Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=master.wax.su
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://master.wax.su/
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: master.wax.su
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate
Connection: close
Date: Mon, 04 Aug 2014 06:47:38 GMT
Pragma: no-cache
Server: nginx/1.2.1
Vary: Accept-Encoding
Content-Length: 3085
Content-Type: text/html; charset=utf-8
X-Powered-By: PHP/5.3.3-7+squeeze17
...3085 bytes of data.
GET / HTTP/1.1
Host: master.wax.su
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate
Connection: close
Date: Mon, 04 Aug 2014 06:47:38 GMT
Pragma: no-cache
Server: nginx/1.2.1
Vary: Accept-Encoding
Content-Length: 3085
Content-Type: text/html; charset=utf-8
X-Powered-By: PHP/5.3.3-7+squeeze17
...3085 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: master.wax.su
Referer: http://www.google.com/search?q=master.wax.su
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: master.wax.su
Referer: http://www.google.com/search?q=master.wax.su
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://master.wax.su/ | 200 OK Content-Length: 3085 Content-Type: text/html | clean |
http://master.wax.su/css/svojstvo_stilej_css | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 04 Aug 2014 06:47:38 GMT Location: http://master.wax.su/css/svojstvo_stilej_css/ Server: nginx/1.2.1 Vary: Accept-Encoding Content-Length: 332 Content-Type: text/html; charset=iso-8859-1 | clean |
http://master.wax.su/css/svojstvo_stilej_css/ | 200 OK Content-Length: 9800 Content-Type: text/html | clean |
http://master.wax.su/css/svojstvo_stilej_css/../ | 200 OK Content-Length: 2000 Content-Type: text/html | clean |
http://master.wax.su/css/svojstvo_stilej_css/../../ | 200 OK Content-Length: 3085 Content-Type: text/html | clean |
http://master.wax.su/css/svojstvo_stilej_css/../../css/svojstvo_stilej_css | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 04 Aug 2014 06:47:39 GMT Location: http://master.wax.su/css/svojstvo_stilej_css/ Server: nginx/1.2.1 Vary: Accept-Encoding Content-Length: 332 Content-Type: text/html; charset=iso-8859-1 | clean |
http://master.wax.su/test404page.js | 404 Not Found Content-Length: 291 Content-Type: text/html | clean |
http://master.wax.su/css/svojstvo_stilej_css/../../css/table_rgb_ottenkov | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 04 Aug 2014 06:47:39 GMT Location: http://master.wax.su/css/table_rgb_ottenkov/ Server: nginx/1.2.1 Vary: Accept-Encoding Content-Length: 331 Content-Type: text/html; charset=iso-8859-1 | clean |
http://master.wax.su/css/table_rgb_ottenkov/ | 200 OK Content-Length: 18792 Content-Type: text/html | clean |
http://master.wax.su/css/table_rgb_ottenkov/../ | 200 OK Content-Length: 2000 Content-Type: text/html | clean |
http://master.wax.su/css/table_rgb_ottenkov/../../ | 200 OK Content-Length: 3085 Content-Type: text/html | clean |
http://master.wax.su/css/table_rgb_ottenkov/../../css/svojstvo_stilej_css | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 04 Aug 2014 06:47:40 GMT Location: http://master.wax.su/css/svojstvo_stilej_css/ Server: nginx/1.2.1 Vary: Accept-Encoding Content-Length: 332 Content-Type: text/html; charset=iso-8859-1 | clean |
http://master.wax.su/css/table_rgb_ottenkov/../../css/table_rgb_ottenkov | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 04 Aug 2014 06:47:40 GMT Location: http://master.wax.su/css/table_rgb_ottenkov/ Server: nginx/1.2.1 Vary: Accept-Encoding Content-Length: 331 Content-Type: text/html; charset=iso-8859-1 | clean |
http://master.wax.su/css/table_rgb_ottenkov/../../file/index.php?mode=cat&id=398 | 200 OK Content-Length: 2113 Content-Type: text/html | clean |
http://master.wax.su/file/index.php?SessionID=8o1e4otmu5cdg1e6hnp6g98mt2&url= | 200 OK Content-Length: 1605 Content-Type: text/html | clean |
http://master.wax.su/file/index.php?mode=cat&id=398&SessionID=nmnc1tki53oe1cl17u10c8r046&url= | 200 OK Content-Length: 2134 Content-Type: text/html | clean |
http://master.wax.su/file/index.php?SessionID=099ggnduve0ksq1a5pmen00mb6&url= | 200 OK Content-Length: 1605 Content-Type: text/html | clean |
http://master.wax.su/file/index.php?mode=cat&id=398&SessionID=gph54ou0s9eurf55lap289bsk2&url= | 200 OK Content-Length: 2134 Content-Type: text/html | clean |
http://master.wax.su/file/index.php?SessionID=ljn71hofjjnog2g83f7eo41s32&url= | 200 OK Content-Length: 1605 Content-Type: text/html | clean |
http://master.wax.su/file/index.php?mode=cat&id=398&SessionID=ro0175pbrsbiom3gthnlcdafi1&url= | 200 OK Content-Length: 2134 Content-Type: text/html | clean |