Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=petrusyk.best-play-boom.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://petrusyk.best-play-boom.com/
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: petrusyk.best-play-boom.com
Result:
HTTP/1.1 302 Moved Permanently
Connection: close
Date: Wed, 08 Oct 2014 17:27:36 GMT
Location: http://petrusyk.best-play-boom.com/1317893290z/
Server: nginx_moded_by_kam/1.5.6
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Debug: Mode1 Level1 Step1 Var3 Res1 Level2 Step1
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: uid=ZdgTdQklKiCOT5KDYKGgR6O0YFeV2ZZZIIqUlOiTv%2FOsYnTKlbSuJ6f96bAkOgNqxyblaT0gKsK9M2eIGJOj8ETwsIrwJNWEqd6l60%2F4j3f%2BqWwkVH9ZgSwBP6WcfXlRn8oYef3SkSZG7ZTi8V9vip99J0QrXo2v8GpkJUQAkGyh0PDsfegJQ8yqMrvNznwuUsh94wD4o%2FamyzOm33ovwg%3D%3D; expires=Wed, 08-Oct-2014 18:27:36 GMT; path=/
Set-Cookie: token=1318980578; expires=Wed, 08-Oct-2014 17:32:36 GMT; path=/1317893290z
X-Powered-By: PHP/5.3.3-7+squeeze18
...0 bytes of data.
GET / HTTP/1.1
Host: petrusyk.best-play-boom.com
Result:
HTTP/1.1 302 Moved Permanently
Connection: close
Date: Wed, 08 Oct 2014 17:27:36 GMT
Location: http://petrusyk.best-play-boom.com/1317893290z/
Server: nginx_moded_by_kam/1.5.6
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Debug: Mode1 Level1 Step1 Var3 Res1 Level2 Step1
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: uid=ZdgTdQklKiCOT5KDYKGgR6O0YFeV2ZZZIIqUlOiTv%2FOsYnTKlbSuJ6f96bAkOgNqxyblaT0gKsK9M2eIGJOj8ETwsIrwJNWEqd6l60%2F4j3f%2BqWwkVH9ZgSwBP6WcfXlRn8oYef3SkSZG7ZTi8V9vip99J0QrXo2v8GpkJUQAkGyh0PDsfegJQ8yqMrvNznwuUsh94wD4o%2FamyzOm33ovwg%3D%3D; expires=Wed, 08-Oct-2014 18:27:36 GMT; path=/
Set-Cookie: token=1318980578; expires=Wed, 08-Oct-2014 17:32:36 GMT; path=/1317893290z
X-Powered-By: PHP/5.3.3-7+squeeze18
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: petrusyk.best-play-boom.com
Referer: http://www.google.com/search?q=petrusyk.best-play-boom.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: petrusyk.best-play-boom.com
Referer: http://www.google.com/search?q=petrusyk.best-play-boom.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://petrusyk.best-play-boom.com/ | HTTP/1.1 302 Moved Permanently Connection: close Date: Wed, 08 Oct 2014 17:27:36 GMT Location: http://petrusyk.best-play-boom.com/1317893290z/ Server: nginx_moded_by_kam/1.5.6 Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Debug: Mode1 Level1 Step1 Var3 Res1 Level2 Step1 P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" Set-Cookie: uid=ZdgTdQklKiCOT5KDYKGgR6O0YFeV2ZZZIIqUlOiTv%2FOsYnTKlbSuJ6f96bAkOgNqxyblaT0gKsK9M2eIGJOj8ETwsIrwJNWEqd6l60%2F4j3f%2BqWwkVH9ZgSwBP6WcfXlRn8oYef3SkSZG7ZTi8V9vip99J0QrXo2v8GpkJUQAkGyh0PDsfegJQ8yqMrvNznwuUsh94wD4o%2FamyzOm33ovwg%3D%3D; expires=Wed, 08-Oct-2014 18:27:36 GMT; path=/ Set-Cookie: token=1318980578; expires=Wed, 08-Oct-2014 17:32:36 GMT; path=/1317893290z X-Powered-By: PHP/5.3.3-7+squeeze18 | clean |
http://petrusyk.best-play-boom.com/1317893290z/ | 200 OK Content-Length: 17022 Content-Type: text/html | clean |
http://petrusyk.best-play-boom.com/js/less-1.3.3.min.js | 200 OK Content-Length: 58193 Content-Type: application/x-javascript | clean |
http://petrusyk.best-play-boom.com/cancel | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://petrusyk.best-play-boom.com/test404page.js | 404 Not Found Content-Length: 583 Content-Type: text/html | clean |
http://petrusyk.best-play-boom.com/games.php | 200 OK Content-Length: 20714 Content-Type: text/html | clean |
http://petrusyk.best-play-boom.com/games/13 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 08 Oct 2014 17:27:42 GMT Pragma: no-cache Location: ../stp1 Server: nginx_moded_by_kam/1.5.6 Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT DebuG: Mode5 Level2 Step1 Res0 Level3 Step1 Res1 P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" Set-Cookie: PHPSESSID=mgn83drc10j59mumd8hrp34kc1; path=/ Set-Cookie: uid=le9TsLZ%2BpLZfK5WzYN3v6WnuZvuDCOE9p2iXVk6JfaX4ZVrqat1eRSGpDWMH6Idi; expires=Wed, 08-Oct-2014 18:27:42 GMT; path=/ Set-Cookie: token=1318980578; expires=Wed, 08-Oct-2014 17:32:42 GMT; path=/1318980578N X-Powered-By: PHP/5.3.3-7+squeeze18 | clean |
http://petrusyk.best-play-boom.com/games/../stp1 | HTTP/1.1 302 Moved Permanently Connection: close Date: Wed, 08 Oct 2014 17:27:42 GMT Location: http://petrusyk.best-play-boom.com/1317893310z/stp1 Server: nginx_moded_by_kam/1.5.6 Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Debug: Mode1 Level1 Step1 Var3 Res1 Level2 Step1 P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" Set-Cookie: uid=ZdgTdQklKiCOT5KDYKGgR6O0YFeV2ZZZIIqUlOiTv%2FPMM6eY80DbhaV2zXqNM6ImxyblaT0gKsK9M2eIGJOj8ETwsIrwJNWEqd6l60%2F4j3f%2BqWwkVH9ZgSwBP6WcfXlRn8oYef3SkSZG7ZTi8V9vip99J0QrXo2v8GpkJUQAkGyh0PDsfegJQ8yqMrvNznwuUsh94wD4o%2FamyzOm33ovwg%3D%3D; expires=Wed, 08-Oct-2014 18:27:42 GMT; path=/ Set-Cookie: token=1318980578; expires=Wed, 08-Oct-2014 17:32:42 GMT; path=/1317893310z X-Powered-By: PHP/5.3.3-7+squeeze18 | clean |
http://petrusyk.best-play-boom.com/1317893310z/stp1 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 08 Oct 2014 17:27:43 GMT Pragma: no-cache Location: stp2 Server: nginx_moded_by_kam/1.5.6 Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Debug: Mode4 Res0 Level3 Step1 Res1 Step2 Res1 P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" Set-Cookie: uid=le9TsLZ%2BpLZfK5WzYN3v6WnuZvuDCOE9p2iXVk6JfaX4ZVrqat1eRSGpDWMH6Idi; expires=Wed, 08-Oct-2014 18:27:43 GMT; path=/ Set-Cookie: PHPSESSID=rknum7km3uobski29koeia0ae1; path=/ Set-Cookie: token=1318980578; expires=Wed, 08-Oct-2014 17:32:43 GMT; path=/1317893310z X-Powered-By: PHP/5.3.3-7+squeeze18 | clean |
http://petrusyk.best-play-boom.com/1317893310z/stp2 | 200 OK Content-Length: 14052 Content-Type: text/html | clean |
http://petrusyk.best-play-boom.com/1317893310z/cancel | 200 OK Content-Length: 14700 Content-Type: text/html | clean |
http://petrusyk.best-play-boom.com/1317893310z/games.php | 200 OK Content-Length: 20714 Content-Type: text/html | clean |
http://petrusyk.best-play-boom.com/1317893310z/games/13 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 08 Oct 2014 17:27:43 GMT Pragma: no-cache Location: ../stp1 Server: nginx_moded_by_kam/1.5.6 Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT DebuG: Mode5 Level2 Step1 Res0 Level3 Step1 Res1 P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" Set-Cookie: PHPSESSID=62eadpt2piqru1pfhb60h1dee0; path=/ Set-Cookie: uid=le9TsLZ%2BpLZfK5WzYN3v6WnuZvuDCOE9p2iXVk6JfaX4ZVrqat1eRSGpDWMH6Idi; expires=Wed, 08-Oct-2014 18:27:43 GMT; path=/ Set-Cookie: token=1318980578; expires=Wed, 08-Oct-2014 17:32:43 GMT; path=/1318980578G X-Powered-By: PHP/5.3.3-7+squeeze18 | clean |
http://petrusyk.best-play-boom.com/1317893310z/games/../stp1 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 08 Oct 2014 17:27:44 GMT Pragma: no-cache Location: stp2 Server: nginx_moded_by_kam/1.5.6 Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Debug: Mode4 Res0 Level3 Step1 Res1 Step2 Res1 P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" Set-Cookie: uid=le9TsLZ%2BpLZfK5WzYN3v6WnuZvuDCOE9p2iXVk6JfaX4ZVrqat1eRSGpDWMH6Idi; expires=Wed, 08-Oct-2014 18:27:44 GMT; path=/ Set-Cookie: PHPSESSID=gfjtmhqp84rpf1dib4tvaouom6; path=/ Set-Cookie: token=1318980578; expires=Wed, 08-Oct-2014 17:32:44 GMT; path=/1317893310z X-Powered-By: PHP/5.3.3-7+squeeze18 | clean |
http://petrusyk.best-play-boom.com/1317893310z/games/../stp2 | 200 OK Content-Length: 14052 Content-Type: text/html | clean |
http://petrusyk.best-play-boom.com/1317893310z/games/../cancel | 200 OK Content-Length: 14700 Content-Type: text/html | clean |
http://petrusyk.best-play-boom.com/1317893310z/games/../games.php | 200 OK Content-Length: 20714 Content-Type: text/html | clean |
http://petrusyk.best-play-boom.com/1317893310z/games/../games/13 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 08 Oct 2014 17:27:44 GMT Pragma: no-cache Location: ../stp1 Server: nginx_moded_by_kam/1.5.6 Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT DebuG: Mode5 Level2 Step1 Res0 Level3 Step1 Res1 P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" Set-Cookie: PHPSESSID=ej8179css8i8si9031rk1sa7a0; path=/ Set-Cookie: uid=le9TsLZ%2BpLZfK5WzYN3v6WnuZvuDCOE9p2iXVk6JfaX4ZVrqat1eRSGpDWMH6Idi; expires=Wed, 08-Oct-2014 18:27:44 GMT; path=/ Set-Cookie: token=1318980578; expires=Wed, 08-Oct-2014 17:32:44 GMT; path=/1318980578F X-Powered-By: PHP/5.3.3-7+squeeze18 | clean |
http://petrusyk.best-play-boom.com/1317893310z/games/../games/../stp1 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 08 Oct 2014 17:27:44 GMT Pragma: no-cache Location: stp2 Server: nginx_moded_by_kam/1.5.6 Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Debug: Mode4 Res0 Level3 Step1 Res1 Step2 Res1 P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" Set-Cookie: uid=le9TsLZ%2BpLZfK5WzYN3v6WnuZvuDCOE9p2iXVk6JfaX4ZVrqat1eRSGpDWMH6Idi; expires=Wed, 08-Oct-2014 18:27:44 GMT; path=/ Set-Cookie: PHPSESSID=2pelbln7m27j9b96hhv8jkf030; path=/ Set-Cookie: token=1318980578; expires=Wed, 08-Oct-2014 17:32:44 GMT; path=/1317893310z X-Powered-By: PHP/5.3.3-7+squeeze18 | clean |
http://petrusyk.best-play-boom.com/1317893310z/games/../games/../stp2 | 200 OK Content-Length: 14052 Content-Type: text/html | clean |
http://petrusyk.best-play-boom.com/1317893310z/games/../games/../cancel | 200 OK Content-Length: 14700 Content-Type: text/html | clean |
http://petrusyk.best-play-boom.com/1317893310z/games/../games/../games.php | 200 OK Content-Length: 20714 Content-Type: text/html | clean |
http://petrusyk.best-play-boom.com/1317893310z/games/../games/../games/13 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 08 Oct 2014 17:27:45 GMT Pragma: no-cache Location: ../stp1 Server: nginx_moded_by_kam/1.5.6 Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT DebuG: Mode5 Level2 Step1 Res0 Level3 Step1 Res1 P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" Set-Cookie: PHPSESSID=86h9q34mb68vet8dn95veqsm00; path=/ Set-Cookie: uid=le9TsLZ%2BpLZfK5WzYN3v6WnuZvuDCOE9p2iXVk6JfaX4ZVrqat1eRSGpDWMH6Idi; expires=Wed, 08-Oct-2014 18:27:45 GMT; path=/ Set-Cookie: token=1318980578; expires=Wed, 08-Oct-2014 17:32:45 GMT; path=/1318980578A X-Powered-By: PHP/5.3.3-7+squeeze18 | clean |
http://petrusyk.best-play-boom.com/1317893310z/games/../games/../games/../stp1 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 08 Oct 2014 17:27:45 GMT Pragma: no-cache Location: stp2 Server: nginx_moded_by_kam/1.5.6 Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Debug: Mode4 Res0 Level3 Step1 Res1 Step2 Res1 P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" Set-Cookie: uid=le9TsLZ%2BpLZfK5WzYN3v6WnuZvuDCOE9p2iXVk6JfaX4ZVrqat1eRSGpDWMH6Idi; expires=Wed, 08-Oct-2014 18:27:45 GMT; path=/ Set-Cookie: PHPSESSID=190iltp1t885iv0e1h854mn3d6; path=/ Set-Cookie: token=1318980578; expires=Wed, 08-Oct-2014 17:32:45 GMT; path=/1317893310z X-Powered-By: PHP/5.3.3-7+squeeze18 | clean |
http://petrusyk.best-play-boom.com/1317893310z/games/../games/../games/../stp2 | 200 OK Content-Length: 14052 Content-Type: text/html | clean |