Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=forsex.wen.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: forsex.wen.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache, max-age=0
Connection: close
Date: Mon, 26 Jan 2015 01:37:46 GMT
Pragma: no-cache
Accept-Ranges: bytes
Server: WEN.RU HTTPD 3.8
Content-Length: 10604
Content-Type: text/html; charset=utf-8
Expires: Sun, 25 Jan 2015 01:37:46 GMT
Last-Modified: Wed, 21 Aug 2013 11:23:35 GMT
...10604 bytes of data.
GET / HTTP/1.1
Host: forsex.wen.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache, max-age=0
Connection: close
Date: Mon, 26 Jan 2015 01:37:46 GMT
Pragma: no-cache
Accept-Ranges: bytes
Server: WEN.RU HTTPD 3.8
Content-Length: 10604
Content-Type: text/html; charset=utf-8
Expires: Sun, 25 Jan 2015 01:37:46 GMT
Last-Modified: Wed, 21 Aug 2013 11:23:35 GMT
...10604 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: forsex.wen.ru
Referer: http://www.google.com/search?q=forsex.wen.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: forsex.wen.ru
Referer: http://www.google.com/search?q=forsex.wen.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://forsex.wen.ru/ | HTTP/1.1 200 OK Cache-Control: no-cache, max-age=0 Connection: close Date: Mon, 26 Jan 2015 01:37:46 GMT Pragma: no-cache Accept-Ranges: bytes Server: WEN.RU HTTPD 3.8 Content-Length: 10604 Content-Type: text/html; charset=utf-8 Expires: Sun, 25 Jan 2015 01:37:46 GMT Last-Modified: Wed, 21 Aug 2013 11:23:35 GMT | clean |
http://forban.su/997.go?forsexazp | HTTP/1.1 302 Found Connection: close Date: Mon, 26 Jan 2015 02:39:28 GMT Location: http://forban.su Server: nginx Vary: Accept-Encoding Content-Length: 2 Content-Type: text/html X-Content-Security-Policy: allow 'self'; X-Frame-Options: DENY X-Powered-By: PHP/5.3.3-7+squeeze21 X-XSS-Protection: 1; mode=block | clean |
http://forban.su/ | 200 OK Content-Length: 8838 Content-Type: text/html | clean |
http://c.waptut.ru/6075/main.js | 200 OK Content-Length: 1120 Content-Type: application/javascript | clean |
http://forsex.wen.ru/news.wbp/?ref=0 | 200 OK Content-Length: 575 Content-Type: text/html | clean |
http://forsex.wen.ru/test404page.js | 200 OK Content-Length: 575 Content-Type: text/html | clean |
http://forsex.wen.ru/rules.wbp/registration/?ref=0 | 200 OK Content-Length: 575 Content-Type: text/html | clean |
http://forsex.wen.ru/forgot.wbp/?ref=0 | 200 OK Content-Length: 575 Content-Type: text/html | clean |
http://forsex.wen.ru/top.wbp/ru/?ref=0 | 200 OK Content-Length: 575 Content-Type: text/html | clean |
http://forsex.wen.ru/help.wbp/ru/cost/?ref=0 | 200 OK Content-Length: 575 Content-Type: text/html | clean |
http://forsex.wen.ru/help.wbp/ru/ip/?ref=0 | 200 OK Content-Length: 575 Content-Type: text/html | clean |
http://forsex.wen.ru/help.wbp/ru/trades/?ref=0 | 200 OK Content-Length: 575 Content-Type: text/html | clean |
http://forsex.wen.ru/stat.wbp/ru/?ref=0 | 200 OK Content-Length: 575 Content-Type: text/html | clean |
http://forsex.wen.ru/help.wbp/ru/?ref=0 | 200 OK Content-Length: 575 Content-Type: text/html | clean |
http://forsex.wen.ru/help.wbp/ru/system/?ref=0 | 200 OK Content-Length: 575 Content-Type: text/html | clean |
http://forsex.wen.ru/rules.wbp/ru/?ref=0 | 200 OK Content-Length: 575 Content-Type: text/html | clean |
http://forsex.wen.ru/help.wbp/ru/contact/?ref=0 | 200 OK Content-Length: 575 Content-Type: text/html | clean |