Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=cat.erwap.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://cat.erwap.ru/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://cat.erwap.ru/ | 200 OK Content-Length: 2910 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: partners.erwap.ru ...[1741 bytes skipped]... ·Ð½Ð¾Ðµ</a><br/><img src="img/d.gif" alt="+"/><a href="index.php?c=6&v=2">ХалÑва</a><br/><img src="img/d.gif" alt="+"/><a href="index.php?c=7&v=2">ÐÑоÑика</a></div><div style="text-align:left" class="box">ÐÑего ÑайÑов: 70</div><div style="text-align:left" class="box"><img src="img/a.gif" alt="+"/><a href="http://partners.erwap.ru/?v=3">ÐобавиÑÑ</a></div><div style="text-align:left" class="tit"><b>ÐоиÑк ÑайÑов:</b></div><div style="text-align:left" class="box"><form action="search.php" method="get"><input maxlength="50" type="text" name="text" value=""/><br/><input type="hidden" name="v" value="2"/><input type="submit" value="ÐайÑи"/></form></div><div style="text-align:left" class="tit">< ...[934 bytes skipped]... | ||
http://cat.erwap.ru/index.php?c=0&v=2 | 200 OK Content-Length: 5716 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: partners.erwap.ru ...[2609 bytes skipped]... href="index.php?c=0&p=1&v=2">2</a> <a href="index.php?c=0&p=2&v=2">3</a> <a href="index.php?c=0&p=3&v=2">4</a> <a href="index.php?c=0&p=4&v=2">5</a> ... <a href="index.php?c=0&p=6&v=2">7</a></div><div style="text-align:left" class="box"><img src="img/a.gif" alt="+"/><a href="http://partners.erwap.ru/?v=3">ÐобавиÑÑ</a></div><div style="text-align:left" class="tit"><b>ÐоиÑк в каÑегоÑии:</b></div><div style="text-align:left" class="box"><form action="search.php" method="get"><input maxlength="50" type="text" name="text" value=""/><br/><input type="hidden" name="c" value="0"/><input type="hidden" name="v" value="2"/><input type="submit" value="ÐайÑи"/></form></di ...[1342 bytes skipped]... | ||
http://cat.erwap.ru/index.php?v=2 | 200 OK Content-Length: 3093 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: partners.erwap.ru ...[1726 bytes skipped]... ·Ð½Ð¾Ðµ</a><br/><img src="img/d.gif" alt="+"/><a href="index.php?c=6&v=2">ХалÑва</a><br/><img src="img/d.gif" alt="+"/><a href="index.php?c=7&v=2">ÐÑоÑика</a></div><div style="text-align:left" class="box">ÐÑего ÑайÑов: 70</div><div style="text-align:left" class="box"><img src="img/a.gif" alt="+"/><a href="http://partners.erwap.ru/?v=3">ÐобавиÑÑ</a></div><div style="text-align:left" class="tit"><b>ÐоиÑк ÑайÑов:</b></div><div style="text-align:left" class="box"><form action="search.php" method="get"><input maxlength="50" type="text" name="text" value=""/><br/><input type="hidden" name="v" value="2"/><input type="submit" value="ÐайÑи"/></form></div><div style="text-align:left" class="tit">< ...[1172 bytes skipped]... | ||
http://cat.erwap.ru/index.php?c=2&v=2 | 200 OK Content-Length: 6007 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: partners.erwap.ru ...[2524 bytes skipped]... /><small>СегоднÑ: пÑиÑло 1; ÑÑло 0.</small></div><div style="text-align:left" class="box">СайÑов в каÑегоÑии: 15</div><div style="text-align:left" class="box">СÑÑ. <b>1</b> <a href="index.php?c=2&p=1&v=2">2</a> </div><div style="text-align:left" class="box"><img src="img/a.gif" alt="+"/><a href="http://partners.erwap.ru/?v=3">ÐобавиÑÑ</a></div><div style="text-align:left" class="tit"><b>ÐоиÑк в каÑегоÑии:</b></div><div style="text-align:left" class="box"><form action="search.php" method="get"><input maxlength="50" type="text" name="text" value=""/><br/><input type="hidden" name="c" value="2"/><input type="hidden" name="v" value="2"/><input type="submit" value="ÐайÑи"/></form></di ...[1344 bytes skipped]... | ||
http://cat.erwap.ru/out.php?i=57582&v=2 | HTTP/1.1 200 OK Connection: close Date: Mon, 25 Aug 2014 22:17:28 GMT Server: nginx/1.4.4 Content-Length: 974 Content-Type: text/html; charset=utf-8 X-Powered-By: PHP/5.3.28 | clean |
http://megamobil.ru/ | 200 OK Content-Length: 4238 Content-Type: text/html | clean |
http://megamobil.ru/images.php | 200 OK Content-Length: 3617 Content-Type: text/html | clean |
http://megamobil.ru/images/?d=128x160 | 200 OK Content-Length: 3509 Content-Type: text/html | clean |
http://megamobil.ru/images/../images.php | 200 OK Content-Length: 3596 Content-Type: text/html | clean |
http://megamobil.ru/images/../images/?d=128x160 | 200 OK Content-Length: 3543 Content-Type: text/html | clean |
http://megamobil.ru/images/../images/../images.php | 200 OK Content-Length: 3632 Content-Type: text/html | clean |
http://megamobil.ru/images/../images/../images/?d=128x160 | 200 OK Content-Length: 3534 Content-Type: text/html | clean |
http://megamobil.ru/images/../images/../images/../images.php | 200 OK Content-Length: 3598 Content-Type: text/html | clean |
http://megamobil.ru/images/../images/../images/../images/?d=128x160 | 200 OK Content-Length: 3534 Content-Type: text/html | clean |
http://megamobil.ru/images/../images/../images/../images/../images.php | 200 OK Content-Length: 3636 Content-Type: text/html | clean |
http://megamobil.ru/images/../images/../images/../images/../images/?d=128x160 | 200 OK Content-Length: 3536 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: cat.erwap.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 25 Aug 2014 22:17:27 GMT
Server: nginx/1.4.4
Content-Length: 2910
Content-Type: text/html; charset=utf-8
X-Powered-By: PHP/5.3.28
...2910 bytes of data.
GET / HTTP/1.1
Host: cat.erwap.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 25 Aug 2014 22:17:27 GMT
Server: nginx/1.4.4
Content-Length: 2910
Content-Type: text/html; charset=utf-8
X-Powered-By: PHP/5.3.28
...2910 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: cat.erwap.ru
Referer: http://www.google.com/search?q=cat.erwap.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: cat.erwap.ru
Referer: http://www.google.com/search?q=cat.erwap.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.