Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=films-art.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://films-art.ru/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: films-art.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 29 Jan 2015 03:28:28 GMT
Server: nginx
Content-Length: 113176
Content-Type: text/html; charset=utf-8
Set-Cookie: watched_video_list=NTAz; expires=Fri, 30-Jan-2015 03:28:28 GMT; path=//
...113176 bytes of data.
GET / HTTP/1.1
Host: films-art.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 29 Jan 2015 03:28:28 GMT
Server: nginx
Content-Length: 113176
Content-Type: text/html; charset=utf-8
Set-Cookie: watched_video_list=NTAz; expires=Fri, 30-Jan-2015 03:28:28 GMT; path=//
...113176 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: films-art.ru
Referer: http://www.google.com/search?q=films-art.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: films-art.ru
Referer: http://www.google.com/search?q=films-art.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://films-art.ru/ | 200 OK Content-Length: 113176 Content-Type: text/html | clean |
http://films-art.ru//js/swfobject.js/ | 404 Not Found Content-Length: 19 Content-Type: text/html | clean |
http://films-art.ru/test404page.js | 404 Not Found Content-Length: 644 Content-Type: text/html | clean |
http://tdsclickwp.com/?type=js&key=af6fbaf8a22422f | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://chtoumenja.biz/b?size=2&arr=186,184,48,43,46,41,34,32,28&catgry=1&id=1248686911&t=_blank | 200 OK Content-Length: 197 | clean |
http://chtoumenja.biz/in.htm?wm=1248686911&crf=k3JkOWMMEpVjw7T2UZEQsA%253D%253D | HTTP/1.1 302 Found Connection: close Date: Thu, 29 Jan 2015 03:28:30 GMT Location: http://dosug.pw/?wmid=0 Server: Resin/3.1.6 Content-Language: en Content-Length: 61 Content-Type: text/html; charset=ISO-8859-1 | clean |
http://dosug.pw/?wmid=0 | HTTP/1.1 302 Found Connection: close Date: Thu, 29 Jan 2015 03:28:30 GMT Location: https://www.dosug.pw/?wmid=0 Server: Resin/4.0.13 Content-Length: 66 Content-Type: text/html; charset=utf-8 Set-Cookie: entryPoint=dosug.pw; domain=.dosug.pw; path=/ Set-Cookie: BSID=server.dosug2.nla3; domain=.dosug.pw; path=/ | clean |
https://www.dosug.pw/?wmid=0 | HTTP/1.1 302 Found Cache-Control: no-store Connection: close Date: Thu, 29 Jan 2015 03:28:30 GMT Location: https://www.dosug.pw/ru/d/ Server: nginx/1.4.6 (Ubuntu) Content-Length: 64 Content-Type: text/html; charset=utf-8 Expires: Thu, 29 Jan 2015 03:28:30 GMT Set-Cookie: entryPoint=ssl:www.dosug.pw; domain=.dosug.pw; path=/ Set-Cookie: BSID=server.dosug2.nla1; domain=.dosug.pw; path=/ Set-Cookie: JSESSIONID=aaa_L1uxFKaUN-hB6UZSu; path=/ | clean |
https://www.dosug.pw/ru/d/ | 200 OK Content-Length: 27679 Content-Type: text/html | clean |
https://www.dosug.pw/s/js/jQuery/jquery-1.8.2.js?build=20141802 | 200 OK Content-Length: 104881 Content-Type: application/javascript | clean |
https://www.dosug.pw/s/js/jQuery/plugins/error-logger.js?build=20141803 | 200 OK Content-Length: 312 Content-Type: application/javascript | clean |
https://www.dosug.pw/s/js/dosug_general/common.js?build=20141126 | 200 OK Content-Length: 2337 Content-Type: application/javascript | clean |
https://www.dosug.pw/s/js/dosug_general/cookies.js?build=20141209 | 200 OK Content-Length: 830 Content-Type: application/javascript | clean |
https://www.dosug.pw/s/js/scrollfix_dosug.js?build=20140624 | 200 OK Content-Length: 526 Content-Type: application/javascript | clean |
https://www.dosug.pw/s/js/dosug_general/ajaxtoolbox.js?build=20140624 | 200 OK Content-Length: 6496 Content-Type: application/javascript | clean |
https://www.dosug.pw/s/js/jQuery/plugins/jquery.cookie.js?build=20140624 | 200 OK Content-Length: 644 Content-Type: application/javascript | clean |
https://www.dosug.pw/s/js/jQuery/plugins/view-mode-monitoring.js?build=20141809 | 200 OK Content-Length: 218 Content-Type: application/javascript | clean |
https://www.dosug.pw/s/js/jQuery/plugins/jqueryFileTree.js?build=20140624 | 200 OK Content-Length: 1920 Content-Type: application/javascript | clean |