Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=friko4.onet.pl
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://friko4.onet.pl/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: friko4.onet.pl
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Fri, 19 Sep 2014 15:55:28 GMT
Via: 1.0 sq7.m1d1.onet:80 (squid)
Location: http://republika.pl/
Server: nginx
Content-Length: 154
Content-Type: text/html
X-Cache: MISS from sq7.m1d1.onet
X-Cache-Lookup: MISS from sq7.m1d1.onet:80
...154 bytes of data.
GET / HTTP/1.1
Host: friko4.onet.pl
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Fri, 19 Sep 2014 15:55:28 GMT
Via: 1.0 sq7.m1d1.onet:80 (squid)
Location: http://republika.pl/
Server: nginx
Content-Length: 154
Content-Type: text/html
X-Cache: MISS from sq7.m1d1.onet
X-Cache-Lookup: MISS from sq7.m1d1.onet:80
...154 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: friko4.onet.pl
Referer: http://www.google.com/search?q=friko4.onet.pl
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: friko4.onet.pl
Referer: http://www.google.com/search?q=friko4.onet.pl
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://friko4.onet.pl/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 19 Sep 2014 15:55:28 GMT Via: 1.0 sq7.m1d1.onet:80 (squid) Location: http://republika.pl/ Server: nginx Content-Length: 154 Content-Type: text/html X-Cache: MISS from sq7.m1d1.onet X-Cache-Lookup: MISS from sq7.m1d1.onet:80 | clean |
http://republika.pl/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 19 Sep 2014 15:55:28 GMT Location: http://republika.onet.pl/ Server: nginx/0.8.54 Content-Length: 185 Content-Type: text/html | clean |
http://republika.onet.pl/ | 200 OK Content-Length: 15633 Content-Type: text/html | clean |
http://republika.onet.pl/_s/popover7.js | 200 OK Content-Length: 9202 Content-Type: application/x-javascript | clean |
http://friko4.onet.pl/_s/2,scripts1.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 19 Sep 2014 15:55:07 GMT Via: 1.0 sq12.m1d1.onet:80 (squid) Location: http://republika.pl/scripts1.js Server: nginx Content-Length: 154 Content-Type: text/html X-Cache: MISS from sq12.m1d1.onet X-Cache-Lookup: MISS from sq12.m1d1.onet:80 | clean |
http://republika.pl/scripts1.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 19 Sep 2014 15:55:29 GMT Location: http://scripts1.republika.pl.js Server: nginx/0.8.54 Content-Length: 161 Content-Type: text/html | clean |
http://scripts1.republika.pl.js/ | 500 Can't connect to scripts1.republika.pl.js:80 (Bad hostname) Content-Length: 180 Content-Type: text/plain | clean |
http://scripts1.republika.pl.js/test404page.js | 500 Can't connect to scripts1.republika.pl.js:80 (Bad hostname) Content-Length: 180 Content-Type: text/plain | clean |
http://friko4.onet.pl/webadmin/_s/ajax1.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 19 Sep 2014 15:55:36 GMT Via: 1.0 sq5.m1d1.onet:80 (squid) Location: http://republika.pl/webadmin/_s/ajax1.js Server: nginx Content-Length: 154 Content-Type: text/html X-Cache: MISS from sq5.m1d1.onet X-Cache-Lookup: MISS from sq5.m1d1.onet:80 | clean |
http://republika.pl/webadmin/_s/ajax1.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 19 Sep 2014 15:55:30 GMT Location: http://webadmin.republika.pl/_s/ajax1.js Server: nginx/0.8.54 Content-Length: 161 Content-Type: text/html | clean |
http://webadmin.republika.pl/_s/ajax1.js | 404 Not Found Content-Length: 4013 Content-Type: text/html | clean |
http://friko4.onet.pl/_g/navi/mmo.js | 200 OK Content-Length: 1079 Content-Type: application/x-javascript | clean |
http://friko4.onet.pl/_s/loginSwitch1.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 19 Sep 2014 16:03:30 GMT Via: 1.0 sq7.m1d1.onet:80 (squid) Location: http://republika.pl/loginSwitch1.js Server: nginx Content-Length: 154 Content-Type: text/html X-Cache: MISS from sq7.m1d1.onet X-Cache-Lookup: MISS from sq7.m1d1.onet:80 | clean |
http://republika.pl/loginswitch1.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 19 Sep 2014 15:55:30 GMT Location: http://loginswitch1.republika.pl.js Server: nginx/0.8.54 Content-Length: 161 Content-Type: text/html | clean |
http://loginswitch1.republika.pl.js/ | 500 Can't connect to loginswitch1.republika.pl.js:80 (Bad hostname) Content-Length: 188 Content-Type: text/plain | clean |
http://lib.onet.pl/s.csr/init/20130826,init.js | 200 OK Content-Length: 51926 Content-Type: application/x-javascript | clean |
http://lib.onet.pl/s.csr/init/compatibleFunc.js?v=1 | 200 OK Content-Length: 973 Content-Type: application/x-javascript | clean |
http://boksy.onet.pl/boxes/159,show_boxes.js?bx_attr[oi]=30545262&bx_attr[ci]=6069&bx_attr[id]=bxad_slot&bx_scheme[width]=650&bx_scheme[bx_cnt]=2&bx_scheme[layout]=horizontal&bx_colors_scheme=republika&id=script_bxad_slot&position=before&onload=false | 200 OK Content-Length: 1185 Content-Type: text/javascript | clean |