Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=vipanet.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://vipanet.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://vipanet.com/ | 200 OK Content-Length: 61373 Content-Type: text/html | suspicious |
Suspicious code found <script charset="utf-8" src="/reka.js"></script> | ||
http://vipanet.com/engine/classes/min/index.php?charset=windows-1251&g=general&3 | 500 Internal Server Error Content-Length: 0 Content-Type: text/html | clean |
http://vipanet.com/test404page.js | 404 Not Found Content-Length: 289 Content-Type: text/html | clean |
http://vipanet.com/engine/classes/min/index.php?charset=windows-1251&f=engine/classes/highslide/highslide.js&3 | 200 OK Content-Length: 31982 Content-Type: application/x-javascript | clean |
https://dl.dropboxusercontent.com/s/3myems7ro8ylq0d/air.js | 200 OK Content-Length: 1849 Content-Type: application/javascript | clean |
http://vipanet.com/templates/warez/css/tooltip_pack.js | 200 OK Content-Length: 1271 Content-Type: application/x-javascript | clean |
http://vipanet.com//mc.yandex.ru/metrika/watch.js/ | 404 Not Found Content-Length: 305 Content-Type: text/html | clean |
http://vipanet.com/clk.js | 200 OK Content-Length: 3373 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: vipanet.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 20 Jul 2014 21:01:23 GMT
Pragma: no-cache
Server: nginx/1.2.1
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=eb08k6fkpr9f3cih4k1ihvc6j1; path=/
Set-Cookie: dle_user_id=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.vipanet.com; httponly
Set-Cookie: dle_password=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.vipanet.com; httponly
Set-Cookie: dle_hash=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.vipanet.com; httponly
X-Powered-By: PHP/5.4.4-14+deb7u11
GET / HTTP/1.1
Host: vipanet.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 20 Jul 2014 21:01:23 GMT
Pragma: no-cache
Server: nginx/1.2.1
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=eb08k6fkpr9f3cih4k1ihvc6j1; path=/
Set-Cookie: dle_user_id=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.vipanet.com; httponly
Set-Cookie: dle_password=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.vipanet.com; httponly
Set-Cookie: dle_hash=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.vipanet.com; httponly
X-Powered-By: PHP/5.4.4-14+deb7u11
Second query (visit from search engine):
GET / HTTP/1.1
Host: vipanet.com
Referer: http://www.google.com/search?q=vipanet.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: vipanet.com
Referer: http://www.google.com/search?q=vipanet.com
Result:
The result is similar to the first query. There are no suspicious redirects found.