Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=fifaxa.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: fifaxa.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 25 Dec 2014 17:46:22 GMT
Pragma: no-cache
Server: Apache/2.2.22 (Debian)
Vary: Accept-Encoding
Content-Type: text/html; charset=WINDOWS-1251
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=2ecabd331b500ccae3f77608431079e5; path=/
X-Powered-By: PHP/5.4.35-0+deb7u2
GET / HTTP/1.1
Host: fifaxa.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 25 Dec 2014 17:46:22 GMT
Pragma: no-cache
Server: Apache/2.2.22 (Debian)
Vary: Accept-Encoding
Content-Type: text/html; charset=WINDOWS-1251
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=2ecabd331b500ccae3f77608431079e5; path=/
X-Powered-By: PHP/5.4.35-0+deb7u2
Second query (visit from search engine):
GET / HTTP/1.1
Host: fifaxa.com
Referer: http://www.google.com/search?q=fifaxa.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: fifaxa.com
Referer: http://www.google.com/search?q=fifaxa.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://fifaxa.com/ | 200 OK Content-Length: 75273 Content-Type: text/html | clean |
http://nash9porevo.com/r.php?l=http%3A%2F%2Fnash9porevo.com%2F?a=v264p2641315u2w4t2w403m244l2u266q233b4w274u2d4u2d423 | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://nash9porevo.com/test404page.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://spoontds.net/js_4h1zp8x8?lp=1 | 200 OK Content-Length: 352 Content-Type: text/javascript | clean |
http://fifaxa.com/engine/ajax/menu.js | 200 OK Content-Length: 3368 Content-Type: application/javascript | clean |
http://fifaxa.com/engine/ajax/dle_ajax.js | 200 OK Content-Length: 4725 Content-Type: application/javascript | clean |
http://fifaxa.com/engine/ajax/js_edit.js | 200 OK Content-Length: 6627 Content-Type: application/javascript | clean |
http://fifaxa.com/engine/ajax/files/js_edit_files.js | 200 OK Content-Length: 6093 Content-Type: application/javascript | clean |
http://fifaxa.com/engine/classes/highslide/highslide.js | 200 OK Content-Length: 19294 Content-Type: application/javascript | clean |
http://z870.takru.com/in.php?id=875665 | 200 OK Content-Length: 1806 Content-Type: text/html | clean |
http://z870.takru.com/cl.php?key=2465200152817311828878910140296784817646419213590 | HTTP/1.1 200 OK Connection: close Date: Thu, 25 Dec 2014 17:45:46 GMT Server: Apache Content-Length: 198 Content-Type: text/html X-Powered-By: PHP/5.3.29 | clean |
http://tak.ru/ref.html | 200 OK Content-Length: 7330 Content-Type: text/html | clean |
http://tak.ru/rules.html | 200 OK Content-Length: 6094 Content-Type: text/html | clean |
http://tak.ru/ | 200 OK Content-Length: 7639 Content-Type: text/html | clean |
http://tak.ru/docs/faqseller.shtml | 200 OK Content-Length: 12850 Content-Type: text/html | clean |
http://tak.ru/docs/ | 200 OK Content-Length: 0 Content-Type: text/html | clean |