Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=vekx.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://vekx.ru/ | 200 OK Content-Length: 56951 Content-Type: text/html | suspicious |
Suspicious code found <div id="amsb"></div> <script type="text/javascript" src="http://am15.net/sb.php?s=15248"></script> <div id="amcu"></div> <script type="text/javascript" src="http://am15.net/cu.php?s=15248"></script> | ||
http://vekx.ru/engine/classes/js/jquery.js | 200 OK Content-Length: 93637 Content-Type: application/x-javascript | clean |
http://vekx.ru/engine/classes/js/jqueryui.js | 200 OK Content-Length: 64860 Content-Type: application/x-javascript | clean |
http://vekx.ru/engine/classes/js/dle_js.js | 200 OK Content-Length: 24985 Content-Type: application/x-javascript | clean |
http://ajax.googleapis.com/ajax/libs/webfont/1/webfont.js | 200 OK Content-Length: 17844 Content-Type: text/javascript | clean |
http://vekx.ru/engine/editor/scripts/webfont.js | 200 OK Content-Length: 3019 Content-Type: application/x-javascript | clean |
http://vekx.ru/templates/Flexible/css/Core.js | 200 OK Content-Length: 162766 Content-Type: application/x-javascript | clean |
http://vekx.ru/templates/Flexible/css/step.js | 200 OK Content-Length: 15358 Content-Type: application/x-javascript | clean |
http://dasistnews.net/viewt.js | 200 OK Content-Length: 20987 Content-Type: application/x-javascript | clean |
http://am15.net/bn.php?s=15248&f=3&d=52210 | 200 OK Content-Length: 3178 Content-Type: text/javascript | clean |
http://widgets.amung.us/small.js | 200 OK Content-Length: 4801 Content-Type: application/x-javascript | clean |
http://vekx.ru/index.php | 200 OK Content-Length: 57000 Content-Type: text/html | suspicious |
Suspicious code found <div id="amsb"></div> <script type="text/javascript" src="http://am15.net/sb.php?s=15248"></script> <div id="amcu"></div> <script type="text/javascript" src="http://am15.net/cu.php?s=15248"></script> | ||
http://vekx.ru/index.php?do=stats | 200 OK Content-Length: 29843 Content-Type: text/html | suspicious |
Suspicious code found <div id="amsb"></div> <script type="text/javascript" src="http://am15.net/sb.php?s=15248"></script> <div id="amcu"></div> <script type="text/javascript" src="http://am15.net/cu.php?s=15248"></script> | ||
http://vekx.ru/index.php?do=register | 200 OK Content-Length: 28111 Content-Type: text/html | suspicious |
Suspicious code found <div id="amsb"></div> <script type="text/javascript" src="http://am15.net/sb.php?s=15248"></script> <div id="amcu"></div> <script type="text/javascript" src="http://am15.net/cu.php?s=15248"></script> | ||
http://vekx.ru/index.php?do=lostpassword | 200 OK Content-Length: 28268 Content-Type: text/html | suspicious |
Suspicious code found <div id="amsb"></div> <script type="text/javascript" src="http://am15.net/sb.php?s=15248"></script> <div id="amcu"></div> <script type="text/javascript" src="http://am15.net/cu.php?s=15248"></script> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: vekx.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 26 Feb 2015 02:35:13 GMT
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=qfruhgak493n5oauucmroelo92; path=/; domain=.vekx.ru; HttpOnly
Set-Cookie: dle_user_id=deleted; expires=Wed, 26-Feb-2014 02:35:12 GMT; path=/; domain=.vekx.ru; httponly
Set-Cookie: dle_password=deleted; expires=Wed, 26-Feb-2014 02:35:12 GMT; path=/; domain=.vekx.ru; httponly
Set-Cookie: dle_hash=deleted; expires=Wed, 26-Feb-2014 02:35:12 GMT; path=/; domain=.vekx.ru; httponly
X-Powered-By: PHP/5.3.6
GET / HTTP/1.1
Host: vekx.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 26 Feb 2015 02:35:13 GMT
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=qfruhgak493n5oauucmroelo92; path=/; domain=.vekx.ru; HttpOnly
Set-Cookie: dle_user_id=deleted; expires=Wed, 26-Feb-2014 02:35:12 GMT; path=/; domain=.vekx.ru; httponly
Set-Cookie: dle_password=deleted; expires=Wed, 26-Feb-2014 02:35:12 GMT; path=/; domain=.vekx.ru; httponly
Set-Cookie: dle_hash=deleted; expires=Wed, 26-Feb-2014 02:35:12 GMT; path=/; domain=.vekx.ru; httponly
X-Powered-By: PHP/5.3.6
Second query (visit from search engine):
GET / HTTP/1.1
Host: vekx.ru
Referer: http://www.google.com/search?q=vekx.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: vekx.ru
Referer: http://www.google.com/search?q=vekx.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.