Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=obrazovanie.ooi.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: obrazovanie.ooi.ru
Result:
HTTP/1.1 200 OK
Cache-Control: private, pre-check=0, post-check=0, max-age=0
Connection: close
Date: Mon, 25 Aug 2014 03:07:20 GMT
Pragma: no-cache
Accept-Ranges: none
Server: Apache
Content-Language: ru
Content-Type: text/html; charset=utf-8
Expires:
Content-Script-Type: text/javascript
Content-Style-Type: text/css
Set-Cookie: MoodleSession=49lqpurqo0d8ki7cns5uhmsrh1; path=/
Set-Cookie: MoodleSessionTest=OmNqJ3QaAq; path=/
Set-Cookie: MOODLEID1_=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Set-Cookie: MOODLEID1_=%2507%2513q%25FC%2BK; expires=Fri, 24-Oct-2014 03:07:20 GMT; path=/
GET / HTTP/1.1
Host: obrazovanie.ooi.ru
Result:
HTTP/1.1 200 OK
Cache-Control: private, pre-check=0, post-check=0, max-age=0
Connection: close
Date: Mon, 25 Aug 2014 03:07:20 GMT
Pragma: no-cache
Accept-Ranges: none
Server: Apache
Content-Language: ru
Content-Type: text/html; charset=utf-8
Expires:
Content-Script-Type: text/javascript
Content-Style-Type: text/css
Set-Cookie: MoodleSession=49lqpurqo0d8ki7cns5uhmsrh1; path=/
Set-Cookie: MoodleSessionTest=OmNqJ3QaAq; path=/
Set-Cookie: MOODLEID1_=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Set-Cookie: MOODLEID1_=%2507%2513q%25FC%2BK; expires=Fri, 24-Oct-2014 03:07:20 GMT; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: obrazovanie.ooi.ru
Referer: http://www.google.com/search?q=obrazovanie.ooi.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: obrazovanie.ooi.ru
Referer: http://www.google.com/search?q=obrazovanie.ooi.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://obrazovanie.ooi.ru/ | 200 OK Content-Length: 37552 Content-Type: text/html | clean |
http://obrazovanie.ooi.ru/lib/speller/spellChecker.js | 200 OK Content-Length: 15980 Content-Type: application/javascript | clean |
http://obrazovanie.ooi.ru/lib/javascript-static.js | 200 OK Content-Length: 18677 Content-Type: application/javascript | clean |
http://obrazovanie.ooi.ru/lib/javascript-mod.php | 200 OK Content-Length: 34 Content-Type: text/javascript | clean |
http://obrazovanie.ooi.ru/lib/overlib/overlib.js | 200 OK Content-Length: 49245 Content-Type: application/javascript | clean |
http://obrazovanie.ooi.ru/lib/overlib/overlib_cssstyle.js | 200 OK Content-Length: 8829 Content-Type: application/javascript | clean |
http://obrazovanie.ooi.ru/lib/cookies.js | 200 OK Content-Length: 2423 Content-Type: application/javascript | clean |
http://obrazovanie.ooi.ru/lib/ufo.js | 200 OK Content-Length: 11344 Content-Type: application/javascript | clean |
http://obrazovanie.ooi.ru/lib/dropdown.js | 200 OK Content-Length: 2551 Content-Type: application/javascript | clean |
http://obrazovanie.ooi.ru/calendar/overlib.cfg.php | 200 OK Content-Length: 233 Content-Type: text/html | clean |
http://obrazovanie.ooi.ru/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |