Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mne16.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://mne16.ru/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mne16.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 07 Oct 2014 02:39:39 GMT
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=f3b5af041dbbaa95c606bcc3c6a563c8; expires=Tue, 07-Oct-2014 06:39:39 GMT; path=/
X-Cache: HIT from Backend
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: mne16.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 07 Oct 2014 02:39:39 GMT
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=f3b5af041dbbaa95c606bcc3c6a563c8; expires=Tue, 07-Oct-2014 06:39:39 GMT; path=/
X-Cache: HIT from Backend
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: mne16.ru
Referer: http://www.google.com/search?q=mne16.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mne16.ru
Referer: http://www.google.com/search?q=mne16.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://mne16.ru/ | 200 OK Content-Length: 12072 Content-Type: text/html | clean |
http://nclick.su/tlnk/17911/2/1 | 200 OK Content-Length: 1857 Content-Type: text/html | clean |
http://nclick.su/tout.php?ids=17911&n=621627 | HTTP/1.1 200 OK Cache-Control: no-cache Connection: close Date: Tue, 07 Oct 2014 02:33:46 GMT Pragma: no-cache Server: nginx/1.4.3 Vary: Accept-Encoding Content-Length: 1170 Content-Type: text/html; charset=utf-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: ses=q0rfuohfedd6o75or79pfead95; path=/ X-Powered-By: PHP/5.3.3 | clean |
http://nclick.su/tout2.php?ids=17911&kod1=8323830&ses=q0rfuohfedd6o75or79pfead95&n=621627 | HTTP/1.1 302 Found Cache-Control: no-cache Connection: close Date: Tue, 07 Oct 2014 02:33:46 GMT Pragma: no-cache Location: http://mox.su Server: nginx/1.4.3 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: ses=tlpd3cqm1jqkq2q6idkkib7gu2; path=/ X-Powered-By: PHP/5.3.3 | clean |
http://mox.su/ | 200 OK Content-Length: 8140 Content-Type: text/html | clean |
http://v.visitweb.com/v/84558 | 200 OK Content-Length: 60609 Content-Type: text/javascript | clean |
http://nclick.ru/tlnk/4443/1/1 | 200 OK Content-Length: 1092 Content-Type: text/html | clean |
http://nclick.ru/test404page.js | HTTP/1.1 302 Found Connection: close Date: Tue, 07 Oct 2014 02:33:47 GMT Location: http://nclick.ru/index.php Server: nginx/1.4.3 Content-Length: 285 Content-Type: text/html; charset=iso-8859-1 | clean |
http://nclick.ru/index.php | 200 OK Content-Length: 7231 Content-Type: text/html | clean |
http://nclick.su/jl2/11384/1/1 | 200 OK Content-Length: 160 Content-Type: text/html | clean |
http://nclick.su/jout.php?ids=11384&n=1185014 | HTTP/1.1 200 OK Cache-Control: no-cache Connection: close Date: Tue, 07 Oct 2014 02:33:47 GMT Pragma: no-cache Server: nginx/1.4.3 Vary: Accept-Encoding Content-Length: 1347 Content-Type: text/html; charset=utf-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: ses=hmpr73ps1qlasgis3qjbngodt2; path=/ X-Powered-By: PHP/5.3.3 | clean |
http://nclick.su/jout2.php?ids=11384&kod1=9963887&ses=hmpr73ps1qlasgis3qjbngodt2&n=1185014 | HTTP/1.1 302 Found Cache-Control: no-cache Connection: close Date: Tue, 07 Oct 2014 02:33:47 GMT Pragma: no-cache Location: http://mox.su Server: nginx/1.4.3 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: ses=5stlc91rbpl5f00fbs6ddrade1; path=/ X-Powered-By: PHP/5.3.3 | clean |
http://mox.su/test404page.js | HTTP/1.1 302 Found Connection: close Date: Tue, 07 Oct 2014 02:33:47 GMT Location: http://mox.su Server: nginx/1.4.3 Content-Length: 269 Content-Type: text/html; charset=iso-8859-1 | clean |
http://nclick.su/tout.php?ids=17911&n=621628 | HTTP/1.1 200 OK Cache-Control: no-cache Connection: close Date: Tue, 07 Oct 2014 02:33:47 GMT Pragma: no-cache Server: nginx/1.4.3 Vary: Accept-Encoding Content-Length: 1170 Content-Type: text/html; charset=utf-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: ses=tp6tr526pkrtn19c8i3htk63e5; path=/ X-Powered-By: PHP/5.3.3 | clean |
http://nclick.su/tout2.php?ids=17911&kod1=2045463&ses=tp6tr526pkrtn19c8i3htk63e5&n=621628 | HTTP/1.1 302 Found Cache-Control: no-cache Connection: close Date: Tue, 07 Oct 2014 02:33:47 GMT Pragma: no-cache Location: http://mox.su Server: nginx/1.4.3 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: ses=bf8229rfefiug24h42dhvtfnp7; path=/ X-Powered-By: PHP/5.3.3 | clean |
http://mne16.ru//yandex.st/share/share.js/ | 404 Not Found Content-Length: 342 Content-Type: text/html | clean |