Scanned pages/files
Request | Server response | Status |
http://igratgta5.ru/ | 200 OK Content-Length: 19509 Content-Type: text/html | clean |
http://igratgta5.ru/gta5.html | 200 OK Content-Length: 433 Content-Type: text/html | clean |
http://igratgta5.ru/test404page.js | 404 Not Found Content-Length: 20891 Content-Type: text/html | clean |
http://igratgta5.ru/js/jquery/jquery-1.4.4.min.js | 404 Not Found Content-Length: 20891 Content-Type: text/html | clean |
http://igratgta5.ru/js/site_navigation.js | 200 OK Content-Length: 3097 Content-Type: application/x-javascript | clean |
http://igratgta5.ru/js/jquery/ | 404 Not Found Content-Length: 20891 Content-Type: text/html | clean |
http://igratgta5.ru/gta.html | 200 OK Content-Length: 435 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: contentmove.biz <html>
<head> <title>GTA5 ñêà÷àòü</title> <meta http-equiv="Content-Type" content="text/html; charset=windows-1251"> <META NAME="KeyWords" CONTENT="ãòà 5 ñêà÷àòü"> </head> <frameset rows="*" framespacing="0" border="0" frameborder="NO"> <frame src="http://contentmove.biz/?code=yqkdfk" name="sms-reading_ru_frame_content" scrolling="auto" noresize> </frameset> <body> </body> </html> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: igratgta5.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 07 Apr 2014 05:41:49 GMT
Accept-Ranges: bytes
ETag: "207e62a-4c35-4efb4bb2adbf1"
Server: nginx
Vary: Accept-Encoding
Content-Length: 19509
Content-Type: text/html
Last-Modified: Sat, 11 Jan 2014 16:57:00 GMT
...19509 bytes of data.
GET / HTTP/1.1
Host: igratgta5.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 07 Apr 2014 05:41:49 GMT
Accept-Ranges: bytes
ETag: "207e62a-4c35-4efb4bb2adbf1"
Server: nginx
Vary: Accept-Encoding
Content-Length: 19509
Content-Type: text/html
Last-Modified: Sat, 11 Jan 2014 16:57:00 GMT
...19509 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: igratgta5.ru
Referer: http://www.google.com/search?q=igratgta5.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: igratgta5.ru
Referer: http://www.google.com/search?q=igratgta5.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=igratgta5.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://igratgta5.ru/
Result: igratgta5.ru is not infected or malware details are not published yet.
Result: igratgta5.ru is not infected or malware details are not published yet.