Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pwmax.my1.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://pwmax.my1.ru/ | 200 OK Content-Length: 7254 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: luckysearcher.ru ...[1505 bytes skipped]... ad> <script language="javascript" async defer src="http://uno.LINK-AV.INFO/?t=b&blockids=1997"></script> <script language="javascript" async defer src="http://uno.LINK-AV.INFO/?t=b&blockids=2000"></script> <script language="javascript" async defer src="http://uno.LINK-AV.INFO/?t=b&blockids=2002"></script> <script language='javascript' type='text/javascript' src='http://luckysearcher.ru/8mpbf103spp739vu3tv8yc1bl6otjsd1'></script> <title>PW MAX</title> <meta http-equiv="content-type" content="text/html; charset=windows-1251"> <meta name="description" content="ÐеÑплаÑнÑй ÑеÑÐ²ÐµÑ Perfect World."> <meta name="keywords" content="ÑеÑÐ²ÐµÑ <div id="lastforum"> <h2>ÐоÑледние ÑÐµÐ¼Ñ ÑоÑÑма</h2> </div> </div> <div id="cont ...[2443 bytes skipped]... | ||
http://uno.LINK-AV.INFO/?t=b&blockids=1997 | 500 Can't connect to uno.LINK-AV.INFO:80 (Bad hostname) Content-Length: 164 Content-Type: text/plain | clean |
http://uno.LINK-AV.INFO/test404page.js | 500 Can't connect to uno.LINK-AV.INFO:80 (Bad hostname) Content-Length: 164 Content-Type: text/plain | clean |
http://uno.LINK-AV.INFO/?t=b&blockids=2000 | 500 Can't connect to uno.LINK-AV.INFO:80 (Bad hostname) Content-Length: 164 Content-Type: text/plain | clean |
http://uno.LINK-AV.INFO/?t=b&blockids=2002 | 500 Can't connect to uno.LINK-AV.INFO:80 (Bad hostname) Content-Length: 164 Content-Type: text/plain | clean |
http://luckysearcher.ru/8mpbf103spp739vu3tv8yc1bl6otjsd1 | 200 OK Content-Length: 8045 Content-Type: text/javascript | clean |
http://s103.ucoz.net/src/jquery-1.7.2.js | 200 OK Content-Length: 94840 Content-Type: text/javascript | clean |
http://s103.ucoz.net/src/ulightbox/ulightbox.js | 200 OK Content-Length: 22618 Content-Type: text/javascript | clean |
http://s103.ucoz.net/src/uwnd.js?2 | 200 OK Content-Length: 228554 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: pwmax.my1.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Cache-Control: no-store
Cache-Control: private
Connection: close
Date: Wed, 13 Aug 2014 06:10:19 GMT
Pragma: no-cache
Server: uServ/3.2.2
Content-Type: text/html; charset=UTF-8
Set-Cookie: 5pwmaxuCoz=; path=/; expires=Mon, 13-Aug-2012 06:10:19 GMT; domain=.pwmax.my1.ru;
GET / HTTP/1.1
Host: pwmax.my1.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Cache-Control: no-store
Cache-Control: private
Connection: close
Date: Wed, 13 Aug 2014 06:10:19 GMT
Pragma: no-cache
Server: uServ/3.2.2
Content-Type: text/html; charset=UTF-8
Set-Cookie: 5pwmaxuCoz=; path=/; expires=Mon, 13-Aug-2012 06:10:19 GMT; domain=.pwmax.my1.ru;
Second query (visit from search engine):
GET / HTTP/1.1
Host: pwmax.my1.ru
Referer: http://www.google.com/search?q=pwmax.my1.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: pwmax.my1.ru
Referer: http://www.google.com/search?q=pwmax.my1.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.