/
Result: buratina.net is not infected or malware details are not published yet.
Result: buratina.net is not infected or malware details are not published yet.