Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=skupka1.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: skupka1.ru
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Sat, 13 Sep 2014 22:07:24 GMT
Location: http://d18dhsdkjsd2.ru/books?charset=utf-8&keyword=%CF%EE%F0%ED%EE+%EE%ED%EB%E0%E9%ED+-+%F1%EC%EE%F2%F0%E5%F2%FC+%F4%EE%F2%EE+%E8+%E2%E8%E4%E5%EE+%E1%E5%F1%EF%EB%E0%F2%ED%EE+%7C+Paprikolu.Com&v=3&host=skupka1.ru
Server: nginx/1.4.3
Content-Type: text/html
X-Powered-By: PHP/5.4.21-1~dotdeb.1
GET / HTTP/1.1
Host: skupka1.ru
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Sat, 13 Sep 2014 22:07:24 GMT
Location: http://d18dhsdkjsd2.ru/books?charset=utf-8&keyword=%CF%EE%F0%ED%EE+%EE%ED%EB%E0%E9%ED+-+%F1%EC%EE%F2%F0%E5%F2%FC+%F4%EE%F2%EE+%E8+%E2%E8%E4%E5%EE+%E1%E5%F1%EF%EB%E0%F2%ED%EE+%7C+Paprikolu.Com&v=3&host=skupka1.ru
Server: nginx/1.4.3
Content-Type: text/html
X-Powered-By: PHP/5.4.21-1~dotdeb.1
Second query (visit from search engine):
GET / HTTP/1.1
Host: skupka1.ru
Referer: http://www.google.com/search?q=skupka1.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: skupka1.ru
Referer: http://www.google.com/search?q=skupka1.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://skupka1.ru/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sat, 13 Sep 2014 22:07:24 GMT Location: http://d18dhsdkjsd2.ru/books?charset=utf-8&keyword=%CF%EE%F0%ED%EE+%EE%ED%EB%E0%E9%ED+-+%F1%EC%EE%F2%F0%E5%F2%FC+%F4%EE%F2%EE+%E8+%E2%E8%E4%E5%EE+%E1%E5%F1%EF%EB%E0%F2%ED%EE+%7C+Paprikolu.Com&v=3&host=skupka1.ru Server: nginx/1.4.3 Content-Type: text/html X-Powered-By: PHP/5.4.21-1~dotdeb.1 | clean |
http://d18dhsdkjsd2.ru/books?charset=utf-8&keyword=%cf%ee%f0%ed%ee+%ee%ed%eb%e0%e9%ed+-+%f1%ec%ee%f2%f0%e5%f2%fc+%f4%ee%f2%ee+%e8+%e2%e8%e4%e5%ee+%e1%e5%f1%ef%eb%e0%f2%ed%ee+%7c+paprikolu.com&v=3&host=skupka1.ru | HTTP/1.1 302 Moved Temporarily Cache-Control: max-age=0 Connection: close Date: Sat, 13 Sep 2014 22:07:25 GMT Pragma: no-cache Location: http://d18dhsdkjsd9.ru/?aburj Server: nginx/1.4.3 Content-Type: text/html; charset=utf-8 Expires: Thu, 21 Jul 1977 07:30:00 GMT Last-Modified: Sat, 13 Sep 2014 22:07:25 GMT X-Powered-By: PHP/5.4.21-1~dotdeb.1 | clean |
http://d18dhsdkjsd9.ru/?aburj | HTTP/1.1 302 Moved Temporarily Cache-Control: max-age=0 Connection: close Date: Sat, 13 Sep 2014 22:07:25 GMT Pragma: no-cache Location: http://stoptraff/?670d455d4b609f962c5ba287b49b5e94= Server: nginx/1.4.3 Content-Type: text/html; charset=utf-8 Expires: Thu, 21 Jul 1977 07:30:00 GMT Last-Modified: Sat, 13 Sep 2014 22:07:25 GMT X-Powered-By: PHP/5.4.21-1~dotdeb.1 | clean |
http://stoptraff/?670d455d4b609f962c5ba287b49b5e94= | 500 Can't connect to stoptraff:80 (Bad hostname) Content-Length: 150 Content-Type: text/plain | clean |
http://stoptraff/test404page.js | 500 Can't connect to stoptraff:80 (Bad hostname) Content-Length: 150 Content-Type: text/plain | clean |