Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=casiopeyaaaaaa.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://casiopeyaaaaaa.com/
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: casiopeyaaaaaa.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 18 Jul 2014 12:47:44 GMT
Pragma: no-cache
Server: nginx/1.4.6 (Ubuntu)
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=kmoq3ffm376e6vc3rppqg6d8q7; path=/
Set-Cookie: pid=19; expires=Wed, 30-Jul-2014 02:34:23 GMT; Max-Age=999999; path=/; domain=~(testru-online*|rutest-online*|clubrelaxx*\.com|restme*|besttest2013.*\.com|asiopeya+\.com|funrelaxx*\.com)
X-Powered-By: PHP/5.5.9-1ubuntu3
GET / HTTP/1.1
Host: casiopeyaaaaaa.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 18 Jul 2014 12:47:44 GMT
Pragma: no-cache
Server: nginx/1.4.6 (Ubuntu)
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=kmoq3ffm376e6vc3rppqg6d8q7; path=/
Set-Cookie: pid=19; expires=Wed, 30-Jul-2014 02:34:23 GMT; Max-Age=999999; path=/; domain=~(testru-online*|rutest-online*|clubrelaxx*\.com|restme*|besttest2013.*\.com|asiopeya+\.com|funrelaxx*\.com)
X-Powered-By: PHP/5.5.9-1ubuntu3
Second query (visit from search engine):
GET / HTTP/1.1
Host: casiopeyaaaaaa.com
Referer: http://www.google.com/search?q=casiopeyaaaaaa.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: casiopeyaaaaaa.com
Referer: http://www.google.com/search?q=casiopeyaaaaaa.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://casiopeyaaaaaa.com/ | 200 OK Content-Length: 10833 Content-Type: text/html | clean |
http://casiopeyaaaaaa.com/files/jquery-1.4.2.min.js | 200 OK Content-Length: 72174 Content-Type: application/x-javascript | clean |
http://casiopeyaaaaaa.com/files/main.js | 200 OK Content-Length: 3984 Content-Type: application/x-javascript | clean |
http://casiopeyaaaaaa.com/files/flowplayer-3.1.4.min.js | 200 OK Content-Length: 15960 Content-Type: application/x-javascript | clean |
http://casiopeyaaaaaa.com/script/all.js | 200 OK Content-Length: 4361 Content-Type: application/x-javascript | clean |
http://casiopeyaaaaaa.com/script/jquery.maskedinput-1.2.2.js | 200 OK Content-Length: 7184 Content-Type: application/x-javascript | clean |
http://casiopeyaaaaaa.com/?path=rules | 200 OK Content-Length: 7753 Content-Type: text/html | clean |
http://casiopeyaaaaaa.com/test404page.js | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://casiopeyaaaaaa.com/?path=terms | 200 OK Content-Length: 21672 Content-Type: text/html | clean |
http://casiopeyaaaaaa.com/?page=best | 200 OK Content-Length: 10833 Content-Type: text/html | clean |
http://casiopeyaaaaaa.com/?page=prikol | 200 OK Content-Length: 10833 Content-Type: text/html | clean |
http://casiopeyaaaaaa.com/gta5/ | 200 OK Content-Length: 62418 Content-Type: text/html | clean |
http://casiopeyaaaaaa.com/resources/gta5/script/jquery-1.4.2.min.js | 200 OK Content-Length: 72174 Content-Type: application/x-javascript | clean |
http://casiopeyaaaaaa.com/resources/gta5/script/main.js | 200 OK Content-Length: 11175 Content-Type: application/x-javascript | clean |
http://casiopeyaaaaaa.com/data/rules_mts.html | 200 OK Content-Length: 51842 Content-Type: text/html | clean |