Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=edu-oren.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://edu-oren.ru/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://edu-oren.ru/ | 200 OK Content-Length: 26414 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: do-wtu.ru <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" lang="ru" xml:lang="ru" dir="ltr" > <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <link rel="shortcut icon" href="/misc/favicon.ico" type="image ...[4391 bytes skipped]... | ||
http://edu-oren.ru/misc/jquery.js?d | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://edu-oren.ru/misc/drupal.js?d | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://edu-oren.ru/sites/default/files/languages/ru_b77146867f6de8533acee5ff136b24cf.js?d | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://edu-oren.ru/sites/all/modules/gallery_assist_lightboxes/lightboxes/thickbox/thickbox.js?d | 200 OK Content-Length: 14777 Content-Type: application/x-javascript | clean |
http://edu-oren.ru/sites/all/modules/calendar_block-6.x-2.2/calendar_block/calendar_block.js?d | 200 OK Content-Length: 4485 Content-Type: application/x-javascript | clean |
http://edu-oren.ru/sites/all/modules/dhtml_menu/dhtml_menu.js?d | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://edu-oren.ru/sites/all/themes/cdo2/script.js?d | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://edu-oren.ru/sites/all/modules/google_analytics/googleanalytics.js?d | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://edu-oren.ru/?q=stranitsa/o-proekte | 200 OK Content-Length: 28252 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: do-wtu.ru <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" lang="ru" xml:lang="ru" dir="ltr" > <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <link rel="shortcut icon" href="/misc/favicon.ico" type="image ...[4391 bytes skipped]... | ||
http://edu-oren.ru/?q=stranitsa/obrazovatelnye-uchrezhdeniya | 200 OK Content-Length: 34240 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: do-wtu.ru <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" lang="ru" xml:lang="ru" dir="ltr" > <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <link rel="shortcut icon" href="/misc/favicon.ico" type="image ...[4391 bytes skipped]... | ||
http://edu-oren.ru/?q=razdel | 200 OK Content-Length: 31452 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: do-wtu.ru <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" lang="ru" xml:lang="ru" dir="ltr" > <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <link rel="alternate" type="application/rss+xml" title="Front ...[4401 bytes skipped]... | ||
http://edu-oren.ru/?q=stranitsa/seminary-i-treningi | 200 OK Content-Length: 21903 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: do-wtu.ru <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" lang="ru" xml:lang="ru" dir="ltr" > <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <link rel="shortcut icon" href="/misc/favicon.ico" type="image ...[4391 bytes skipped]... | ||
http://edu-oren.ru/?q=stranitsa/vystavki | 200 OK Content-Length: 32452 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: do-wtu.ru <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" lang="ru" xml:lang="ru" dir="ltr" > <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <link rel="shortcut icon" href="/misc/favicon.ico" type="image ...[4391 bytes skipped]... | ||
http://edu-oren.ru/?q=razdel/stati-0 | 200 OK Content-Length: 20877 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: do-wtu.ru <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" lang="ru" xml:lang="ru" dir="ltr" > <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <link rel="shortcut icon" href="/misc/favicon.ico" type="image ...[4391 bytes skipped]... |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: edu-oren.ru
Result:
HTTP/1.1 200 OK
Cache-Control: store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Connection: close
Date: Sun, 08 Mar 2015 11:39:12 GMT
Server: nginx/1.6.2
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Sun, 08 Mar 2015 11:39:11 GMT
Set-Cookie: SESS5579605ccae1c50c1cb3d517c68dfe88=9c3684e55f5c040cec19fa8ee4a268e3; expires=Tue, 31-Mar-2015 15:12:31 GMT; path=/
X-Powered-By: PHP/5.3.29
GET / HTTP/1.1
Host: edu-oren.ru
Result:
HTTP/1.1 200 OK
Cache-Control: store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Connection: close
Date: Sun, 08 Mar 2015 11:39:12 GMT
Server: nginx/1.6.2
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Sun, 08 Mar 2015 11:39:11 GMT
Set-Cookie: SESS5579605ccae1c50c1cb3d517c68dfe88=9c3684e55f5c040cec19fa8ee4a268e3; expires=Tue, 31-Mar-2015 15:12:31 GMT; path=/
X-Powered-By: PHP/5.3.29
Second query (visit from search engine):
GET / HTTP/1.1
Host: edu-oren.ru
Referer: http://www.google.com/search?q=edu-oren.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: edu-oren.ru
Referer: http://www.google.com/search?q=edu-oren.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.