Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=clubberry.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://clubberry.org/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://clubberry.org/ | 200 OK Content-Length: 32737 Content-Type: text/html | clean |
http://linkodir.ru/5uxfljc60bd50gdlq2n95g1bl6otjsd1 | 200 OK Content-Length: 8456 Content-Type: text/javascript | clean |
http://s70.ucoz.net/src/jquery-1.10.2.js | 200 OK Content-Length: 100337 Content-Type: text/javascript | clean |
http://s70.ucoz.net/src/ulightbox/ulightbox.js | 200 OK Content-Length: 22097 Content-Type: text/javascript | clean |
http://s70.ucoz.net/src/uwnd.js?2 | 200 OK Content-Length: 228554 Content-Type: text/javascript | clean |
http://viewclc.com/e4f6e87320a572/203260dfe.js | 200 OK Content-Length: 8468 Content-Type: application/javascript | clean |
http://office.partnerearn.net/getrotatorbannerlist?id=19987&refid=1b245da0dc6649fc110671a1085b5f8a | HTTP/1.1 302 Found Connection: close Date: Fri, 12 Dec 2014 21:48:37 GMT Location: http://office.partnerearn.net:9999/?id=19987&refid=1b245da0dc6649fc110671a1085b5f8a Server: nginx/1.5.6 Content-Length: 359 Content-Type: text/html; charset=iso-8859-1 | clean |
http://office.partnerearn.net:9999/?id=19987&refid=1b245da0dc6649fc110671a1085b5f8a | 200 OK Content-Length: 235 Content-Type: text/html | clean |
http://office.partnerearn.net:9999/?banner_click=true&banner_id=34717&ref=1b245da0dc6649fc110671a1085b5f8a | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 12 Dec 2014 21:48:37 GMT Location: http://directoff.me?1b245da0dc6649fc110671a1085b5f8a&banner=95595258ccedb3f8183500f93cd36f5a Server: nginx/1.5.6 Set-Cookie: express.sid=s%3AIBahHjhKPNBHHAqyeYCSYyM4mXttP4aj.FhhcNbt6bJ5AcdzY0tDmlKmSlyB%2BAF5Y9HI7Rbp4PoY; Path=/; HttpOnly X-Powered-By: Express | clean |
http://directoff.me?1b245da0dc6649fc110671a1085b5f8a&banner=95595258ccedb3f8183500f93cd36f5a/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 12 Dec 2014 22:40:12 GMT Location: http://www.directoff.me/?1b245da0dc6649fc110671a1085b5f8a&banner=95595258ccedb3f8183500f93cd36f5a/ Server: nginx/1.6.2 Content-Length: 184 Content-Type: text/html | clean |
http://www.directoff.me/?1b245da0dc6649fc110671a1085b5f8a&banner=95595258ccedb3f8183500f93cd36f5a/ | HTTP/1.1 302 Found Connection: close Date: Fri, 12 Dec 2014 22:40:13 GMT Location: http://office.partnerearn.net:9998/www.directoff.me/index.php?1b245da0dc6649fc110671a1085b5f8a&banner=95595258ccedb3f8183500f93cd36f5a/ Server: nginx/1.6.2 Content-Length: 404 Content-Type: text/html; charset=iso-8859-1 | clean |
http://office.partnerearn.net:9998/www.directoff.me/index.php?1b245da0dc6649fc110671a1085b5f8a&banner=95595258ccedb3f8183500f93cd36f5a/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 12 Dec 2014 21:48:38 GMT Location: http://azartgaming.com/registration.html?1b245da0dc6649fc110671a1085b5f8a=&banner=95595258ccedb3f8183500f93cd36f5a%2F Server: nginx/1.5.6 Set-Cookie: express.sid=s%3AHqZN_fkMTT3h6MSPxMUM5cy5OG1nr3eF.eV4H1fa4faeNneXNSmnETZHbJPNBDfbKFQhHbgG5wwg; Path=/; HttpOnly X-Powered-By: Express | clean |
http://azartgaming.com/registration.html?1b245da0dc6649fc110671a1085b5f8a=&banner=95595258ccedb3f8183500f93cd36f5a%2f | HTTP/1.1 302 Found Connection: close Date: Fri, 12 Dec 2014 21:48:35 GMT Location: http://azartgaming.com/registration.html?1b245da0dc6649fc110671a1085b5f8a&banner=95595258ccedb3f8183500f93cd36f5a%2f Server: nginx Content-Length: 0 Set-Cookie: route=3ae2fed0965e5449b8f387b74efdcea2 | clean |
http://azartgaming.com/registration.html?1b245da0dc6649fc110671a1085b5f8a&banner=95595258ccedb3f8183500f93cd36f5a%2f | HTTP/1.1 302 Found Connection: close Date: Fri, 12 Dec 2014 21:48:36 GMT Location: http://azartgaming.com/registration.html?banner=95595258ccedb3f8183500f93cd36f5a%2f Server: nginx Content-Length: 0 Set-Cookie: route=e658591628b78e7f1ef7a79bf4d3156e Set-Cookie: params="1b245da0dc6649fc110671a1085b5f8a&banner=95595258ccedb3f8183500f93cd36f5a%2f"; Version=1; Max-Age=31536000; Expires=Sat, 12-Dec-2015 21:48:36 GMT; Path=/ Set-Cookie: referer=""; Expires=Sat, 12-Dec-2015 21:48:36 GMT; Path=/ | clean |
http://azartgaming.com/test404page.js | 404 Not Found Content-Length: 1293 Content-Type: text/html | clean |
http://azartgaming.com/js/jquery.1.8.3.min.js | 200 OK Content-Length: 93636 Content-Type: application/javascript | clean |
http://azartgaming.com/js/html5.js | 200 OK Content-Length: 3854 Content-Type: application/javascript | clean |
http://azartgaming.com/ | HTTP/1.1 200 OK Connection: close Date: Fri, 12 Dec 2014 21:48:36 GMT Server: nginx Content-Type: text/html;charset=UTF-8 Set-Cookie: route=3ae2fed0965e5449b8f387b74efdcea2 Set-Cookie: JSESSIONID=DA9A6FF88B7F0AD532E9F2E48A592720.azart; Path=/; HttpOnly | clean |
http://azartgaming.com/noscript.html | 200 OK Content-Length: 1336 Content-Type: text/html | clean |
http://azartgaming.com/a4j/g/3_3_3.CR1org/richfaces/renderkit/html/scripts/skinning.js.html | 200 OK Content-Length: 1224 Content-Type: text/javascript | clean |
http://office.partnerearn.net/getrotatorbannerlist?id=19989&refid=1b245da0dc6649fc110671a1085b5f8a | HTTP/1.1 302 Found Connection: close Date: Fri, 12 Dec 2014 21:48:40 GMT Location: http://office.partnerearn.net:9999/?id=19989&refid=1b245da0dc6649fc110671a1085b5f8a Server: nginx/1.5.6 Content-Length: 359 Content-Type: text/html; charset=iso-8859-1 | clean |
http://office.partnerearn.net:9999/?id=19989&refid=1b245da0dc6649fc110671a1085b5f8a | 200 OK Content-Length: 235 Content-Type: text/html | clean |
http://office.partnerearn.net:9999/?banner_click=true&banner_id=34719&ref=1b245da0dc6649fc110671a1085b5f8a | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 12 Dec 2014 21:48:40 GMT Location: http://www.pravda24.net/?1b245da0dc6649fc110671a1085b5f8a&banner=f2a81b73e23d0f0496ea3a14cdfbb4c7 Server: nginx/1.5.6 Set-Cookie: express.sid=s%3AP_C6eWEzz7FSQvVj2HUtHYeP1REFux4j.ZMQ%2B4le56mGmiNB9%2B4gtQ9tjsCS0UNNZswSB6KGNyZg; Path=/; HttpOnly X-Powered-By: Express | clean |
http://www.pravda24.net/?1b245da0dc6649fc110671a1085b5f8a&banner=f2a81b73e23d0f0496ea3a14cdfbb4c7 | 200 OK Content-Length: 44014 Content-Type: text/html | suspicious |
Suspicious code found <div class="partner-teasers"> <span sect_id="9" id="sect_id"></span> <div class="block_item " id="i_23_id_9"> <div class="block-col "> <!-- ÐедомоÑÑи: новÑе --> <div class="teaser-box"> <div class="teaser-top"> <div class="teaser-logo"><img src="img/d/teaser-ved.png" alt="ÐедомоÑÑи"></div> <div class="tea </table> </center> <!-- AdRiver code END --> </div> <!-- /ÐÑайм: новÑе --> </div> </div> <!-- / ÐовоÑÑи паÑÑнеÑов по id веÑÑ Ð½ÐµÐ¹ ÑÑбÑики --> </div> | ||
http://ajax.googleapis.com/ajax/libs/jquery/2.0.3/jquery.min.js | 200 OK Content-Length: 83606 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: clubberry.org
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Cache-Control: no-store
Cache-Control: private
Connection: close
Date: Fri, 12 Dec 2014 21:48:31 GMT
Pragma: no-cache
Server: uServ/3.2.2
Content-Type: text/html; charset=UTF-8
Set-Cookie: 8clubberryuCoz=; path=/; expires=Wed, 12-Dec-2012 21:48:32 GMT; domain=.clubberry.org;
Set-Cookie: 8clubberryuzll=1418420912; path=/; expires=Sat, 12-Dec-2015 21:48:32 GMT; domain=.clubberry.org;
Set-Cookie: 8clubberryuCoz=; path=/; expires=Wed, 12-Dec-2012 21:48:32 GMT; domain=.clubberry.org;
Set-Cookie: 8clubberryuCoz=; path=/; expires=Wed, 12-Dec-2012 21:48:32 GMT; domain=.clubberry.org;
GET / HTTP/1.1
Host: clubberry.org
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Cache-Control: no-store
Cache-Control: private
Connection: close
Date: Fri, 12 Dec 2014 21:48:31 GMT
Pragma: no-cache
Server: uServ/3.2.2
Content-Type: text/html; charset=UTF-8
Set-Cookie: 8clubberryuCoz=; path=/; expires=Wed, 12-Dec-2012 21:48:32 GMT; domain=.clubberry.org;
Set-Cookie: 8clubberryuzll=1418420912; path=/; expires=Sat, 12-Dec-2015 21:48:32 GMT; domain=.clubberry.org;
Set-Cookie: 8clubberryuCoz=; path=/; expires=Wed, 12-Dec-2012 21:48:32 GMT; domain=.clubberry.org;
Set-Cookie: 8clubberryuCoz=; path=/; expires=Wed, 12-Dec-2012 21:48:32 GMT; domain=.clubberry.org;
Second query (visit from search engine):
GET / HTTP/1.1
Host: clubberry.org
Referer: http://www.google.com/search?q=clubberry.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: clubberry.org
Referer: http://www.google.com/search?q=clubberry.org
Result:
The result is similar to the first query. There are no suspicious redirects found.