Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=libs.cwx.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://libs.cwx.ru/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://libs.cwx.ru/ | 200 OK Content-Length: 83789 Content-Type: text/html | suspicious |
Suspicious code found </span> | ||
http://libs.cwx.ru/engine/classes/js/jquery.js | 200 OK Content-Length: 91340 Content-Type: application/x-javascript | clean |
http://libs.cwx.ru/engine/classes/js/jqueryui.js | 200 OK Content-Length: 64578 Content-Type: application/x-javascript | clean |
http://libs.cwx.ru/engine/classes/js/dle_js.js | 200 OK Content-Length: 16095 Content-Type: application/x-javascript | clean |
http://libs.cwx.ru/engine/classes/highslide/highslide.js | 200 OK Content-Length: 32993 Content-Type: application/x-javascript | clean |
http://libs.cwx.ru/templates/School/js/accordion.js | 200 OK Content-Length: 1329 Content-Type: application/x-javascript | clean |
http://libs.cwx.ru/vpro.php | 200 OK Content-Length: 3963 Content-Type: text/html | clean |
http://libs.cwx.ru/vpro.php?r=aHR0cDovL3d3dy53bXRvb2xib3gubmV0Lw==&i=28 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sun, 20 Apr 2014 03:18:16 GMT Pragma: no-cache Location: http://www.wmtoolbox.net/ Server: nginx Content-Length: 0 Content-Type: text/html; charset=utf-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Last-Modified: Sun, 20 Apr 2014 03:18:16 GMT Set-Cookie: PRMT=95a6bb305e0b9d1eafff037f0879d6d1; path=/ X-Powered-By: PHP/5.2.14 | clean |
http://www.wmtoolbox.net/ | 200 OK Content-Length: 43840 Content-Type: text/html | clean |
http://www.wmtoolbox.net/style/jMetro/js/jquery-1.6.2.min.js | 200 OK Content-Length: 91556 Content-Type: application/javascript | clean |
http://libs.cwx.ru/style/jMetro/js/jquery-ui-1.8.16.custom.min.js | 404 Not Found Content-Length: 3135 Content-Type: text/html | clean |
http://promotium.net/av.php?p=6&z=4 | 200 OK Content-Length: 4003 Content-Type: text/html | clean |
http://promotium.net/av.php?r=aHR0cDovL3d3dy53bXRvb2xib3gubmV0Lw==&i=28 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sun, 20 Apr 2014 03:18:20 GMT Pragma: no-cache Location: http://www.wmtoolbox.net/ Server: nginx Content-Length: 0 Content-Type: text/html; charset=utf-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Last-Modified: Sun, 20 Apr 2014 03:18:20 GMT Access-Control-Allow-Origin: * Set-Cookie: PRMT=b845270f25c146ac03a4352357bf5237; path=/ X-Powered-By: PHP/5.2.14 | clean |
http://www.wmtoolbox.net/test404page.js | 200 OK Content-Length: 3060 Content-Type: text/html | clean |
http://www.wmtoolbox.net/style/jMetro/js/jquery-ui-1.8.16.custom.min.js | 200 OK Content-Length: 210463 Content-Type: application/javascript | clean |
http://www.wmtoolbox.net/scripts/menu.js | 200 OK Content-Length: 4016 Content-Type: application/javascript | clean |
http://www.wmtoolbox.net/scripts/chosen.jquery.min.js | 200 OK Content-Length: 25688 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: libs.cwx.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 20 Apr 2014 03:18:12 GMT
Pragma: no-cache
Server: nginx
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=a76d99b0819c09e486966c1a20b5f07d; expires=Mon, 21-Apr-2014 03:18:11 GMT; path=/
Set-Cookie: dle_user_id=deleted; expires=Sat, 20-Apr-2013 03:18:10 GMT; path=/; domain=.cwx.ru; httponly
Set-Cookie: dle_password=deleted; expires=Sat, 20-Apr-2013 03:18:10 GMT; path=/; domain=.cwx.ru; httponly
Set-Cookie: dle_hash=deleted; expires=Sat, 20-Apr-2013 03:18:10 GMT; path=/; domain=.cwx.ru; httponly
X-Powered-By: PHP/5.2.14
GET / HTTP/1.1
Host: libs.cwx.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 20 Apr 2014 03:18:12 GMT
Pragma: no-cache
Server: nginx
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=a76d99b0819c09e486966c1a20b5f07d; expires=Mon, 21-Apr-2014 03:18:11 GMT; path=/
Set-Cookie: dle_user_id=deleted; expires=Sat, 20-Apr-2013 03:18:10 GMT; path=/; domain=.cwx.ru; httponly
Set-Cookie: dle_password=deleted; expires=Sat, 20-Apr-2013 03:18:10 GMT; path=/; domain=.cwx.ru; httponly
Set-Cookie: dle_hash=deleted; expires=Sat, 20-Apr-2013 03:18:10 GMT; path=/; domain=.cwx.ru; httponly
X-Powered-By: PHP/5.2.14
Second query (visit from search engine):
GET / HTTP/1.1
Host: libs.cwx.ru
Referer: http://www.google.com/search?q=libs.cwx.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: libs.cwx.ru
Referer: http://www.google.com/search?q=libs.cwx.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.