Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pw.war-top.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://pw.war-top.ru/ | 200 OK Content-Length: 50539 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: community.war-top.ru Deprecated: Function set_magic_quotes_runtime() is deprecated in /var/www/taiwan/data/www/pw.war-top.ru/admin/init.php on line 7 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <link rel="shortcut icon" type="image/x-icon" href="http://war-top.ru/favicon.ico" /> <meta http-equiv="Content-Type" ...[4489 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js | 200 OK Content-Length: 72174 Content-Type: text/javascript | clean |
http://pw.war-top.ru/js/scripts.js | 200 OK Content-Length: 323 Content-Type: application/x-javascript | clean |
http://pw.war-top.ru/js/scripts_game.js | 200 OK Content-Length: 303 Content-Type: application/x-javascript | clean |
http://pw.war-top.ru/index.php | 200 OK Content-Length: 50539 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: community.war-top.ru Deprecated: Function set_magic_quotes_runtime() is deprecated in /var/www/taiwan/data/www/pw.war-top.ru/admin/init.php on line 7 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <link rel="shortcut icon" type="image/x-icon" href="http://war-top.ru/favicon.ico" /> <meta http-equiv="Content-Type" ...[4489 bytes skipped]... | ||
http://pw.war-top.ru/index.php?do=votes&id=8 | 200 OK Content-Length: 10077 Content-Type: text/html | clean |
http://api.recaptcha.net/challenge?k=6Lc6UQwAAAAAAAQ-TXJh4I7USYGzLUJoBz2a2TNO | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, no-store, max-age=0, must-revalidate Connection: close Date: Sun, 25 Jan 2015 10:03:29 GMT Pragma: no-cache Accept-Ranges: none Location: http://www.google.com/recaptcha/api/challenge?k=6Lc6UQwAAAAAAAQ-TXJh4I7USYGzLUJoBz2a2TNO Server: GSE Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Fri, 01 Jan 1990 00:00:00 GMT Alternate-Protocol: 80:quic,p=0.02 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
http://www.google.com/recaptcha/api/challenge?k=6lc6uqwaaaaaaaq-txjh4i7usygzlujobz2a2tno | 200 OK Content-Length: 67 Content-Type: text/javascript | clean |
http://pw.war-top.ru/index.php?do=votes&id=8&sms=true | 200 OK Content-Length: 15649 Content-Type: text/html | clean |
http://pw.war-top.ru/test404page.js | 404 Not Found Content-Length: 289 Content-Type: text/html | clean |
http://pw.war-top.ru/index.php?do=sitedetails&id=8 | 200 OK Content-Length: 11796 Content-Type: text/html | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 19492 Content-Type: text/javascript | clean |
http://pw.war-top.ru/tracker.php?do=out&id=8 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 25 Jan 2015 10:03:31 GMT Location: http://pwspacer.com Server: nginx Content-Length: 130 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.4.33 | clean |
http://pwspacer.com/ | 200 OK Content-Length: 818 Content-Type: text/html | clean |
http://pwspacer.com/?ga=9Eq8XC38t8aP%2BPJiqNMNOZsx%2FcrYbuPjePchpw%2BtbHmZebJeYJ2SCW6VJaNgBjjbqcs6DywiO2zfRHBQi5lCRg%3D%3D&gerf=h7jfxgopYFckpl4JpNYZ%2B5%2BJpYLDwxhEAANmKcazZ4Q%3D&guro=kFf2xTObgUtA8JCrTv46vy%2FNkKP%2BYF7uUhV9Mqn3MU0oQpwGIUdIFVrEUiuY%2FmpX& | HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: Keep-Alive Date: Sun, 25 Jan 2015 10:03:32 GMT Pragma: no-cache Server: Apache Vary: Accept-Encoding,User-Agent Content-Type: text/html; charset=UTF-8 Keep-Alive: timeout=5, max=121 Set-Cookie: gvc=915vr1697258130810190; expires=Fri, 24-Jan-2020 10:03:33 GMT; path=/; domain=pwspacer.com; httponly X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKrfIMFkSaoTSqKmC+BrghK0CpDHc0MuVzmMHin8LIORhpXbped+iYhSnZurWnEO0zcKcVIrzp026LVc5pMB9bUCAwEAAQ==_BA4B4s1oVj8SHOYQ6AUk01yOHuBGQ121FhzYmJZx0EiT9zhQMP0mD9bXjjkBH4hBDCqZLiqFFwsrdkJ8mu1qag== | clean |
http://pwspacer.com/rg-erdr.php?_rpo=t | HTTP/1.1 302 Found Connection: Keep-Alive Date: Sun, 25 Jan 2015 10:03:34 GMT Location: http://dp.g.doubleclick.net/apps/domainpark/domainpark.cgi?client=&domain_name=pwspacer.com&channel=&drid=&output=html Server: Apache Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Keep-Alive: timeout=5, max=123 | clean |
http://dp.g.doubleclick.net/apps/domainpark/domainpark.cgi?client=&domain_name=pwspacer.com&channel=&drid=&output=html | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://pw.war-top.ru/index.php?do=votes&id=23 | 200 OK Content-Length: 10070 Content-Type: text/html | clean |
http://pw.war-top.ru/index.php?do=votes&id=23&sms=true | 200 OK Content-Length: 15641 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: pw.war-top.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 25 Jan 2015 10:03:27 GMT
Server: nginx
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.4.33
GET / HTTP/1.1
Host: pw.war-top.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 25 Jan 2015 10:03:27 GMT
Server: nginx
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.4.33
Second query (visit from search engine):
GET / HTTP/1.1
Host: pw.war-top.ru
Referer: http://www.google.com/search?q=pw.war-top.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: pw.war-top.ru
Referer: http://www.google.com/search?q=pw.war-top.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.