Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sexguest.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sexguest.ru/
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://sexguest.ru/ | 200 OK Content-Length: 28325 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smartcode.sexguest.ru ...[67 bytes skipped]... </a> òåáå ïîìîãóò<br>Áîëüøîé è ìàëåíüêèé <a href="http://www.mega-porno.ru">õóé</a> ìîæíî óâèäåòü òóò mega-porno.ru </small></center> </div> </div> <div class="right"> <div style="margin:5px 0px 0px -15px;"> <script type="text/javascript"><!--<![CDATA[ /* (c)AdOcean 2003-2013 */ /* PLACEMENT: smartcode.sexguest.ru.240_400 */ if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E')); //]]>--></script> </div> <div class="content"> <h2>Ñë ...[3954 bytes skipped]... | ||
http://sexguest.ru/2009-10-15/3.htm | 200 OK Content-Length: 18057 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smartcode.sexguest.ru </small></center>
</div> </div> <div class="right"> <div style="margin:5px 0px 0px -15px;"> <script type="text/javascript"><!--<![CDATA[ /* (c)AdOcean 2003-2013 */ /* PLACEMENT: smartcode.sexguest.ru.240_400 */ if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E')); //]]>--></script> </div> <div c ...[4207 bytes skipped]... | ||
http://sexguest.ru/2013-07-24/6.htm | 200 OK Content-Length: 18427 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smartcode.sexguest.ru </small></center>
</div> </div> <div class="right"> <div style="margin:5px 0px 0px -15px;"> <script type="text/javascript"><!--<![CDATA[ /* (c)AdOcean 2003-2013 */ /* PLACEMENT: smartcode.sexguest.ru.240_400 */ if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E')); //]]>--></script> </div> <div c ...[4207 bytes skipped]... | ||
http://sexguest.ru/2013-04-30/5.htm | 200 OK Content-Length: 18369 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smartcode.sexguest.ru </small></center>
</div> </div> <div class="right"> <div style="margin:5px 0px 0px -15px;"> <script type="text/javascript"><!--<![CDATA[ /* (c)AdOcean 2003-2013 */ /* PLACEMENT: smartcode.sexguest.ru.240_400 */ if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E')); //]]>--></script> </div> <div c ...[4207 bytes skipped]... | ||
http://sexguest.ru/2011-10-15/2.htm | 200 OK Content-Length: 18190 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smartcode.sexguest.ru </small></center>
</div> </div> <div class="right"> <div style="margin:5px 0px 0px -15px;"> <script type="text/javascript"><!--<![CDATA[ /* (c)AdOcean 2003-2013 */ /* PLACEMENT: smartcode.sexguest.ru.240_400 */ if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E')); //]]>--></script> </div> <div c ...[4207 bytes skipped]... | ||
http://sexguest.ru/2012-12-13/6.htm | 200 OK Content-Length: 17919 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smartcode.sexguest.ru </small></center>
</div> </div> <div class="right"> <div style="margin:5px 0px 0px -15px;"> <script type="text/javascript"><!--<![CDATA[ /* (c)AdOcean 2003-2013 */ /* PLACEMENT: smartcode.sexguest.ru.240_400 */ if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E')); //]]>--></script> </div> <div c ...[4207 bytes skipped]... | ||
http://sexguest.ru/2014-05-06/9.htm | 200 OK Content-Length: 18263 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smartcode.sexguest.ru </small></center>
</div> </div> <div class="right"> <div style="margin:5px 0px 0px -15px;"> <script type="text/javascript"><!--<![CDATA[ /* (c)AdOcean 2003-2013 */ /* PLACEMENT: smartcode.sexguest.ru.240_400 */ if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E')); //]]>--></script> </div> <div c ...[4207 bytes skipped]... | ||
http://sexguest.ru/2013-03-24/2.htm | 200 OK Content-Length: 19736 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smartcode.sexguest.ru </small></center>
</div> </div> <div class="right"> <div style="margin:5px 0px 0px -15px;"> <script type="text/javascript"><!--<![CDATA[ /* (c)AdOcean 2003-2013 */ /* PLACEMENT: smartcode.sexguest.ru.240_400 */ if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E')); //]]>--></script> </div> <div c ...[4199 bytes skipped]... | ||
http://sexguest.ru/2013-03-25/2.htm | 200 OK Content-Length: 19536 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smartcode.sexguest.ru </small></center>
</div> </div> <div class="right"> <div style="margin:5px 0px 0px -15px;"> <script type="text/javascript"><!--<![CDATA[ /* (c)AdOcean 2003-2013 */ /* PLACEMENT: smartcode.sexguest.ru.240_400 */ if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E')); //]]>--></script> </div> <div c ...[4203 bytes skipped]... | ||
http://sexguest.ru/2012-09-21/8.htm | 200 OK Content-Length: 18301 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smartcode.sexguest.ru </small></center>
</div> </div> <div class="right"> <div style="margin:5px 0px 0px -15px;"> <script type="text/javascript"><!--<![CDATA[ /* (c)AdOcean 2003-2013 */ /* PLACEMENT: smartcode.sexguest.ru.240_400 */ if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E')); //]]>--></script> </div> <div c ...[4185 bytes skipped]... | ||
http://sexguest.ru/2014-07-01/12.htm | 200 OK Content-Length: 17665 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smartcode.sexguest.ru </small></center>
</div> </div> <div class="right"> <div style="margin:5px 0px 0px -15px;"> <script type="text/javascript"><!--<![CDATA[ /* (c)AdOcean 2003-2013 */ /* PLACEMENT: smartcode.sexguest.ru.240_400 */ if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E')); //]]>--></script> </div> <div c ...[4199 bytes skipped]... | ||
http://sexguest.ru/2014-07-23/7.htm | 200 OK Content-Length: 19049 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smartcode.sexguest.ru </small></center>
</div> </div> <div class="right"> <div style="margin:5px 0px 0px -15px;"> <script type="text/javascript"><!--<![CDATA[ /* (c)AdOcean 2003-2013 */ /* PLACEMENT: smartcode.sexguest.ru.240_400 */ if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E')); //]]>--></script> </div> <div c ...[4207 bytes skipped]... | ||
http://sexguest.ru/2012-04-27/4.htm | 200 OK Content-Length: 18297 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smartcode.sexguest.ru </small></center>
</div> </div> <div class="right"> <div style="margin:5px 0px 0px -15px;"> <script type="text/javascript"><!--<![CDATA[ /* (c)AdOcean 2003-2013 */ /* PLACEMENT: smartcode.sexguest.ru.240_400 */ if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E')); //]]>--></script> </div> <div c ...[4196 bytes skipped]... | ||
http://sexguest.ru/2013-08-20/4.htm | 200 OK Content-Length: 18095 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smartcode.sexguest.ru </small></center>
</div> </div> <div class="right"> <div style="margin:5px 0px 0px -15px;"> <script type="text/javascript"><!--<![CDATA[ /* (c)AdOcean 2003-2013 */ /* PLACEMENT: smartcode.sexguest.ru.240_400 */ if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E')); //]]>--></script> </div> <div c ...[4207 bytes skipped]... | ||
http://sexguest.ru/2012-01-21/2.htm | 200 OK Content-Length: 19217 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smartcode.sexguest.ru </small></center>
</div> </div> <div class="right"> <div style="margin:5px 0px 0px -15px;"> <script type="text/javascript"><!--<![CDATA[ /* (c)AdOcean 2003-2013 */ /* PLACEMENT: smartcode.sexguest.ru.240_400 */ if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E')); //]]>--></script> </div> <div c ...[4207 bytes skipped]... |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sexguest.ru
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0
Connection: close
Date: Wed, 25 Feb 2015 02:44:15 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=windows-1251
Expires: Wed, 25 Feb 2015 02:44:15 GMT
GET / HTTP/1.1
Host: sexguest.ru
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0
Connection: close
Date: Wed, 25 Feb 2015 02:44:15 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=windows-1251
Expires: Wed, 25 Feb 2015 02:44:15 GMT
Second query (visit from search engine):
GET / HTTP/1.1
Host: sexguest.ru
Referer: http://www.google.com/search?q=sexguest.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sexguest.ru
Referer: http://www.google.com/search?q=sexguest.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.