Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=reddogfoto.forum24.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://reddogfoto.forum24.ru/ | 200 OK Content-Length: 26193 Content-Type: text/html | clean |
http://reddogfoto.forum24.ru/doc/r/reddogfoto/lang0.js | 200 OK Content-Length: 11332 Content-Type: application/javascript | clean |
http://forum24.ru/js17/gb_forum.js | 200 OK Content-Length: 28703 Content-Type: application/x-javascript | clean |
http://forum24.ru/js17/forum.js | 200 OK Content-Length: 55257 Content-Type: application/x-javascript | clean |
http://readme.ru/informer/32665.js | 200 OK Content-Length: 10077 Content-Type: application/x-javascript | clean |
http://counter.rambler.ru/top100.jcn?1481518 | 200 OK Content-Length: 6853 Content-Type: application/x-javascript | clean |
http://reddogfoto.forum24.ru//mc.yandex.ru/metrika/watch.js/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Wed, 16 Jul 2014 17:46:26 GMT Location: http://qip.ru/404 Server: nginx Content-Type: text/html | clean |
http://qip.ru/404 | 404 Not Found Content-Length: 84331 Content-Type: text/html | suspicious |
Suspicious code found <div class="qip_footer qf_stretch"> <div class="qf_left"><script> function forLinkToNewVersion(_link) { _gaq.push(['_trackEvent', 'ÐовÑй дизайн', 'Ðлик', 'Ðодвал']); setTimeout(function() {document.location.href = _link.href;}, 100); return false; } </script> <a id="q_footer_pda" href="//qip.ru/?newversion" rel="nofollow" onclick='return forLinkToNewVersion(this);'>ÐовÑй дизайн</a></ (function() { var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.defer = true; ga.async = true; ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script> | ||
http://qip.ru/js/s_index.js?555 | 200 OK Content-Length: 46783 Content-Type: application/x-javascript | clean |
http://reddogfoto.forum24.ru/js/criteo.js?555 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Wed, 16 Jul 2014 17:46:28 GMT Location: http://qip.ru/404 Server: nginx Content-Type: text/html | clean |
http://qip.ru/test404page.js | 404 Not Found Content-Length: 84300 Content-Type: text/html | suspicious |
Suspicious code found <div class="qip_footer qf_stretch"> <div class="qf_left"><script> function forLinkToNewVersion(_link) { _gaq.push(['_trackEvent', 'ÐовÑй дизайн', 'Ðлик', 'Ðодвал']); setTimeout(function() {document.location.href = _link.href;}, 100); return false; } </script> <a id="q_footer_pda" href="//qip.ru/?newversion" rel="nofollow" onclick='return forLinkToNewVersion(this);'>ÐовÑй дизайн</a></ (function() { var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.defer = true; ga.async = true; ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script> | ||
http://qip.ru/js/criteo.js?555 | 200 OK Content-Length: 1108 Content-Type: application/x-javascript | clean |
http://qip.ru//api.qip.ru/js/head.js?579/ | 404 Not Found Content-Length: 84119 Content-Type: text/html | suspicious |
Suspicious code found <div class="qip_footer qf_stretch"> <div class="qf_left"><script> function forLinkToNewVersion(_link) { _gaq.push(['_trackEvent', 'ÐовÑй дизайн', 'Ðлик', 'Ðодвал']); setTimeout(function() {document.location.href = _link.href;}, 100); return false; } </script> <a id="q_footer_pda" href="//qip.ru/?newversion" rel="nofollow" onclick='return forLinkToNewVersion(this);'>ÐовÑй дизайн</a></ (function() { var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.defer = true; ga.async = true; ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script> | ||
http://readme.ru/informer/33362.js | 200 OK Content-Length: 4868 Content-Type: application/x-javascript | clean |
http://qip.ru//qip.ru/homepage/ | 404 Not Found Content-Length: 84379 Content-Type: text/html | suspicious |
Suspicious code found <div class="qip_footer qf_stretch"> <div class="qf_left"><script> function forLinkToNewVersion(_link) { _gaq.push(['_trackEvent', 'ÐовÑй дизайн', 'Ðлик', 'Ðодвал']); setTimeout(function() {document.location.href = _link.href;}, 100); return false; } </script> <a id="q_footer_pda" href="//qip.ru/?newversion" rel="nofollow" onclick='return forLinkToNewVersion(this);'>ÐовÑй дизайн</a></ (function() { var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.defer = true; ga.async = true; ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script> | ||
https://qip.ru/reg/recover | 200 OK Content-Length: 18878 Content-Type: text/html | suspicious |
Suspicious code found <div class="qip_footer qf_stretch"> <div class="qf_left"><script> function forLinkToNewVersion(_link) { _gaq.push(['_trackEvent', 'ÐовÑй дизайн', 'Ðлик', 'Ðодвал']); setTimeout(function() {document.location.href = _link.href;}, 100); return false; } </script> <a id="q_footer_pda" href="//qip.ru/?newversion" rel="nofollow" onclick='return forLinkToNewVersion(this);'>ÐовÑй дизайн</a></ (function() { var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.defer = true; ga.async = true; ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script> | ||
https://api.qip.ru/js/main.js?579 | 200 OK Content-Length: 13646 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: reddogfoto.forum24.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 16 Jul 2014 17:46:15 GMT
Server: nginx
Content-Type: text/html; charset=windows-1251
GET / HTTP/1.1
Host: reddogfoto.forum24.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 16 Jul 2014 17:46:15 GMT
Server: nginx
Content-Type: text/html; charset=windows-1251
Second query (visit from search engine):
GET / HTTP/1.1
Host: reddogfoto.forum24.ru
Referer: http://www.google.com/search?q=reddogfoto.forum24.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: reddogfoto.forum24.ru
Referer: http://www.google.com/search?q=reddogfoto.forum24.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.