Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=firt.erwap.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://firt.erwap.ru/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: townrealty.ru
Result:
GET / HTTP/1.1
Host: townrealty.ru
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: townrealty.ru
Referer: http://www.google.com/search?q=townrealty.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: townrealty.ru
Referer: http://www.google.com/search?q=townrealty.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://firt.erwap.ru/ | 200 OK Content-Length: 9845 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: games.erwap.ru <?xml version="1.0" encoding="utf-8"?><!DOCTYPE html PUBLIC "-//WAPFORUM//DTD XHTML Mobile 1.0//EN" "http://www.wapforum.org/DTD/xhtml-mobile10.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><link rel="SHORTCUT ICON" href="http://erwap.ru/favicon1.ico"/><meta http-equiv="Content-Type" content="application/vnd.wap.xhtml+xml; charset=UTF-8"/><meta http-equiv="language" content="ru"/><meta name="descript ...[4277 bytes skipped]... | ||
http://firt.erwap.ru/partners.php?v=3&id=87087 | HTTP/1.1 302 Found Connection: close Date: Tue, 26 Aug 2014 00:38:19 GMT Location: http://partners.erwap.ru/?w=&id=87087&v= Server: nginx/1.4.4 Content-Language: ru-RU Content-Length: 0 Content-Type: text/html; charset=cp1251 X-Powered-By: PHP/5.3.28 | malicious |
http://partners.erwap.ru/?w=&id=87087&v= | 200 OK Content-Length: 5384 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: erwap.ru <?xml version="1.0" encoding="utf-8"?><!DOCTYPE html PUBLIC "-//WAPFORUM//DTD XHTML Mobile 1.0//EN" "http://www.wapforum.org/DTD/xhtml-mobile10.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><link rel="SHORTCUT ICON" href="http://partners.erwap.ru/favicon1.ico"/><meta http-equiv="Content-Type" content="application/vnd.wap.xhtml+xml; charset=UTF-8"/><meta http-equiv="language" content="ru"/><meta name="description" content="ÐаÑа паÑÑнеÑÑÐºÐ°Ñ Ð¿ÑогÑамма - ÑÑо вÑÑокий, ÑÑабилÑнÑй заÑабоÑок Ð´Ð»Ñ Ð²Ð»Ð°Ð´ÐµÐ»ÑÑев WAP-ÑайÑов. ÐлагодаÑÑ Ð½Ð°ÑÐµÐ¼Ñ Ð¼Ð½Ð¾Ð³Ð¾Ð»ÐµÑÐ½ÐµÐ¼Ñ Ð¾Ð¿ÑÑÑ Ð² пÑодаже ...[4001 bytes skipped]... | ||
http://www.google-analytics.com/urchin.js | 200 OK Content-Length: 22678 Content-Type: text/javascript | clean |
http://firt.erwap.ru/about.php?v=3&id=87087&w= | 404 Not Found Content-Length: 1353 Content-Type: text/html | clean |
http://firt.erwap.ru/out.php?id=1&i=1&url=erwap.ru&lng=ru&v=2 | HTTP/1.1 200 OK Connection: close Date: Tue, 26 Aug 2014 00:38:20 GMT Server: nginx/1.4.4 Content-Language: ru-RU Content-Length: 1138 Content-Type: text/html; charset=utf-8 X-Powered-By: PHP/5.3.28 | clean |
http://erwap.ru/ | 200 OK Content-Length: 7717 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: games.erwap.ru ...[1263 bytes skipped]... ÑамÑй оÑкÑовеннÑй WAP-ÑайÑ!</div><div style="text-align:left" class="tit"><b>ÐевÑÑки днÑ:</b></div><div style="text-align:center" class="box"><img src="pic/girls.gif" alt="ÐевÑÑки днÑ"/></div><div style="text-align:left" class="tit"><b>ÐагÑÑзки:</b></div><div style="text-align:left" class="box"><img src="http://games.erwap.ru/img/games.png" alt="*"/> <b><a href="http://games.erwap.ru/?v=2">ÐгÑÑ</a></b> (ХиÑÑ Ð½ÐµÐ´ÐµÐ»Ð¸!)</div><div style="text-align:left" class="box"><img src="http://cat.erwap.ru/img/t.gif" alt="*"/><b><a href="top.php?v=2">TOP-100</a></b><br/><img src="img/d.gif" alt="+"/><b><a href="index.php?f=photo/&v=2">ФоÑо</a></b><br/><img src="img/d.gif" alt="+"/ ...[2668 bytes skipped]... | ||
http://erwap.ru/?lng=en | 200 OK Content-Length: 6479 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: games.erwap.ru <?xml version="1.0" encoding="utf-8"?><!DOCTYPE html PUBLIC "-//WAPFORUM//DTD XHTML Mobile 1.0//EN" "http://www.wapforum.org/DTD/xhtml-mobile10.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><link rel="SHORTCUT ICON" href="http://erwap.ru/favicon1.ico"/><meta http-equiv="Content-Type" content="application/vnd.wap.xhtml+xml; charset=UTF-8"/><meta http-equiv="language" content="en"/><meta name="descript ...[4561 bytes skipped]... | ||
http://erwap.ru/?lng=ru | 200 OK Content-Length: 7979 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: games.erwap.ru ...[1263 bytes skipped]... ÑамÑй оÑкÑовеннÑй WAP-ÑайÑ!</div><div style="text-align:left" class="tit"><b>ÐевÑÑки днÑ:</b></div><div style="text-align:center" class="box"><img src="pic/girls.gif" alt="ÐевÑÑки днÑ"/></div><div style="text-align:left" class="tit"><b>ÐагÑÑзки:</b></div><div style="text-align:left" class="box"><img src="http://games.erwap.ru/img/games.png" alt="*"/> <b><a href="http://games.erwap.ru/?v=2">ÐгÑÑ</a></b> (ХиÑÑ Ð½ÐµÐ´ÐµÐ»Ð¸!)</div><div style="text-align:left" class="box"><img src="http://cat.erwap.ru/img/t.gif" alt="*"/><b><a href="top.php?v=2&lng=ru">TOP-100</a></b><br/><img src="img/d.gif" alt="+"/><b><a href="index.php?f=photo/&v=2&lng=ru">ФоÑо</a></b><br/>&l ...[2673 bytes skipped]... | ||
http://erwap.ru/top.php?v=2&lng=ru | 200 OK Content-Length: 8366 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: barbars.erwap.ru ...[696 bytes skipped]... ÑоÑиÑеÑкий WAP-поÑÑал</title><link rel="stylesheet" type="text/css" href="http://erwap.ru/style3.css"/></head><body><div class="main"><div class="title">ТÐÐ-100 <span style="font-weight:normal">(18+)</span></div><div style="text-align:left" class="tit"><b>Ðнлайн игÑа: <img src="http://erwap.ru/img/barbars.png" alt="*"/> <a href="http://barbars.erwap.ru/?id=1">ÐаÑваÑÑ</a></b></div><div style="text-align:left" class="tit">* <a href="http://erwap.ru/java/?id=1">ÐÑоÑиÑеÑкий клÑб</a><br/></div><div style="text-align:left" class="box">1.<img src="http://jimm.erwap.ru/img/icon1.gif" alt="."/><a href="index.php?f=java/icq/1.jm&v=2&lng=ru">Jimm SE</a> / <img src="img/d.gif" alt="."/><a href="index.php?f=java/icq/& ...[3303 bytes skipped]... | ||
http://erwap.ru/java/?id=1 | 200 OK Content-Length: 360 Content-Type: text/vnd.sun.j2me.app-descriptor | clean |
http://erwap.ru/index.php?f=java/icq/1.jm&v=2&lng=ru | 200 OK Content-Length: 3105 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: barbars.erwap.ru ...[689 bytes skipped]... ru - Java: ICQ-клиенÑÑ</title><link rel="stylesheet" type="text/css" href="http://erwap.ru/style3.css"/></head><body><div class="main"><div class="title">ICQ-клиенÑÑ <span style="font-weight:normal">(18+)</span></div><div style="text-align:left" class="tit"><b>Ðнлайн игÑа: <img src="http://erwap.ru/img/barbars.png" alt="*"/> <a href="http://barbars.erwap.ru/?id=1">ÐаÑваÑÑ</a></b></div><div style="text-align:left" class="tit">* <a href="http://erwap.ru/java/?id=1">ÐÑоÑиÑеÑкий клÑб</a><br/></div><div style="text-align:left" class="box"><img src="img/up3.gif" alt="^"/><a href="index.php?f=java/icq/&v=2&lng=ru">[ÐвеÑÑ ]</a><br/><img src="http://jimm.erwap.ru/img/logo1.gif" alt="*"/><br/>УникалÑнР...[2181 bytes skipped]... | ||
http://erwap.ru/index.php?f=java/icq/index.php?f=java/icq/&v=2&lng=ru | 200 OK Content-Length: 2653 Content-Type: text/html | clean |
http://erwap.ru/reg.php?v=2&lng=ru | 200 OK Content-Length: 2301 Content-Type: text/html | clean |
http://erwap.ru/r.php?v=2&lng=ru | 200 OK Content-Length: 2567 Content-Type: text/html | clean |
http://erwap.ru/index.php?v=2&lng=ru | 200 OK Content-Length: 8067 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: games.erwap.ru ...[1284 bytes skipped]... ÑамÑй оÑкÑовеннÑй WAP-ÑайÑ!</div><div style="text-align:left" class="tit"><b>ÐевÑÑки днÑ:</b></div><div style="text-align:center" class="box"><img src="pic/girls.gif" alt="ÐевÑÑки днÑ"/></div><div style="text-align:left" class="tit"><b>ÐагÑÑзки:</b></div><div style="text-align:left" class="box"><img src="http://games.erwap.ru/img/games.png" alt="*"/> <b><a href="http://games.erwap.ru/?v=2">ÐгÑÑ</a></b> (ХиÑÑ Ð½ÐµÐ´ÐµÐ»Ð¸!)</div><div style="text-align:left" class="box"><img src="http://cat.erwap.ru/img/t.gif" alt="*"/><b><a href="top.php?v=2&lng=ru">TOP-100</a></b><br/><img src="img/d.gif" alt="+"/><b><a href="index.php?f=photo/&v=2&lng=ru">ФоÑо</a></b><br/>&l ...[2638 bytes skipped]... | ||
http://erwap.ru/index.php?v=2&lng=en | 200 OK Content-Length: 6578 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: games.erwap.ru <?xml version="1.0" encoding="utf-8"?><!DOCTYPE html PUBLIC "-//WAPFORUM//DTD XHTML Mobile 1.0//EN" "http://www.wapforum.org/DTD/xhtml-mobile10.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><link rel="SHORTCUT ICON" href="http://erwap.ru/favicon1.ico"/><meta http-equiv="Content-Type" content="application/vnd.wap.xhtml+xml; charset=UTF-8"/><meta http-equiv="language" content="en"/><meta name="descript ...[4556 bytes skipped]... |