Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=noprets886.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://noprets886.ru/
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: noprets886.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 25 Dec 2014 11:34:12 GMT
Pragma: no-cache
Server: nginx/1.2.3
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=YysDg0Ux6JQxdF2wGsbz91; expires=Thu, 25-Dec-2014 17:34:12 GMT; path=/
Set-Cookie: cook=ok; expires=Sat, 24-Jan-2015 11:34:12 GMT; path=/
Set-Cookie: acc=1683; expires=Sat, 24-Jan-2015 11:34:12 GMT; path=/
Set-Cookie: pss=1419507252; expires=Thu, 25-Dec-2014 21:34:12 GMT; path=/
Set-Cookie: country=LT; expires=Sat, 24-Jan-2015 11:34:12 GMT; path=/
Set-Cookie: _ft=1419518052; expires=Sat, 24-Jan-2015 11:34:12 GMT; path=/
X-Powered-By: PHP/5.4.6
GET / HTTP/1.1
Host: noprets886.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 25 Dec 2014 11:34:12 GMT
Pragma: no-cache
Server: nginx/1.2.3
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=YysDg0Ux6JQxdF2wGsbz91; expires=Thu, 25-Dec-2014 17:34:12 GMT; path=/
Set-Cookie: cook=ok; expires=Sat, 24-Jan-2015 11:34:12 GMT; path=/
Set-Cookie: acc=1683; expires=Sat, 24-Jan-2015 11:34:12 GMT; path=/
Set-Cookie: pss=1419507252; expires=Thu, 25-Dec-2014 21:34:12 GMT; path=/
Set-Cookie: country=LT; expires=Sat, 24-Jan-2015 11:34:12 GMT; path=/
Set-Cookie: _ft=1419518052; expires=Sat, 24-Jan-2015 11:34:12 GMT; path=/
X-Powered-By: PHP/5.4.6
Second query (visit from search engine):
GET / HTTP/1.1
Host: noprets886.ru
Referer: http://www.google.com/search?q=noprets886.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: noprets886.ru
Referer: http://www.google.com/search?q=noprets886.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://noprets886.ru/ | 200 OK Content-Length: 80168 Content-Type: text/html | clean |
http://noprets886.ru/js/jquery.min.js | 200 OK Content-Length: 93867 Content-Type: application/x-javascript | clean |
http://noprets886.ru/js/default.js | 200 OK Content-Length: 2626 Content-Type: application/x-javascript | clean |
http://noprets886.ru/get_access/ | 200 OK Content-Length: 108601 Content-Type: text/html | clean |
http://noprets886.ru/?category=1 | 200 OK Content-Length: 151717 Content-Type: text/html | clean |
http://noprets886.ru/?category=2 | 200 OK Content-Length: 169980 Content-Type: text/html | clean |
http://noprets886.ru/?category=3 | 200 OK Content-Length: 171822 Content-Type: text/html | clean |
http://noprets886.ru/?category=4 | 200 OK Content-Length: 84050 Content-Type: text/html | clean |
http://noprets886.ru/?category=5 | 200 OK Content-Length: 85487 Content-Type: text/html | clean |
http://noprets886.ru/?category=6 | 200 OK Content-Length: 77899 Content-Type: text/html | clean |
http://noprets886.ru/?q=%D0%9F%D1%80%D0%BE%D0%B5%D0%BA%D1%82+%D0%A4%D0%B5%D0%B4%D0%B5%D1%80%D0%B0%D0%BB%D1%8C%D0%BD%D0%BE%D0%B3%D0%BE+%D0%B7%D0%B0%D0%BA%D0%BE%D0%BD%D0%B0+%22%D0%9E+%D0%B2%D0%BD%D0%B5%D1%81%D0%B5%D0%BD%D0%B8%D0%B8+%D0%B8%D0%B7%D0%BC%D0%B5%D0%BD%D0%B5%D0%BD%D0%B8%D0%B9+%D0%B2+%D1%87%D0%B0%D1%81%D1%82%D0%B8+%D0%BF%D0%B5%D1%80%D0%B2%D1%83%D1%8E+%D0%B8+%D0%B2%D1%82%D0%BE%D1%80%D1%83%D1 <span>...292 symbols skipped</span> | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 25 Dec 2014 11:34:19 GMT Pragma: no-cache Location: http://filei-cl0uuds.jurlex.pp.ua/?q=%D0%9F%D1%80%D0%BE%D0%B5%D0%BA%D1%82+%D0%A4%D0%B5%D0%B4%D0%B5%D1%80%D0%B0%D0%BB%D1%8C%D0%BD%D0%BE%D0%B3%D0%BE+%D0%B7%D0%B0%D0%BA%D0%BE%D0%BD%D0%B0+%22%D0%9E+%D0%B2%D0%BD%D0%B5%D1%81%D0%B5%D0%BD%D0%B8%D0%B8+%D0%B8%D0%B7%D0%BC%D0%B5%D0%BD%D0%B5%D0%BD%D0%B8%D0%B9+%D0%B2+%D1%87%D0%B0%D1%81%D1%82%D0%B8+%D0%BF%D0%B5%D1%80%D0%B2%D1%83%D1%8E+%D0%B8+%D0%B2%D1%82%D0%BE%D1%80%D1%83%D1%8E+%D0%9D%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%B2%D0%BE%D0%B3%D0%BE+%D0%BA%D0%BE%D0%B4%D0%B5%D0%BA%D1%81%D0%B0+%D0%A0%D0%A4+%D0%B8+%D0%97%D0%B0%D0%BA%D0%BE%D0%BD+%D0%A0%D0%A4+%22%D0%9E+%D1%82%D0%B0%D0%BC%D0%BE%D0%B6%D0%B5%D0%BD%D0%BD%D0%BE%D0%BC+%D1%82%D0%B0%D1%80%D0%B8%D1%84%D0%B5%22&id=162088&cat=soft&r=1683 Server: nginx/1.2.3 Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=Br9q%2CQn3EPR2%2CveBQXexL1; expires=Thu, 25-Dec-2014 17:34:19 GMT; path=/ Set-Cookie: cook=ok; expires=Sat, 24-Jan-2015 11:34:19 GMT; path=/ Set-Cookie: acc=1683; expires=Sat, 24-Jan-2015 11:34:19 GMT; path=/ Set-Cookie: pss=1419507259; expires=Thu, 25-Dec-2014 21:34:19 GMT; path=/ Set-Cookie: country=LT; expires=Sat, 24-Jan-2015 11:34:19 GMT; path=/ X-Powered-By: PHP/5.4.6 | clean |
http://filei-cl0uuds.jurlex.pp.ua/?q=%d0%9f%d1%80%d0%be%d0%b5%d0%ba%d1%82+%d0%a4%d0%b5%d0%b4%d0%b5%d1%80%d0%b0%d0%bb%d1%8c%d0%bd%d0%be%d0%b3%d0%be+%d0%b7%d0%b0%d0%ba%d0%be%d0%bd%d0%b0+%22%d0%9e+%d0%b2%d0%bd%d0%b5%d1%81%d0%b5%d0%bd%d0%b8%d0%b8+%d0%b8%d0%b7%d0%bc%d0%b5%d0%bd%d0%b5%d0%bd%d0%b8%d0%b9+%d0%b2+%d1%87%d0%b0%d1%81%d1%82%d0%b8+%d0%bf%d0%b5%d1%80%d0%b2%d1%83%d1%8e+%d0%b8+%d0%b2%d1%82%d0%be%d <span>...321 symbols skipped</span> | 200 OK Content-Length: 45377 Content-Type: text/html | clean |
http://filei-cl0uuds.jurlex.pp.ua/js/jquery.min.js | 200 OK Content-Length: 93867 Content-Type: application/x-javascript | clean |
http://noprets886.ru/js/jquery.fancybox.pack.js | 404 Not Found Content-Length: 570 Content-Type: text/html | clean |
http://noprets886.ru/test404page.js | 404 Not Found Content-Length: 570 Content-Type: text/html | clean |
http://noprets886.ru/js/jquery.mCustomScrollbar.min.js | 404 Not Found Content-Length: 570 Content-Type: text/html | clean |