Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=fer.cs-mapping.com.ua
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://fer.cs-mapping.com.ua/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://fer.cs-mapping.com.ua/ | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sat, 17 May 2014 04:16:07 GMT Pragma: no-cache Location: http://cs-mapping.com.ua/ Server: Apache Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=61fcd405b4f58692351ea7af94442e4e; path=/ X-Powered-By: PHP/4.3.11 | clean |
http://cs-mapping.com.ua/ | 200 OK Content-Length: 43735 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: map-sources.cs-mapping.com.ua ...[11766 bytes skipped]... > <tr> <td class="smallfont"> <div style="PADDING-BOTTOM:0.2em;PADDING-LEFT:0.2em;PADDING-RIGHT:0.2em;PADDING-TOP:0.2em"> <table style="width:100%" border="0" cellspacing="0" cellpadding="3"><tr><td class="line" bgcolor="#49566D" onmouseover="this.style.backgroundColor='#53617C'" onmouseout="this.style.backgroundColor='#49566D'"> <a href="http://map-sources.cs-mapping.com.ua/" title="Map Sources" target="_blank"> Map Sources</a></td></tr></table> </div> </td> </tr> </tbody> </table> <table class="tborder" style="width:100%;BORDER-TOP-WIDTH:0px" cellspacing="0" cellpadding="0" align="center" border="0"> <tbody> <tr align="center"> <td class="table_title">Hosted Mappers</td> </tr> ...[42169 bytes skipped]... | ||
http://scripts.mycounter.com.ua/counter2.0.js | 200 OK Content-Length: 3543 Content-Type: application/javascript | clean |
http://fer.cs-mapping.com.ua/forum/ | HTTP/1.1 302 Found Connection: close Date: Sat, 17 May 2014 04:16:07 GMT Location: http://cs-mapping.com.ua/forum/ Server: Apache Content-Type: text/html X-Powered-By: PHP/4.3.11 | clean |
http://cs-mapping.com.ua/forum/ | 200 OK Content-Length: 75378 Content-Type: text/html | clean |
http://cs-mapping.com.ua/forum/clientscript/vbulletin_global.js | 200 OK Content-Length: 21591 Content-Type: application/x-javascript | clean |
http://fer.cs-mapping.com.ua/forum/clientscript/vbulletin_menu.js | 200 OK Content-Length: 13517 Content-Type: application/x-javascript | clean |
http://fer.cs-mapping.com.ua/forum/clientscript/vbulletin_md5.js | 200 OK Content-Length: 8970 Content-Type: application/x-javascript | clean |
http://fer.cs-mapping.com.ua/forum/register.php?s=7998579152c2637f2ebea29dca7165d3& | HTTP/1.1 302 Found Connection: close Date: Sat, 17 May 2014 04:16:09 GMT Location: http://cs-mapping.com.ua/forum/register.php?s=7998579152c2637f2ebea29dca7165d3& Server: Apache Content-Type: text/html X-Powered-By: PHP/4.3.11 | clean |
http://cs-mapping.com.ua/forum/register.php?s=7998579152c2637f2ebea29dca7165d3& | 200 OK Content-Length: 11396 Content-Type: text/html | clean |
http://cs-mapping.com.ua/forum/clientscript/vbulletin_menu.js | 200 OK Content-Length: 13517 Content-Type: application/x-javascript | clean |
http://fer.cs-mapping.com.ua/forum/sendmessage.php | HTTP/1.1 302 Found Connection: close Date: Sat, 17 May 2014 04:16:09 GMT Location: http://cs-mapping.com.ua/forum/sendmessage.php Server: Apache Content-Type: text/html X-Powered-By: PHP/4.3.11 | clean |
http://cs-mapping.com.ua/forum/sendmessage.php | 200 OK Content-Length: 14017 Content-Type: text/html | clean |
http://cs-mapping.com.ua/forum/clientscript/vbulletin_md5.js | 200 OK Content-Length: 8970 Content-Type: application/x-javascript | clean |
http://fer.cs-mapping.com.ua/forum/index.php?s=7998579152c2637f2ebea29dca7165d3& | HTTP/1.1 302 Found Connection: close Date: Sat, 17 May 2014 04:16:09 GMT Location: http://cs-mapping.com.ua/forum/index.php?s=7998579152c2637f2ebea29dca7165d3& Server: Apache Content-Type: text/html X-Powered-By: PHP/4.3.11 | clean |
http://cs-mapping.com.ua/forum/index.php?s=7998579152c2637f2ebea29dca7165d3& | 200 OK Content-Length: 75388 Content-Type: text/html | clean |
http://cs-mapping.com.ua/forum/index.php? | 200 OK Content-Length: 75388 Content-Type: text/html | clean |
http://cs-mapping.com.ua/forum/showthread.php?t=17042 | 200 OK Content-Length: 55701 Content-Type: text/html | clean |
http://cs-mapping.com.ua/lytebox/lytebox.js | 200 OK Content-Length: 22295 Content-Type: application/x-javascript | clean |
http://cs-mapping.com.ua/forum/forumdisplay.php?s=7998579152c2637f2ebea29dca7165d3&f=1 | 200 OK Content-Length: 40288 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: fer.cs-mapping.com.ua
Result:
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 17 May 2014 04:16:07 GMT
Pragma: no-cache
Location: http://cs-mapping.com.ua/
Server: Apache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=61fcd405b4f58692351ea7af94442e4e; path=/
X-Powered-By: PHP/4.3.11
GET / HTTP/1.1
Host: fer.cs-mapping.com.ua
Result:
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 17 May 2014 04:16:07 GMT
Pragma: no-cache
Location: http://cs-mapping.com.ua/
Server: Apache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=61fcd405b4f58692351ea7af94442e4e; path=/
X-Powered-By: PHP/4.3.11
Second query (visit from search engine):
GET / HTTP/1.1
Host: fer.cs-mapping.com.ua
Referer: http://www.google.com/search?q=fer.cs-mapping.com.ua
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: fer.cs-mapping.com.ua
Referer: http://www.google.com/search?q=fer.cs-mapping.com.ua
Result:
The result is similar to the first query. There are no suspicious redirects found.