Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=fakazaka.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://fakazaka.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://fakazaka.com/ | 200 OK Content-Length: 48067 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: pro100sex.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=windows-1251" /> <title>FakaZaka</title> <meta name="description" content="Fakazaka.com - ãîðÿ÷èå íîâîñòè îò ëþáèòåëåé è íå òîëüêî !" /> <meta name="k ...[4338 bytes skipped]... | ||
http://fakazaka.com/engine/classes/js/jquery.js | 200 OK Content-Length: 92793 Content-Type: application/javascript | clean |
http://fakazaka.com/engine/classes/js/jqueryui.js | 200 OK Content-Length: 64903 Content-Type: application/javascript | clean |
http://fakazaka.com/engine/classes/js/dle_js.js | 200 OK Content-Length: 22398 Content-Type: application/javascript | clean |
http://nrged.com/43o7042006/d5.js | 200 OK Content-Length: 8226 Content-Type: application/javascript | clean |
http://nrged.com/a4b01e/f43afc365ef/39.js | 200 OK Content-Length: 8226 Content-Type: application/javascript | clean |
http://nrged.com/91t/55fc/7e2eedc55.js | 200 OK Content-Length: 8226 Content-Type: application/javascript | clean |
http://www.znews.su/user/2003/fakazaka.com_inf_2.php | 200 OK Content-Length: 2902 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: fakazaka.com var traff_style_photo = document.getElementById('fakazaka.com_nas_2_xxx_news'); if(traff_style_photo)traff_style_photo.innerHTML='<center><table cellspacing=3 width=170px style="border: 0px solid #;"><tr><td align=center style="padding: 0px; border: 0px solid #;" valign=top ><a href=http://www.znews.su/go_slin.php?id=48677&sour=2003 target=_blank><img src=http://www.znews.su/img_news/150/981825215741991936.jpg style= "width: 150px; border: 1px solid #000000;" ...[2821 bytes skipped]... | ||
http://www.znews.su/go_slin.php?id=48677&sour=2003 | HTTP/1.1 302 Found Connection: close Date: Fri, 12 Sep 2014 11:23:27 GMT Location: /go_news.php?id=2003&news=48677 Server: nginx/1.1.19 Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.3.10-1ubuntu3.14 | clean |
http://www.znews.su/go_news.php?id=2003&news=48677 | 200 OK Content-Length: 91311 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: toget.ru <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=windows-1251" /> <title>Ñàìîå ïîïóëÿðíûå íîâîñòè - ZNews</title> <meta name="description" content="Ñàìîå ïîïóëÿðíûå íîâîñòè - ZNews" /> <meta name="key ...[4425 bytes skipped]... | ||
http://www.znews.su/user/1787/znews.su_inf_2.php | 200 OK Content-Length: 1919 Content-Type: text/html | clean |
http://www.znews.su/go_news.php?id=1787&news=45808&no_x=1 | 200 OK Content-Length: 81248 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: toget.ru <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=windows-1251" /> <title>Ñàìîå ïîïóëÿðíûå íîâîñòè - ZNews</title> <meta name="description" content="Ñàìîå ïîïóëÿðíûå íîâîñòè - ZNews" /> <meta name="key ...[4425 bytes skipped]... | ||
http://bestevernews.com/viewt.js | 200 OK Content-Length: 20987 Content-Type: application/x-javascript | clean |
http://lookfornews.net/viewt.js | 200 OK Content-Length: 20987 Content-Type: application/x-javascript | clean |
http://www.znews.su/user/1787/znews.su_inf_4.php | 200 OK Content-Length: 9774 Content-Type: text/html | clean |
http://www.znews.su/go_slin.php?id=46052&sour=1787 | HTTP/1.1 302 Found Connection: close Date: Fri, 12 Sep 2014 11:23:30 GMT Location: /go_news.php?id=1787&news=46052 Server: nginx/1.1.19 Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.3.10-1ubuntu3.14 | clean |
http://www.znews.su/go_news.php?id=1787&news=46052 | 200 OK Content-Length: 91383 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: toget.ru <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=windows-1251" /> <title>Ñàìîå ïîïóëÿðíûå íîâîñòè - ZNews</title> <meta name="description" content="Ñàìîå ïîïóëÿðíûå íîâîñòè - ZNews" /> <meta name="key ...[4425 bytes skipped]... |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: fakazaka.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 12 Sep 2014 11:23:27 GMT
Pragma: no-cache
Server: nginx/1.2.1
Vary: Accept-Encoding
Content-Type: text/html; charset=koi8-r
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=cdv21qp0kt6krhhp99hdnefve4; path=/; domain=.fakazaka.com; HttpOnly
X-Powered-By: PHP/5.4.4-14+deb7u10
GET / HTTP/1.1
Host: fakazaka.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 12 Sep 2014 11:23:27 GMT
Pragma: no-cache
Server: nginx/1.2.1
Vary: Accept-Encoding
Content-Type: text/html; charset=koi8-r
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=cdv21qp0kt6krhhp99hdnefve4; path=/; domain=.fakazaka.com; HttpOnly
X-Powered-By: PHP/5.4.4-14+deb7u10
Second query (visit from search engine):
GET / HTTP/1.1
Host: fakazaka.com
Referer: http://www.google.com/search?q=fakazaka.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: fakazaka.com
Referer: http://www.google.com/search?q=fakazaka.com
Result:
The result is similar to the first query. There are no suspicious redirects found.