Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=fotolaski.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://fotolaski.ru/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://fotolaski.ru/ | 200 OK Content-Length: 62612 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: dirtix.com ...[4583 bytes skipped]... êà÷åñòâå è áîëüøîì ðàçðåøåíèè. Äîáàâëÿé íàø ñàéò â çàêëàäêè è çàõîäè ïî÷àùå!<br/> <a href="https://plus.google.com/118396555880701449647?rel=author">Ìû â Google+</a><br/> admin@fotolaski.ru </center> <br> <script charset="windows-1251" language="javascript" type="text/javascript" src="http://www.znews.su/user/1574/fotolaski.ru_inf_1.php"></script> <script src='http://dirtix.com/i.php?id=25' charset='utf-8'></script> </body> </html> | ||
http://userapi.com/js/api/openapi.js?48 | 200 OK Content-Length: 64013 Content-Type: application/x-javascript | clean |
http://userapi.com/js/api/openapi.js?49 | 200 OK Content-Length: 64013 Content-Type: application/x-javascript | clean |
http://yes-s.net/js.js?p=%2Flpaplayx7%2F&id=u8c97803036ff38ffc015cbec063e8fd1&mf&sid=0 | 200 OK Content-Length: 1 Content-Type: text/html | clean |
http://yes-s.net/test404page.js | 404 Not Found Content-Length: 287 Content-Type: text/html | clean |
http://yes-s.net/js.js?p=%2Flpaplay10%2F&id=u8c97803036ff38ffc015cbec063e8fd1&be&sid=0 | 200 OK Content-Length: 1 Content-Type: text/html | clean |
http://urlrtb.com/static/bc.js?p=128360&b=492237 | 200 OK Content-Length: 24684 Content-Type: application/javascript | clean |
http://dirtix.com/i.php?id=23 | 200 OK Content-Length: 1381 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: toget.ru ...[831 bytes skipped]... g class='_img' src='http://dirtix.com/images/1048/200.jpg' /><br/>ÐÑи пÑекÑаÑнÑе ÑиÑеÑки</div><td><div onclick='go(1443,2,\"http%3A%2F%2Fcyku.su%2F%3Fgo%3Dgal%26id%3D3063\")' class='_tizer23'><img class='_img' src='http://dirtix.com/images/1443/200.jpg' /><br/>ТенниÑиÑÑка дала в аналÑнÑÑ Ð´ÑÑкÑ</div><td><div onclick='go(1379,2,\"http%3A%2F%2Ftoget.ru%2Fshowpage%2Fl%2F602781%2FGolishem_u_samogo_sinego_morya_%2812_foto%29\")' class='_tizer23'><img class='_img' src='http://dirtix.com/images/1379/200.jpg' /><br/>Ð Ð»ÐµÐ¶Ñ Ñ Ð½Ð° плÑÐ¶Ñ ....</div></table></div>" | ||
http://inf.24smile.org/informer.php?inf=2623 | 200 OK Content-Length: 2773 Content-Type: text/html | clean |
http://fotolaski.ru/5f7f8e.js | 200 OK Content-Length: 645 Content-Type: application/x-javascript | clean |
http://v.visitweb.com/v/109757 | 200 OK Content-Length: 61232 Content-Type: text/javascript | clean |
http://dirtix.com/i.php?id=24 | 200 OK Content-Length: 1350 Content-Type: text/html | clean |
http://www.znews.su/user/1574/fotolaski.ru_inf_9.php | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://i.lichenz.ru/v/73877 | 200 OK Content-Length: 62520 Content-Type: text/javascript | clean |
http://i.lichenz.ru/v/74036 | 200 OK Content-Length: 62527 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: fotolaski.ru
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=315360000
Cache-Control: private
Connection: close
Date: Thu, 11 Sep 2014 11:37:55 GMT
Server: nginx/1.2.1
Vary: Accept-Encoding
Content-Language: ru
Content-Type: text/html; charset=windows-1251
Expires: Thu, 31 Dec 2037 23:55:55 GMT
X-Powered-By: PHP/5.4.4-14+deb7u14
GET / HTTP/1.1
Host: fotolaski.ru
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=315360000
Cache-Control: private
Connection: close
Date: Thu, 11 Sep 2014 11:37:55 GMT
Server: nginx/1.2.1
Vary: Accept-Encoding
Content-Language: ru
Content-Type: text/html; charset=windows-1251
Expires: Thu, 31 Dec 2037 23:55:55 GMT
X-Powered-By: PHP/5.4.4-14+deb7u14
Second query (visit from search engine):
GET / HTTP/1.1
Host: fotolaski.ru
Referer: http://www.google.com/search?q=fotolaski.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: fotolaski.ru
Referer: http://www.google.com/search?q=fotolaski.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.