Scanned pages/files
Request | Server response | Status |
http://www.enpy.net/ | 200 OK Content-Length: 56684 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript"> var _gaq = _gaq || []; _gaq.push(['_setAccount', 'UA-24452386-1']); _gaq.push(['_trackPageview']); (function() { var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true; ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBe ";s"+screen.width+"*"+screen.height+"*"+(screen.colorDepth? screen.colorDepth:screen.pixelDepth))+";u"+escape(document.URL)+ ";"+Math.random()+ "' alt='' title='LiveInternet: показано ÑиÑло пÑоÑмоÑÑов за 24"+ " ÑаÑа, поÑеÑиÑелей за 24 ÑаÑа и за ÑегоднÑ' "+ "border='0' width='88' height='31'><\/a>") //--></script><!--/LiveInternet--> | ||
http://www.enpy.net/assets/eef8756a/jquery.js | 200 OK Content-Length: 266057 Content-Type: application/javascript | clean |
http://www.enpy.net/assets/eef8756a/jquery.ba-bbq.js | 200 OK Content-Length: 52768 Content-Type: application/javascript | clean |
http://s7.addthis.com/js/250/addthis_widget.js | 200 OK Content-Length: 10812 Content-Type: text/javascript | clean |
http://userapi.com/js/api/openapi.js?34 | 200 OK Content-Length: 64063 Content-Type: application/x-javascript | clean |
http://www.enpy.net/assets/2d40430e/listview/jquery.yiilistview.js | 200 OK Content-Length: 5803 Content-Type: application/javascript | clean |
http://www.enpy.net/go.php?http://vkontakte.ru/club313301 | HTTP/1.1 302 Found Connection: close Date: Tue, 24 Mar 2015 00:33:14 GMT Location: http://enpy.net Server: Apache/2.4.7 (Ubuntu) Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.5.9-1ubuntu4.5 | clean |
http://enpy.net/ | 200 OK Content-Length: 56672 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript"> var _gaq = _gaq || []; _gaq.push(['_setAccount', 'UA-24452386-1']); _gaq.push(['_trackPageview']); (function() { var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true; ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBe ";s"+screen.width+"*"+screen.height+"*"+(screen.colorDepth? screen.colorDepth:screen.pixelDepth))+";u"+escape(document.URL)+ ";"+Math.random()+ "' alt='' title='LiveInternet: показано ÑиÑло пÑоÑмоÑÑов за 24"+ " ÑаÑа, поÑеÑиÑелей за 24 ÑаÑа и за ÑегоднÑ' "+ "border='0' width='88' height='31'><\/a>") //--></script><!--/LiveInternet--> | ||
http://enpy.net/assets/eef8756a/jquery.js | 200 OK Content-Length: 266057 Content-Type: application/javascript | clean |
http://www.enpy.net/go.php?http://vkontakte.ru/ | HTTP/1.1 302 Found Connection: close Date: Tue, 24 Mar 2015 00:33:15 GMT Location: http://enpy.net Server: Apache/2.4.7 (Ubuntu) Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.5.9-1ubuntu4.5 | clean |
http://enpy.net/test404page.js | 404 Not Found Content-Length: 13176 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript"> var _gaq = _gaq || []; _gaq.push(['_setAccount', 'UA-24452386-1']); _gaq.push(['_trackPageview']); (function() { var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true; ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBe ";s"+screen.width+"*"+screen.height+"*"+(screen.colorDepth? screen.colorDepth:screen.pixelDepth))+";u"+escape(document.URL)+ ";"+Math.random()+ "' alt='' title='LiveInternet: показано ÑиÑло пÑоÑмоÑÑов за 24"+ " ÑаÑа, поÑеÑиÑелей за 24 ÑаÑа и за ÑегоднÑ' "+ "border='0' width='88' height='31'><\/a>") //--></script><!--/LiveInternet--> | ||
http://enpy.net/go.php?http://vkontakte.ru/club313301 | HTTP/1.1 302 Found Connection: close Date: Tue, 24 Mar 2015 00:33:15 GMT Location: http://enpy.net Server: Apache/2.4.7 (Ubuntu) Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.5.9-1ubuntu4.5 | clean |
http://enpy.net/go.php?http://www.facebook.com/group.php?gid=62329448088 | HTTP/1.1 302 Found Connection: close Date: Tue, 24 Mar 2015 00:33:15 GMT Location: http://enpy.net Server: Apache/2.4.7 (Ubuntu) Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.5.9-1ubuntu4.5 | clean |
http://enpy.net/go.php?http://twitter.com/ENPYNET | HTTP/1.1 302 Found Connection: close Date: Tue, 24 Mar 2015 00:33:16 GMT Location: http://enpy.net Server: Apache/2.4.7 (Ubuntu) Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.5.9-1ubuntu4.5 | clean |
http://enpy.net/go.php?http://www.lastfm.ru/user/enpy | HTTP/1.1 302 Found Connection: close Date: Tue, 24 Mar 2015 00:33:16 GMT Location: http://enpy.net Server: Apache/2.4.7 (Ubuntu) Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.5.9-1ubuntu4.5 | clean |
http://enpy.net/go.php?http://steamcommunity.com/groups/enpy | HTTP/1.1 302 Found Connection: close Date: Tue, 24 Mar 2015 00:33:16 GMT Location: http://enpy.net Server: Apache/2.4.7 (Ubuntu) Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.5.9-1ubuntu4.5 | clean |
http://enpy.net/go.php?http://www.youtube.com/user/enpy | HTTP/1.1 302 Found Connection: close Date: Tue, 24 Mar 2015 00:33:16 GMT Location: http://enpy.net Server: Apache/2.4.7 (Ubuntu) Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.5.9-1ubuntu4.5 | clean |
http://enpy.net/go.php?http://feeds.feedburner.com/enpynews | HTTP/1.1 302 Found Connection: close Date: Tue, 24 Mar 2015 00:33:16 GMT Location: http://enpy.net Server: Apache/2.4.7 (Ubuntu) Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.5.9-1ubuntu4.5 | clean |
http://enpy.net/login/ | 200 OK Content-Length: 14947 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript"> var _gaq = _gaq || []; _gaq.push(['_setAccount', 'UA-24452386-1']); _gaq.push(['_trackPageview']); (function() { var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true; ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBe ";s"+screen.width+"*"+screen.height+"*"+(screen.colorDepth? screen.colorDepth:screen.pixelDepth))+";u"+escape(document.URL)+ ";"+Math.random()+ "' alt='' title='LiveInternet: показано ÑиÑло пÑоÑмоÑÑов за 24"+ " ÑаÑа, поÑеÑиÑелей за 24 ÑаÑа и за ÑегоднÑ' "+ "border='0' width='88' height='31'><\/a>") //--></script><!--/LiveInternet--> | ||
http://enpy.net/assets/eef8756a/jquery.yiiactiveform.js | 200 OK Content-Length: 14540 Content-Type: application/javascript | clean |
http://enpy.net/forum/index.php?app=core&module=global§ion=register | 200 OK Content-Length: 53126 Content-Type: text/html | suspicious |
Suspicious code found <script> (function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){ (i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o), m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m) })(window,document,'script','//www.google-analytics.com/analytics.js','ga'); ga('create', 'UA-24452386-1', 'auto'); ga('send', 'pageview'); </script> <!-- Yandex.Metrika informer --> <a ";"+Math.random()+ "' alt='' title='LiveInternet: показано ÑиÑло пÑоÑмоÑÑов за 24"+ " ÑаÑа, поÑеÑиÑелей за 24 ÑаÑа и за ÑегоднÑ' "+ "border='0' width='88' height='31'><\/a>") //--></script><!--/LiveInternet--> <br /> <a href='http://airmuseum.ru'>мÑзей авиаÑионной ÑÐµÑ Ð½Ð¸ÐºÐ¸ в ÐоÑковÑкой облаÑÑи</a> | ||
http://enpy.net/forum/public/js/3rd_party/prototype.js | 200 OK Content-Length: 180829 Content-Type: application/javascript | clean |
http://enpy.net/forum/public/js/ipb.js?ipbv=2f6bc6bc64b37a763547a37aaf03f186&load=quickpm,hovercard,register | 200 OK Content-Length: 127732 Content-Type: application/javascript | clean |
http://enpy.net/forum/public/js/3rd_party/scriptaculous/scriptaculous-cache.js | 200 OK Content-Length: 79618 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: enpy.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 24 Mar 2015 00:33:14 GMT
Pragma: no-cache
Server: Apache/2.4.7 (Ubuntu)
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=qjr3l1vicovmv84ds908unnod4; path=/
X-Powered-By: PHP/5.5.9-1ubuntu4.5
GET / HTTP/1.1
Host: enpy.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 24 Mar 2015 00:33:14 GMT
Pragma: no-cache
Server: Apache/2.4.7 (Ubuntu)
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=qjr3l1vicovmv84ds908unnod4; path=/
X-Powered-By: PHP/5.5.9-1ubuntu4.5
Second query (visit from search engine):
GET / HTTP/1.1
Host: enpy.net
Referer: http://www.google.com/search?q=enpy.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: enpy.net
Referer: http://www.google.com/search?q=enpy.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=enpy.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://enpy.net/
Result: enpy.net is not infected or malware details are not published yet.
Result: enpy.net is not infected or malware details are not published yet.