Scanned pages/files
| Request | Server response | Status |
http://for-css.ru/ | 200 OK Content-Length: 58149 Content-Type: text/html | suspicious |
Suspicious code found <table style="width: 100%; border-collapse: collapse"><tbody><tr> <td style="vertical-align: top; letter-spacing: 0px; word-spacing: 0px; "> <div class="message"><center><img align="absmiddle" border="0" src="http://for-css.ru/image/news/dost.png" /></center> <br /> <br /> ÐоÑогие полÑзоваÑели ÑайÑа! Ð¡ÐµÐ³Ð¾Ð´Ð½Ñ Ð½Ð° Ð½Ð°Ñ ÑÐ°Ð¹Ñ Ð±Ñли Ð´Ð¾Ð±Ð°Ð²Ð»ÐµÐ½Ñ Ð´Ð¾ÑÑижениÑ, коÑо <br /> Сами доÑÑижениÑ, а Ñакже ÑпоÑÐ¾Ð±Ñ Ð¿Ð¾Ð»ÑÑениÑ, можно поÑмоÑÑеÑÑ Ð² Ñвоем пÑоÑиле, пÑоÑÑо нажав на доÑÑижение.<br></div></td></tr></tbody></table> | ||
http://for-css.ru//vk.com/js/api/openapi.js?105/ | 404 Not Found Content-Length: 6869 Content-Type: text/html | clean |
http://for-css.ru/test404page.js | 404 Not Found Content-Length: 6869 Content-Type: text/html | clean |
http://s54.ucoz.net/src/jquery-1.7.2.js | 200 OK Content-Length: 94840 Content-Type: text/javascript | clean |
http://s54.ucoz.net/src/ulightbox/ulightbox.js | 200 OK Content-Length: 22097 Content-Type: text/javascript | clean |
http://s54.ucoz.net/src/uwnd.js?2 | 200 OK Content-Length: 228554 Content-Type: text/javascript | clean |
http://for-css.ru//yandex.st/share/cnt.share.js/ | 404 Not Found Content-Length: 6869 Content-Type: text/html | clean |
http://buy-banner.com/codes/link-2025.js | 200 OK Content-Length: 1086 Content-Type: text/html | clean |
http://buy-banner.com/go/26175 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 15 Mar 2015 22:04:24 GMT Location: http://mailpass.in/ Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Length: 0 Content-Type: text/html X-Frame-Options: SAMEORIGIN X-Powered-By: PHP/5.5.21 | clean |
http://mailpass.in/ | 200 OK Content-Length: 169407 Content-Type: text/html | clean |
http://code.jquery.com/jquery.js | 200 OK Content-Length: 282766 Content-Type: application/x-javascript | clean |
http://code.jquery.com/ui/1.10.0/jquery-ui.js | 200 OK Content-Length: 302220 Content-Type: application/x-javascript | clean |
http://mailpass.in/assets/js/bootstrap.min.js | 200 OK Content-Length: 27731 Content-Type: application/javascript | clean |
http://mailpass.in/assets/js/respond.js | 200 OK Content-Length: 4053 Content-Type: application/javascript | clean |
http://mailpass.in/assets/js/app.js | 200 OK Content-Length: 4161 Content-Type: application/javascript | clean |
http://mailpass.in/assets/js/jquery.toastmessage.js | 200 OK Content-Length: 6592 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: for-css.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 15 Mar 2015 22:04:15 GMT
Server: uServ/3.2.2
Content-Length: 58149
Content-Type: text/html; charset=UTF-8
...58149 bytes of data.
GET / HTTP/1.1
Host: for-css.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 15 Mar 2015 22:04:15 GMT
Server: uServ/3.2.2
Content-Length: 58149
Content-Type: text/html; charset=UTF-8
...58149 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: for-css.ru
Referer: http://www.google.com/search?q=for-css.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: for-css.ru
Referer: http://www.google.com/search?q=for-css.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=for-css.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://for-css.ru/
Result: for-css.ru is not infected or malware details are not published yet.
Result: for-css.ru is not infected or malware details are not published yet.