Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=searchengines.pl
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://searchengines.pl/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: searchengines.pl
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 30 Jan 2015 04:32:52 GMT
Server: nginx
Content-Type: text/html;charset=UTF-8
Set-Cookie: session_id=a8f3c6eb7cea95874c157d047e78c717; path=/; domain=.searchengines.pl; httponly
GET / HTTP/1.1
Host: searchengines.pl
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 30 Jan 2015 04:32:52 GMT
Server: nginx
Content-Type: text/html;charset=UTF-8
Set-Cookie: session_id=a8f3c6eb7cea95874c157d047e78c717; path=/; domain=.searchengines.pl; httponly
Second query (visit from search engine):
GET / HTTP/1.1
Host: searchengines.pl
Referer: http://www.google.com/search?q=searchengines.pl
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: searchengines.pl
Referer: http://www.google.com/search?q=searchengines.pl
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://www.searchengines.pl/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Fri, 30 Jan 2015 04:32:51 GMT Pragma: no-cache Location: http://searchengines.pl/ Server: nginx Content-Type: text/html;charset=UTF-8 Expires: Thu, 29 Jan 2015 04:32:51 GMT Set-Cookie: session_id=68da7beda1d08e61023759bbdc00585a; path=/; domain=.searchengines.pl; httponly | clean |
http://searchengines.pl/ | 200 OK Content-Length: 102305 Content-Type: text/html | clean |
http://searchengines.pl/public/js/3rd_party/prototype.js | 200 OK Content-Length: 180829 Content-Type: application/x-javascript | clean |
http://searchengines.pl/public/js/ipb.js?ipbv=e5be7cb9ae692af52b7b0e922d2e51ec&load=quickpm,hovercard,board | 200 OK Content-Length: 127627 Content-Type: application/x-javascript | clean |
http://searchengines.pl/public/js/3rd_party/scriptaculous/scriptaculous-cache.js | 200 OK Content-Length: 79618 Content-Type: application/x-javascript | clean |
http://searchengines.pl/cache/lang_cache/2/ipb.lang.js?nck=3dd166d83264b9d7b7755bb8f6e4f420 | 200 OK Content-Length: 31762 Content-Type: application/x-javascript | clean |
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 12798 Content-Type: application/javascript | clean |
http://cdn.wibiya.com/Toolbars/dir_0323/Toolbar_323896/Loader_323896.js | 400 Bad Request Content-Length: 270 Content-Type: text/html | clean |
http://cdn.wibiya.com/test404page.js | 400 Bad Request Content-Length: 211 Content-Type: text/html | clean |