Scanned pages/files
Request | Server response | Status |
http://saniafilm.ru/ | 200 OK Content-Length: 58516 Content-Type: text/html | suspicious |
Suspicious code found </span> | ||
http://saniafilm.ru/engine/classes/js/jquery.js | 200 OK Content-Length: 93868 Content-Type: application/x-javascript | clean |
http://saniafilm.ru/engine/classes/js/jqueryui.js | 200 OK Content-Length: 65477 Content-Type: application/x-javascript | clean |
http://saniafilm.ru/engine/classes/js/dle_js.js | 200 OK Content-Length: 20786 Content-Type: application/x-javascript | clean |
http://saniafilm.ru/?newsid=1293 | 200 OK Content-Length: 23648 Content-Type: text/html | suspicious |
Suspicious code found </span> | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.3/jquery.min.js | 200 OK Content-Length: 57254 Content-Type: text/javascript | clean |
http://getdc.pw/fake/?scenario=126 | 200 OK Content-Length: 2537 Content-Type: application/javascript | clean |
http://cdn.connect.mail.ru/js/loader.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 06 Mar 2015 01:33:14 GMT Location: http://connect.mail.ru/js/loader.js Server: nginx Content-Length: 178 Content-Type: text/html X-Content-Type-Options: nosniff | clean |
http://connect.mail.ru/js/loader.js | 200 OK Content-Length: 6453 Content-Type: application/javascript | clean |
http://saniafilm.ru/?newsid=1235 | 200 OK Content-Length: 22936 Content-Type: text/html | suspicious |
Suspicious code found </span> | ||
http://saniafilm.ru/?newsid=1357 | 200 OK Content-Length: 23770 Content-Type: text/html | suspicious |
Suspicious code found </span> | ||
http://saniafilm.ru/?newsid=1349 | 200 OK Content-Length: 23998 Content-Type: text/html | suspicious |
Suspicious code found </span> | ||
http://saniafilm.ru/?newsid=1197 | 200 OK Content-Length: 23649 Content-Type: text/html | suspicious |
Suspicious code found </span> | ||
http://saniafilm.ru/engine/dude/index/leech_out.php?a%3AaHR0cHM6Ly90d2l0dGVyLmNvbS9zaGFyZQ%3D%3D | HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Fri, 06 Mar 2015 01:33:16 GMT Pragma: no-cache Server: nginx/1.6.2 Content-Length: 784 Content-Type: text/html; charset=cp1251 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=f8d3aede07499edd993e2b5777fe769a; path=/ X-Powered-By: PHP/5.2.17 | clean |
https://twitter.com/share | HTTP/1.1 302 Found Cache-Control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0 Date: Fri, 06 Mar 2015 01:33:17 UTC Pragma: no-cache Location: https://twitter.com/intent/tweet?url=&original_referer= Server: tsa_b Content-Length: 125 Content-Type: text/html;charset=utf-8 Expires: Tue, 31 Mar 1981 05:00:00 GMT Last-Modified: Fri, 06 Mar 2015 01:33:17 GMT Content-Security-Policy: default-src https:; connect-src https:; font-src https: data:; frame-src https: twitter:; img-src https: data:; media-src https:; object-src https:; script-src 'unsafe-inline' 'unsafe-eval' https:; style-src 'unsafe-inline' https:; report-uri https://twitter.com/i/csp_report?a=NVQWGYLXFVZXO2LGOQ%3D%3D%3D%3D%3D%3D&ro=false; Ms: A Set-Cookie: nodocdom=1; Path=/; Domain=.twitter.com Set-Cookie: _twitter_sess=BAh7CSIKZmxhc2hJQzonQWN0aW9uQ29udHJvbGxlcjo6Rmxhc2g6OkZsYXNo%250ASGFzaHsABjoKQHVzZWR7ADoPY3JlYXRlZF9hdGwrCNMXt%252BxLAToMY3NyZl9p%250AZCIlYjllMzRjZWM0YTBhN2M2MzdjNWE1ZWJmYTlhZWJmNGY6B2lkIiU3OGQ4%250AMTg4YTNlMmYxMThlYThmMjhhOGMxNzI5MmZkYQ%253D%253D--6ac67876a977c642cea9be065760810bddee0f08; Path=/; Domain=.twitter.com; Secure; HTTPOnly Set-Cookie: guest_id=v1%3A142560559713755172; Domain=.twitter.com; Path=/; Expires=Sun, 05-Mar-2017 01:33:17 UTC Status: 302 Found Strict-Transport-Security: max-age=631138519 X-Connection-Hash: f89a9ededf53a73373282cd98099e71b X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-Response-Time: 6 X-Transaction: 45b64165883d6de5 X-Twitter-Response-Tags: BouncerCompliant X-Ua-Compatible: IE=edge,chrome=1 X-Xss-Protection: 1; mode=block | clean |
https://twitter.com/intent/tweet?url=&original_referer= | 200 OK Content-Length: 4895 Content-Type: text/html | clean |
https://abs.twimg.com/a/1425532665/tfw/loadrunner.js | 200 OK Content-Length: 10480 Content-Type: application/javascript | clean |
http://saniafilm.ru/home | 404 Not Found Content-Length: 16743 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: saniafilm.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 06 Mar 2015 01:33:13 GMT
Pragma: no-cache
Server: nginx/1.6.2
Vary: Accept-Encoding
Content-Type: text/html; charset=cp1251
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=c807ac663e12fa6ab2af93cef62e66df; path=/
Set-Cookie: dle_user_id=deleted; expires=Thu, 06-Mar-2014 01:33:11 GMT; path=/; domain=.saniafilm.ru; httponly
Set-Cookie: dle_password=deleted; expires=Thu, 06-Mar-2014 01:33:11 GMT; path=/; domain=.saniafilm.ru; httponly
Set-Cookie: dle_hash=deleted; expires=Thu, 06-Mar-2014 01:33:11 GMT; path=/; domain=.saniafilm.ru; httponly
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: saniafilm.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 06 Mar 2015 01:33:13 GMT
Pragma: no-cache
Server: nginx/1.6.2
Vary: Accept-Encoding
Content-Type: text/html; charset=cp1251
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=c807ac663e12fa6ab2af93cef62e66df; path=/
Set-Cookie: dle_user_id=deleted; expires=Thu, 06-Mar-2014 01:33:11 GMT; path=/; domain=.saniafilm.ru; httponly
Set-Cookie: dle_password=deleted; expires=Thu, 06-Mar-2014 01:33:11 GMT; path=/; domain=.saniafilm.ru; httponly
Set-Cookie: dle_hash=deleted; expires=Thu, 06-Mar-2014 01:33:11 GMT; path=/; domain=.saniafilm.ru; httponly
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: saniafilm.ru
Referer: http://www.google.com/search?q=saniafilm.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: saniafilm.ru
Referer: http://www.google.com/search?q=saniafilm.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=saniafilm.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://saniafilm.ru/
Result: saniafilm.ru is not infected or malware details are not published yet.
Result: saniafilm.ru is not infected or malware details are not published yet.