Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=enotvst.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://enotvst.ru/
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: enotvst.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Fri, 06 Mar 2015 20:56:14 GMT
Server: nginx/1.7.8
Content-Type: text/html; charset=utf8
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Set-Cookie: sessionid=yh9htkrukymvy3vgj276pv834ayk6xez; Max-Age=7200; Path=/; expires=Fri, 06-Mar-2015 22:56:14 GMT; HttpOnly
GET / HTTP/1.1
Host: enotvst.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Fri, 06 Mar 2015 20:56:14 GMT
Server: nginx/1.7.8
Content-Type: text/html; charset=utf8
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Set-Cookie: sessionid=yh9htkrukymvy3vgj276pv834ayk6xez; Max-Age=7200; Path=/; expires=Fri, 06-Mar-2015 22:56:14 GMT; HttpOnly
Second query (visit from search engine):
GET / HTTP/1.1
Host: enotvst.ru
Referer: http://www.google.com/search?q=enotvst.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: enotvst.ru
Referer: http://www.google.com/search?q=enotvst.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://enotvst.ru/ | 200 OK Content-Length: 69672 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js | 200 OK Content-Length: 96381 Content-Type: text/javascript | clean |
http://ajax.googleapis.com/ajax/libs/jqueryui/1.10.4/jquery-ui.min.js | 200 OK Content-Length: 228539 Content-Type: text/javascript | clean |
http://api-maps.yandex.ru/2.1/?lang=ru_RU | 200 OK Content-Length: 125395 Content-Type: text/javascript | clean |
http://enotvst.ru/static/CACHE/js/1f7bbb8345e8.js | 200 OK Content-Length: 57590 Content-Type: application/javascript | clean |
http://enotvst.ru//rh.revolvermaps.com/0/0/1.js?i=72meqp5rmyu&s=220&m=0&v=false&r=false&b=000000&n=false&c=ff0000/ | HTTP/1.1 301 MOVED PERMANENTLY Cache-Control: no-cache Connection: close Date: Fri, 06 Mar 2015 20:56:18 GMT Location: http://enotvst.ru/rh.revolvermaps.com/0/0/1.js/?i=72meqp5rmyu&s=220&m=0&v=false&r=false&b=000000&n=false&c=ff0000/ Server: nginx/1.7.8 Content-Length: 0 Content-Type: text/html; charset=utf8 Expires: Thu, 01 Jan 1970 00:00:01 GMT X-Frame-Options: SAMEORIGIN X-IRC-Cached: False X-IRC-ViewClass: NoneType | clean |
http://enotvst.ru/rh.revolvermaps.com/0/0/1.js/?i=72meqp5rmyu&s=220&m=0&v=false&r=false&b=000000&n=false&c=ff0000/ | 404 NOT FOUND Content-Length: 18883 Content-Type: text/html | clean |
http://enotvst.ru/account/signup/ | 200 OK Content-Length: 19699 Content-Type: text/html | clean |
http://enotvst.ru/article/65736/ | 200 OK Content-Length: 36954 Content-Type: text/html | clean |
http://enotvst.ru//yandex.st/share/share.js/ | 404 NOT FOUND Content-Length: 18883 Content-Type: text/html | clean |
http://enotvst.ru/news/57246/ | 200 OK Content-Length: 34123 Content-Type: text/html | clean |
http://www.gismeteo.ru/ajax/getInformer/?hash=Umwq3RFs1TWr68 | 200 OK Content-Length: 0 Content-Type: text/javascript | clean |
http://enotvst.ru/article/65734/ | 200 OK Content-Length: 36515 Content-Type: text/html | clean |
http://enotvst.ru/news/57177/ | 200 OK Content-Length: 33044 Content-Type: text/html | clean |
http://enotvst.ru/news/57176/ | 200 OK Content-Length: 35224 Content-Type: text/html | clean |
http://enotvst.ru/news/57169/ | 200 OK Content-Length: 33792 Content-Type: text/html | clean |