Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=temposhare.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://temposhare.com/
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://temposhare.com/ | 200 OK Content-Length: 35936 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smstariffs.ru <!DOCTYPE HTML PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<!--[if lt IE 9 ]> <html class="iel9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if IE 9 ]> <html class="ie9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if (gt IE 9)|!(IE)]><!--> <html class="" xmlns="http://www.w3.org/1999/xht ...[4056 bytes skipped]... | ||
http://temposhare.com/js/Core.js | 200 OK Content-Length: 1806 Content-Type: application/x-javascript | clean |
http://temposhare.com/js/jquery-1.4.2.min.js | 200 OK Content-Length: 72174 Content-Type: application/x-javascript | clean |
http://temposhare.com/js/content.js?v=6.3.4 | 200 OK Content-Length: 8555 Content-Type: application/x-javascript | clean |
http://temposhare.com/registration | 200 OK Content-Length: 15601 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smstariffs.ru <!DOCTYPE HTML PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<!--[if lt IE 9 ]> <html class="iel9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if IE 9 ]> <html class="ie9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if (gt IE 9)|!(IE)]><!--> <html class="" xmlns="http://www.w3.org/1999/xht ...[4036 bytes skipped]... | ||
http://temposhare.com/js/cache/f16b6b25f33d091cc0f9f87d2fa320de.js | 200 OK Content-Length: 21101 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: smstariffs.ru ...[3222 bytes skipped]... rise, Orange, Swisscom, Sunrise, Orange","information":"http:\/\/apihelp.ru\/index.php?country=%D8%E2%E5%E9%F6%E0%F0%E8%FF&num=9292&tt=4","cost_abonent":4},{"country_id":"64","name":"\u042d\u0441\u0442\u043e\u043d\u0438\u044f","code":"ee","number":"13015","max_sms":"3","additionalInformation":"","cost_abonent_currency":"eur","prefix":"dx3545","operators":"Elisa Eesti, Estonian Mobile Telecom, Tele2 Estonia","information":"http:\/\/smstariffs.ru\/ee\/13015\/","cost_abonent":2.5},{"country_id":"245","name":"\u042e\u0436\u043d\u0430\u044f \u0410\u0444\u0440\u0438\u043a\u0430","code":"za","number":"42944","max_sms":"1","additionalInformation":"","cost_abonent_currency":"za","prefix":"SAY 869588","operators":"Vodacom, MTN, Cell-C","information":"http:\/\/apihelp.ru\/index.php?country=%DE%C0%D0&num=42944&tt=2","cost_abonent":31.58}] | ||
http://temposhare.com/js/cache/registration-6.3.4.js | 200 OK Content-Length: 41162 Content-Type: application/x-javascript | clean |
http://temposhare.com/authenticate | 200 OK Content-Length: 18831 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smstariffs.ru <!DOCTYPE HTML PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<!--[if lt IE 9 ]> <html class="iel9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if IE 9 ]> <html class="ie9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if (gt IE 9)|!(IE)]><!--> <html class="" xmlns="http://www.w3.org/1999/xht ...[4036 bytes skipped]... | ||
http://temposhare.com/index/contact | 200 OK Content-Length: 14885 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smstariffs.ru <!DOCTYPE HTML PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<!--[if lt IE 9 ]> <html class="iel9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if IE 9 ]> <html class="ie9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if (gt IE 9)|!(IE)]><!--> <html class="" xmlns="http://www.w3.org/1999/xht ...[4036 bytes skipped]... | ||
http://temposhare.com/index/ | 200 OK Content-Length: 35936 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smstariffs.ru <!DOCTYPE HTML PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<!--[if lt IE 9 ]> <html class="iel9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if IE 9 ]> <html class="ie9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if (gt IE 9)|!(IE)]><!--> <html class="" xmlns="http://www.w3.org/1999/xht ...[4056 bytes skipped]... | ||
http://temposhare.com/search?q=%D0%9D%D0%BE%D0%B2%D0%B8%D0%BD%D0%BA%D0%B8 | 200 OK Content-Length: 34221 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smstariffs.ru <!DOCTYPE HTML PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<!--[if lt IE 9 ]> <html class="iel9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if IE 9 ]> <html class="ie9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if (gt IE 9)|!(IE)]><!--> <html class="" xmlns="http://www.w3.org/1999/xht ...[4036 bytes skipped]... | ||
http://temposhare.com/search?q=VA+-+%D0%A1%D0%B0%D0%BC%D1%8B%D0%B5+%D0%BB%D1%83%D1%87%D1%88%D0%B8%D0%B5+%D0%BD%D0%BE%D0%B2%D0%B8%D0%BD%D0%BA%D0%B8+%D1%80%D0%B0%D0%B4%D0%B8%D0%BE%D1%81%D1%82%D0%B0%D0%BD%D1%86%D0%B8%D0%B9+2+%5B2010%2C+Pop%2C+MP3%5D&id=80267 | 200 OK Content-Length: 34649 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smstariffs.ru <!DOCTYPE HTML PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<!--[if lt IE 9 ]> <html class="iel9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if IE 9 ]> <html class="ie9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if (gt IE 9)|!(IE)]><!--> <html class="" xmlns="http://www.w3.org/1999/xht ...[4036 bytes skipped]... | ||
http://temposhare.com/search?q=VA+-+%D0%A1%D0%B0%D0%BC%D1%8B%D0%B5+%D0%9B%D1%83%D1%87%D1%88%D0%B8%D0%B5+%D0%9D%D0%BE%D0%B2%D0%B8%D0%BD%D0%BA%D0%B8+%D0%A0%D0%B0%D0%B4%D0%B8%D0%BE%D1%81%D1%82%D0%B0%D0%BD%D1%86%D0%B8%D0%B9+%5B2010%2C+Pop%2C+Dance%2C+MP3%5D&id=80496 | 200 OK Content-Length: 35163 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smstariffs.ru <!DOCTYPE HTML PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<!--[if lt IE 9 ]> <html class="iel9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if IE 9 ]> <html class="ie9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if (gt IE 9)|!(IE)]><!--> <html class="" xmlns="http://www.w3.org/1999/xht ...[4036 bytes skipped]... | ||
http://temposhare.com/search?q=%D0%9C%D0%B5%D0%BC%D1%83%D0%B0%D1%80%D1%8B+%D0%B3%D0%B5%D0%B9%D1%88%D0%B8+%2F+Memoirs+of+a+Geisha+%28%D0%A0%D0%BE%D0%B1+%D0%9C%D0%B0%D1%80%D1%88%D0%B0%D0%BB%D0%BB+%2F+Rob+Marshall%29+%5B2005%2C+%D0%BC%D0%B5%D0%BB%D0%BE%D0%B4%D1%80%D0%B0%D0%BC%D0%B0%2C+%D0%B4%D1%80%D0%B0%D0%BC%D0%B0%2C+BDRip%5D&id=57993 | 200 OK Content-Length: 36962 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smstariffs.ru <!DOCTYPE HTML PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<!--[if lt IE 9 ]> <html class="iel9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if IE 9 ]> <html class="ie9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if (gt IE 9)|!(IE)]><!--> <html class="" xmlns="http://www.w3.org/1999/xht ...[4036 bytes skipped]... | ||
http://temposhare.com/search?q=%D0%A3%D0%B1%D0%B8%D0%B2%D0%B0%D1%8F+%D0%BC%D0%B5%D1%80%D1%82%D0%B2%D0%B5%D1%86%D0%BE%D0%B2+%2F+The+Dead+Undead+%28%D0%9C%D1%8D%D1%82%D1%82%D1%8C%D1%8E+%D0%A0.+%D0%90%D0%BD%D0%B4%D0%B5%D1%80%D1%81%D0%BE%D0%BD%2C+%D0%AD%D0%B4%D0%B2%D0%B0%D1%80%D0%B4+%D0%9A%D0%BE%D0%BD%D0%BD%D0%B0%29+%5B2010%2C+%D0%A3%D0%B6%D0%B0%D1%81%D1%8B%2C+%D1%84%D0%B0%D0%BD%D1%82%D0%B0%D1%81%D1%8 <span>...81 symbols skipped</span> | 200 OK Content-Length: 35247 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: smstariffs.ru <!DOCTYPE HTML PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<!--[if lt IE 9 ]> <html class="iel9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if IE 9 ]> <html class="ie9 " xmlns="http://www.w3.org/1999/xhtml"> <![endif]--> <!--[if (gt IE 9)|!(IE)]><!--> <html class="" xmlns="http://www.w3.org/1999/xht ...[4036 bytes skipped]... |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: temposhare.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 26 Feb 2015 03:12:31 GMT
Pragma: no-cache
Server: nginx/1.4.2
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=hsvoq0t5og0o1i5bhgscgl02j6; path=/; domain=.temposhare.com
Set-Cookie: stream=1; expires=Fri, 27-Feb-2015 03:12:31 GMT; path=/; domain=.temposhare.com
Set-Cookie: stream=1; expires=Fri, 27-Feb-2015 03:12:31 GMT; path=/; domain=.temposhare.com
X-Powered-By: PHP/5.4.36-0+deb7u3
GET / HTTP/1.1
Host: temposhare.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 26 Feb 2015 03:12:31 GMT
Pragma: no-cache
Server: nginx/1.4.2
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=hsvoq0t5og0o1i5bhgscgl02j6; path=/; domain=.temposhare.com
Set-Cookie: stream=1; expires=Fri, 27-Feb-2015 03:12:31 GMT; path=/; domain=.temposhare.com
Set-Cookie: stream=1; expires=Fri, 27-Feb-2015 03:12:31 GMT; path=/; domain=.temposhare.com
X-Powered-By: PHP/5.4.36-0+deb7u3
Second query (visit from search engine):
GET / HTTP/1.1
Host: temposhare.com
Referer: http://www.google.com/search?q=temposhare.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: temposhare.com
Referer: http://www.google.com/search?q=temposhare.com
Result:
The result is similar to the first query. There are no suspicious redirects found.