Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=said-afandi.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://said-afandi.ru/ | 200 OK Content-Length: 99858 Content-Type: text/html | malicious |
Page code contains blacklisted domain: capemadefieldguide.org  <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" lang="ru-RU"> <head profile="http://gmpg.org/xfn/11"> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <title>Ð¡Ð°Ð¹Ñ ÑÐµÐ¹Ñ Ð° Саида ÐÑанди алÑ-ЧиÑкави</title> <meta name="descri ...[3897 bytes skipped]... Malicious iFrame found. size: 443x66 src: http://capemadefieldguide.org/ram.html This URL is marked by Yandex as suspicious <iframe src="http://capemadefieldguide.org/ram.html" width="443" height="66" style="position:absolute;left:-77721px;"> | ||
http://saidafandi.ru/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ajax.js?ver=4.0.1 | 200 OK Content-Length: 33 Content-Type: application/x-javascript | clean |
http://saidafandi.ru/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/x-javascript | clean |
http://saidafandi.ru/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/x-javascript | clean |
http://saidafandi.ru/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/persist.js?ver=4.0.1 | 200 OK Content-Length: 24995 Content-Type: application/x-javascript | clean |
http://saidafandi.ru/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/store.js?ver=4.0.1 | 200 OK Content-Length: 5337 Content-Type: application/x-javascript | clean |
http://saidafandi.ru/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ngg_store.js?ver=4.0.1 | 200 OK Content-Length: 891 Content-Type: application/x-javascript | clean |
http://saidafandi.ru/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/lightbox/static/lightbox_context.js?ver=4.0.1 | 200 OK Content-Length: 890 Content-Type: application/x-javascript | clean |
http://saidafandi.ru/wp-content/plugins/share-buttons/js/share-buttons.js?ver=4.0.1 | 200 OK Content-Length: 1758 Content-Type: application/x-javascript | clean |
https://apis.google.com/js/plusone.js?ver=4.0.1 | 200 OK Content-Length: 12783 Content-Type: application/javascript | clean |
http://vkontakte.ru/js/api/share.js?11&ver=4.0.1 | 200 OK Content-Length: 10156 Content-Type: application/x-javascript | clean |
http://userapi.com/js/api/openapi.js?34&ver=4.0.1 | 200 OK Content-Length: 64063 Content-Type: application/x-javascript | clean |
http://stg.odnoklassniki.ru/share/odkl_share.js?ver=4.0.1 | 200 OK Content-Length: 12312 Content-Type: application/x-javascript | clean |
http://saidafandi.ru/wp-content/plugins/share-buttons/js/odkl_init.js?ver=4.0.1 | 200 OK Content-Length: 28 Content-Type: application/x-javascript | clean |
http://cdn.connect.mail.ru/js/share/2/share.js?ver=4.0.1 | 200 OK Content-Length: 11486 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: said-afandi.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 08 Mar 2015 12:15:16 GMT
Pragma: no-cache
Server: nginx/0.7.67
Content-Encoding: none
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=g3rkas0bbho8fv88hpt9tnf8u0; path=/
X-Pingback: http://saidafandi.ru/xmlrpc.php
X-Powered-By: PHP/5.3.3-7+squeeze22
GET / HTTP/1.1
Host: said-afandi.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 08 Mar 2015 12:15:16 GMT
Pragma: no-cache
Server: nginx/0.7.67
Content-Encoding: none
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=g3rkas0bbho8fv88hpt9tnf8u0; path=/
X-Pingback: http://saidafandi.ru/xmlrpc.php
X-Powered-By: PHP/5.3.3-7+squeeze22
Second query (visit from search engine):
GET / HTTP/1.1
Host: said-afandi.ru
Referer: http://www.google.com/search?q=said-afandi.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: said-afandi.ru
Referer: http://www.google.com/search?q=said-afandi.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.