Scanned pages/files
| Request | Server response | Status |
http://cybercrime-tracker.net/ | 200 OK Content-Length: 32267 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: buggie.yzi.me <!DOCTYPE html PUBLIC '-//W3C//DTD XHTML 1.0 Strict//EN' 'http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd'> <html xmlns='http://www.w3.org/1999/xhtml'> <head> <meta http-equiv='Content-Type' content='text/html; charset=utf-8' /> <meta http-equiv='Content-Language' content='en' /> <title>CyberCrime</title> <meta name='description' cont ...[4244 bytes skipped]... | ||
http://cybercrime-tracker.net/lightbox/js/jquery-1.7.2.min.js | 200 OK Content-Length: 94840 Content-Type: application/javascript | clean |
http://cybercrime-tracker.net/lightbox/js/lightbox.js | 200 OK Content-Length: 11675 Content-Type: application/javascript | clean |
http://cybercrime-tracker.net/rss.xml | 200 OK Content-Length: 4138 Content-Type: application/xml | suspicious |
Page code contains blacklisted domain: buggie.yzi.me ...[3787 bytes skipped]... lt;/link> <pubDate>09-10-2014</pubDate> <description>Alina</description> </item> <item> <title>3qwajq5p5pfsi3sw.onion/~ogbeni1/one/admin.php?m=login</title> <link>http://cybercrime-tracker.net/index.php</link> <pubDate>08-10-2014</pubDate> <description>ZeuS</description> </item> <item> <title>buggie.yzi.me/1/1/admin.php</title> <link>http://cybercrime-tracker.net/index.php</link> <pubDate>08-10-2014</pubDate> <description>Pony</description> </item> <item> <title>divdal2.no-ip.org/pony/admin.php</title> <link>http://cybercrime-tracker.net/index.php</link> <pubDate>08-10-2014</pubDate> <description>Pony</description> </item> <item> ...[1307 bytes skipped]... | ||
http://cybercrime-tracker.net/test404page.js | 404 Not Found Content-Length: 6076 Content-Type: text/html | clean |
http://cybercrime-tracker.net/all.php | 200 OK Content-Length: 226321 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: nottheskynews.com vellalink.com/admin.php<br />tuxuu.u-gu.ru/index.php<br />qrnju.dopitter.info/stat/admin.php<br />zboyz657.info/nolock/control.php<br />udhisparty.net/control.php<br />traff-hits433.info/ub/control.php<br />validatoronmee.ru:8080/pages/bmfoaqdzhuclgqgreudq9.php<br />www2.mcgregart.com/admin/<br />hgjfjg55555555555555.nl.ai/admin/<br />findervid.com/admin/<br />vehiclefind24.com/admin/<br /&g ...[4206 bytes skipped]... | ||
http://cybercrime-tracker.net/index.php | 200 OK Content-Length: 32267 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: buggie.yzi.me <!DOCTYPE html PUBLIC '-//W3C//DTD XHTML 1.0 Strict//EN' 'http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd'> <html xmlns='http://www.w3.org/1999/xhtml'> <head> <meta http-equiv='Content-Type' content='text/html; charset=utf-8' /> <meta http-equiv='Content-Language' content='en' /> <title>CyberCrime</title> <meta name='description' cont ...[4244 bytes skipped]... | ||
http://cybercrime-tracker.net/zbox.php | 200 OK Content-Length: 300710 Content-Type: text/html | clean |
https://www.google.com/jsapi | 200 OK Content-Length: 24553 Content-Type: text/javascript | clean |
http://cybercrime-tracker.net/submit.php | 200 OK Content-Length: 7308 Content-Type: text/html | clean |
http://cybercrime-tracker.net/scripts/gen_validatorv31.js | 200 OK Content-Length: 18847 Content-Type: application/javascript | clean |
http://cybercrime-tracker.net/rss.xml?PHPSESSID=3vmrktt7nor1abune1b2v9i7j5 | 200 OK Content-Length: 4138 Content-Type: application/xml | suspicious |
Page code contains blacklisted domain: buggie.yzi.me ...[3787 bytes skipped]... lt;/link> <pubDate>09-10-2014</pubDate> <description>Alina</description> </item> <item> <title>3qwajq5p5pfsi3sw.onion/~ogbeni1/one/admin.php?m=login</title> <link>http://cybercrime-tracker.net/index.php</link> <pubDate>08-10-2014</pubDate> <description>ZeuS</description> </item> <item> <title>buggie.yzi.me/1/1/admin.php</title> <link>http://cybercrime-tracker.net/index.php</link> <pubDate>08-10-2014</pubDate> <description>Pony</description> </item> <item> <title>divdal2.no-ip.org/pony/admin.php</title> <link>http://cybercrime-tracker.net/index.php</link> <pubDate>08-10-2014</pubDate> <description>Pony</description> </item> <item> ...[1307 bytes skipped]... | ||
http://cybercrime-tracker.net/all.php?PHPSESSID=3vmrktt7nor1abune1b2v9i7j5 | 200 OK Content-Length: 226321 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: nottheskynews.com vellalink.com/admin.php<br />tuxuu.u-gu.ru/index.php<br />qrnju.dopitter.info/stat/admin.php<br />zboyz657.info/nolock/control.php<br />udhisparty.net/control.php<br />traff-hits433.info/ub/control.php<br />validatoronmee.ru:8080/pages/bmfoaqdzhuclgqgreudq9.php<br />www2.mcgregart.com/admin/<br />hgjfjg55555555555555.nl.ai/admin/<br />findervid.com/admin/<br />vehiclefind24.com/admin/<br /&g ...[4206 bytes skipped]... | ||
http://cybercrime-tracker.net/index.php?PHPSESSID=3vmrktt7nor1abune1b2v9i7j5 | 200 OK Content-Length: 32267 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: buggie.yzi.me <!DOCTYPE html PUBLIC '-//W3C//DTD XHTML 1.0 Strict//EN' 'http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd'> <html xmlns='http://www.w3.org/1999/xhtml'> <head> <meta http-equiv='Content-Type' content='text/html; charset=utf-8' /> <meta http-equiv='Content-Language' content='en' /> <title>CyberCrime</title> <meta name='description' cont ...[4244 bytes skipped]... | ||
http://cybercrime-tracker.net/tools.php | 200 OK Content-Length: 9158 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: cybercrime-tracker.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 10 Oct 2014 20:04:13 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: mailplanBAK=R2555597130; path=/; expires=Fri, 10-Oct-2014 21:05:16 GMT
Set-Cookie: mailplan=R243381925; path=/; expires=Fri, 10-Oct-2014 21:12:27 GMT
X-Powered-By: PHP/5.3.28
GET / HTTP/1.1
Host: cybercrime-tracker.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 10 Oct 2014 20:04:13 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: mailplanBAK=R2555597130; path=/; expires=Fri, 10-Oct-2014 21:05:16 GMT
Set-Cookie: mailplan=R243381925; path=/; expires=Fri, 10-Oct-2014 21:12:27 GMT
X-Powered-By: PHP/5.3.28
Second query (visit from search engine):
GET / HTTP/1.1
Host: cybercrime-tracker.net
Referer: http://www.google.com/search?q=cybercrime-tracker.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: cybercrime-tracker.net
Referer: http://www.google.com/search?q=cybercrime-tracker.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=cybercrime-tracker.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://cybercrime-tracker.net/
Result: cybercrime-tracker.net is not infected or malware details are not published yet.
Result: cybercrime-tracker.net is not infected or malware details are not published yet.