Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mao24.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://mao24.ru/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://mao24.ru/ | 200 OK Content-Length: 9736 Content-Type: text/html | clean |
http://mao24.ru/swfobject_20.js | 200 OK Content-Length: 6926 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) if(typeof deconcept=="undefined"){var deconcept={};}if(typeof deconcept.util=="undefined"){deconcept.util={};}if(typeof deconcept.SWFObjectUtil=="undefined"){deconcept.SWFObjectUtil={};}deconcept.SWFObject=function(_1,id,w,h,_5,c,_7,_8,_9,_a){if(!document.getElementById){return;}this.DETECT_KEY=_a?_a:"detectflash";this.skipDetect=deconcept.util.getRequestParameter(this.DETECT_KEY);this.params={};this.variables={};this.attributes=[];if(_1){this.setAttribute("swf",_1);}if(id){this.setAttribute("id Antivirus reports:
| ||
http://mao24.ru/partnersandclients.html | 200 OK Content-Length: 10316 Content-Type: text/html | clean |
http://mao24.ru/workers.html | 200 OK Content-Length: 8983 Content-Type: text/html | clean |
http://mao24.ru/cheme.html | 200 OK Content-Length: 8448 Content-Type: text/html | clean |
http://mao24.ru/3d/accommodation.html | 200 OK Content-Length: 12086 Content-Type: text/html | clean |
http://mao24.ru/3d/public.html | 200 OK Content-Length: 11454 Content-Type: text/html | clean |
http://mao24.ru/3d/restaurant.html | 200 OK Content-Length: 9255 Content-Type: text/html | clean |
http://mao24.ru/3d/cafe.html | 200 OK Content-Length: 10486 Content-Type: text/html | clean |
http://mao24.ru/3d/cinema.html | 200 OK Content-Length: 8663 Content-Type: text/html | clean |
http://mao24.ru/3d/museum.html | 200 OK Content-Length: 8867 Content-Type: text/html | clean |
http://mao24.ru/3d/shop.html | 200 OK Content-Length: 9112 Content-Type: text/html | clean |
http://mao24.ru/3d/other-3d.html | 200 OK Content-Length: 8626 Content-Type: text/html | clean |
http://mao24.ru/3d-2d/complex.html | 200 OK Content-Length: 13298 Content-Type: text/html | clean |
http://mao24.ru/2d/logo.html | 200 OK Content-Length: 15423 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mao24.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 28 Sep 2014 05:20:26 GMT
Server: nginx/1.4.1
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.3.10-1ubuntu3.4
GET / HTTP/1.1
Host: mao24.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 28 Sep 2014 05:20:26 GMT
Server: nginx/1.4.1
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.3.10-1ubuntu3.4
Second query (visit from search engine):
GET / HTTP/1.1
Host: mao24.ru
Referer: http://www.google.com/search?q=mao24.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mao24.ru
Referer: http://www.google.com/search?q=mao24.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.