Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=oltu.biz
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://oltu.biz/
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: oltu.biz
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 12 Sep 2014 02:29:27 GMT
Pragma: no-cache
Server: nginx/1.2.3
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=K52ieXIlDpasZxtBqC%2Crn1; expires=Fri, 12-Sep-2014 08:29:27 GMT; path=/
Set-Cookie: cook=ok; expires=Sun, 12-Oct-2014 02:29:27 GMT; path=/
Set-Cookie: acc=2390; expires=Sun, 12-Oct-2014 02:29:27 GMT; path=/
Set-Cookie: pss=1410488967; expires=Fri, 12-Sep-2014 12:29:27 GMT; path=/
Set-Cookie: country=LT; expires=Sun, 12-Oct-2014 02:29:27 GMT; path=/
Set-Cookie: _ft=1410499767; expires=Sun, 12-Oct-2014 02:29:27 GMT; path=/
X-Powered-By: PHP/5.4.6
GET / HTTP/1.1
Host: oltu.biz
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 12 Sep 2014 02:29:27 GMT
Pragma: no-cache
Server: nginx/1.2.3
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=K52ieXIlDpasZxtBqC%2Crn1; expires=Fri, 12-Sep-2014 08:29:27 GMT; path=/
Set-Cookie: cook=ok; expires=Sun, 12-Oct-2014 02:29:27 GMT; path=/
Set-Cookie: acc=2390; expires=Sun, 12-Oct-2014 02:29:27 GMT; path=/
Set-Cookie: pss=1410488967; expires=Fri, 12-Sep-2014 12:29:27 GMT; path=/
Set-Cookie: country=LT; expires=Sun, 12-Oct-2014 02:29:27 GMT; path=/
Set-Cookie: _ft=1410499767; expires=Sun, 12-Oct-2014 02:29:27 GMT; path=/
X-Powered-By: PHP/5.4.6
Second query (visit from search engine):
GET / HTTP/1.1
Host: oltu.biz
Referer: http://www.google.com/search?q=oltu.biz
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: oltu.biz
Referer: http://www.google.com/search?q=oltu.biz
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://oltu.biz/ | 200 OK Content-Length: 34018 Content-Type: text/html | clean |
http://oltu.biz/js/jquery.min.js | 200 OK Content-Length: 93867 Content-Type: application/x-javascript | clean |
http://oltu.biz/js/jquery.jcarousel.min.js | 200 OK Content-Length: 17461 Content-Type: application/x-javascript | clean |
http://oltu.biz/js/main.js | 200 OK Content-Length: 2617 Content-Type: application/x-javascript | clean |
http://oltu.biz/?now | 200 OK Content-Length: 26264 Content-Type: text/html | clean |
http://oltu.biz/?top100 | 200 OK Content-Length: 89235 Content-Type: text/html | clean |
http://oltu.biz/login/ | 200 OK Content-Length: 16454 Content-Type: text/html | clean |
http://oltu.biz/?category=video | 200 OK Content-Length: 40086 Content-Type: text/html | clean |
http://oltu.biz/?category=games | 200 OK Content-Length: 36374 Content-Type: text/html | clean |
http://oltu.biz/?category=music | 200 OK Content-Length: 39145 Content-Type: text/html | clean |
http://oltu.biz/?category=soft | 200 OK Content-Length: 36212 Content-Type: text/html | clean |
http://oltu.biz/?category=books | 200 OK Content-Length: 44333 Content-Type: text/html | clean |
http://oltu.biz/?q=%D0%A1%D1%82%D0%B8%D0%BB%D1%8C%D0%BD%D1%8B%D0%B5+%D0%BF%D1%80%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8+%E2%84%96+1+%28%D1%8F%D0%BD%D0%B2%D0%B0%D1%80%D1%8C%29++%282013%29&id=903097 | 200 OK Content-Length: 52563 Content-Type: text/html | clean |
http://oltu.biz/?q=%D0%A1%D1%82%D0%B8%D0%BB%D1%8C%D0%BD%D1%8B%D0%B5+%D0%BF%D1%80%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8+%E2%84%96+5+%28%D0%BC%D0%B0%D0%B9%29++%282013%29&id=898795 | 200 OK Content-Length: 49367 Content-Type: text/html | clean |
http://oltu.biz/?q=%D0%A1%D1%82%D0%B8%D0%BB%D1%8C%D0%BD%D1%8B%D0%B5+%D0%BF%D1%80%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8+%E2%84%96+3+%28%D0%BC%D0%B0%D1%80%D1%82%29++%282013%29&id=903096 | 200 OK Content-Length: 51137 Content-Type: text/html | clean |