Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=vizmaster.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: vizmaster.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 11 Jan 2015 15:18:24 GMT
Server: Apache/2.2.3 (Unix)
Content-Type: text/html; charset=windows-1251
X-Powered-By: PHP/5.2.9
GET / HTTP/1.1
Host: vizmaster.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 11 Jan 2015 15:18:24 GMT
Server: Apache/2.2.3 (Unix)
Content-Type: text/html; charset=windows-1251
X-Powered-By: PHP/5.2.9
Second query (visit from search engine):
GET / HTTP/1.1
Host: vizmaster.ru
Referer: http://www.google.com/search?q=vizmaster.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: vizmaster.ru
Referer: http://www.google.com/search?q=vizmaster.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://vizmaster.ru/ | 200 OK Content-Length: 7700 Content-Type: text/html | clean |
http://timedirect.ru/?id=188433 | 200 OK Content-Length: 29978 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js | 200 OK Content-Length: 72174 Content-Type: text/javascript | clean |
http://timedirect.ru/search/redirect.php?f=http%3A%2F%2Fjmpdirect01.com%2Fctrd%2Fclick%2Fnewjump1.do%3Faffiliate%3D45549%26subid%3D52247%26terms%3Dtimedirect%26ai%3DMGbg8KIy7K_Y9j_HfT9DKBiE3UnL9jDeTuaeqi6wECTcgkNXOTqS6V_FqFMGjJnbPaSAPOm53nMOBX9gm_TBZcjLs7nwovTT4-W7VEf_0gQ1fvMe1waALVKqHKp0cRefvFx4P0Nv2vxH-071s1dw2sReYI-3Lp06MBnSPTiG5ZFPcpc9VhYZcyzLLcw8Sb0ZTV2uCrkyrg9e8wKeBL4gUg4YCrdPTjC5FGA5Nf3lINw <span>...775 symbols skipped</span> | HTTP/1.1 302 Moved Temporarily Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Connection: close Date: Sun, 11 Jan 2015 15:18:26 GMT Pragma: no-cache Location: http://timedirect.ru/search/tcerider.php?f=http%3A%2F%2Fjmpdirect01.com%2Fctrd%2Fclick%2Fnewjump1.do%3Faffiliate%3D45549%26subid%3D52247%26terms%3Dtimedirect%26ai%3DMGbg8KIy7K_Y9j_HfT9DKBiE3UnL9jDeTuaeqi6wECTcgkNXOTqS6V_FqFMGjJnbPaSAPOm53nMOBX9gm_TBZcjLs7nwovTT4-W7VEf_0gQ1fvMe1waALVKqHKp0cRefvFx4P0Nv2vxH-071s1dw2sReYI-3Lp06MBnSPTiG5ZFPcpc9VhYZcyzLLcw8Sb0ZTV2uCrkyrg9e8wKeBL4gUg4YCrdPTjC5FGA5Nf3lINwYJgOBAS4GmlEMFWMY4Sd5DX-hT3t5vxbW2lPFpr9jWct_7-1-rzRtvtc8CP_RFhV4grCKUC7bmX-3Hi2UObRFsnu9hD7q28PP7PshahENaJhYkYHk5qK4akuu4oz1uTlAfxOxBidOBfb80Sn2n6lgdaICLTcYBnflCFLqpYrzQS8DIuKxcJM7Z9upkLEXih3FpIUwDXutzSPlg3kh0JSb%26version%3D1.2&v=NGM1ZWY3MjFlOTQ2MjI3ZTcxN2YwZGIxN2NkOTVlMWUJMQl0aW1lZGlyZWN0LnJ1NTRiMjk0NDEwOWI5YTguMTU3Njk2NDkJdGltZWRpcmVjdC5ydTU0YjI5NDQxMDljNWE3LjYzNzY3MDAzCTE0MjA5ODk1MDUJYWRfN18w&l=NAlBRFMJMTY1MDA2M2FiYzE2ZWI5YzM1OWYxZTBjZWUzODQ3ZGMJMC4wMDAzCTAJMTMJCTMxCTIJMQkwCWU0N2UwYjQyZjJkYTk4M2M4NjY1ZmRhNDY2Y2E3NmYyCWh0dHA6Ly92ZXJpZmllZHVwZGF0ZXMudGVjaG5vbG9neQkxOTMwODA2MzkJYwk5MDM3NTY5NwkJdGltZWRpcmVjdAkxMDA2CTcJMjAJMjUJMTQyMDk4OTUwNQkwLjAwMDYJTgkwCTAJMAkJMC4wMDAzCQkJCQkJdGltZWRpcmVjdC5ydTU0YjI5NDQxMDliOWE4LjE1NzY5NjQ5CTAuMDAwNgkwCQkxCTAJMTIwNQkxMzY5Mjg0ODgJ Server: nginx Vary: User-Agent,Accept-Encoding Content-Length: 0 Content-Type: text/html Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Sun, 11 Jan 2015 15:18:26 GMT X-Cache: MISS from 930995 X-Powered-By: PHP/5.3.3-7+squeeze19 | clean |
http://timedirect.ru/search/tcerider.php?f=http%3a%2f%2fjmpdirect01.com%2fctrd%2fclick%2fnewjump1.do%3faffiliate%3d45549%26subid%3d52247%26terms%3dtimedirect%26ai%3dmgbg8kiy7k_y9j_hft9dkbie3unl9jdetuaeqi6wectcgknxotqs6v_fqfmgjjnbpasapom53nmobx9gm_tbzcjls7nwovtt4-w7vef_0gq1fvme1waalvkqhkp0crefvfx4p0nv2vxh-071s1dw2sreyi-3lp06mbnsptig5zfpcpc9vhyzcyzllcw8sb0ztv2ucrkyrg9e8wkebl4gug4ycrdptjc5fga5nf3linw <span>...775 symbols skipped</span> | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://timedirect.ru/test404page.js | 200 OK Content-Length: 22969 Content-Type: text/html | clean |
http://timedirect.ru/search/redirect.php?f=http%3A%2F%2Fjmpdirect01.com%2Fctrd%2Fclick%2Fnewjump1.do%3Faffiliate%3D45549%26subid%3D52247%26terms%3Dtimedirect%26ai%3DlE3INifxzO-VAB8SiYsj1MadRjwJR8Dg-r-kIM1uD8dYtFeW18dJYa_Jh-LOVkz_yWv0hwDg-BNd-eqfbrm89fuN5DRvtrWteBsRoEkN6siaY7eqMijzpyykP0rX_7L001gO5-C3htv5GL8FUbhOXRQa5W4FzVfXt6ytEHzi_ERSkx5LNaAUJ31PWwMnzapgKC98quHTbf_s-_K4wWI-DV9bV6LB8kX-ShxZGmJRKq2 <span>...775 symbols skipped</span> | HTTP/1.1 302 Moved Temporarily Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Connection: close Date: Sun, 11 Jan 2015 15:18:27 GMT Pragma: no-cache Location: http://timedirect.ru/search/tcerider.php?f=http%3A%2F%2Fjmpdirect01.com%2Fctrd%2Fclick%2Fnewjump1.do%3Faffiliate%3D45549%26subid%3D52247%26terms%3Dtimedirect%26ai%3DlE3INifxzO-VAB8SiYsj1MadRjwJR8Dg-r-kIM1uD8dYtFeW18dJYa_Jh-LOVkz_yWv0hwDg-BNd-eqfbrm89fuN5DRvtrWteBsRoEkN6siaY7eqMijzpyykP0rX_7L001gO5-C3htv5GL8FUbhOXRQa5W4FzVfXt6ytEHzi_ERSkx5LNaAUJ31PWwMnzapgKC98quHTbf_s-_K4wWI-DV9bV6LB8kX-ShxZGmJRKq2oHPj2dJpKcqC56Uyiw2zwr-xaz9GAhmOA17vakZy7TB-448DNhBgRUmQ2lppPLXBucPwS4DCZYud2p6X1Hi9KrHlW27HbjyYY9Tg1V1m05nMR48Ole7zfqe3uhq_vQILj7Xh9pvo2opx_LpopfTnIJ_IM3tG9ki3yzjHO0Z_8iuDcelWTypW9kMo2uBHmqk9Lad_JETk1KHIFtg7qlCD7%26version%3D1.2&v=YTJhNTY5ZGNkOWZiNmY2YTI5MjJmNDIwNGVjNThmMzgJMQl0aW1lZGlyZWN0LnJ1NTRiMjk0NDEwOWI5YTguMTU3Njk2NDkJdGltZWRpcmVjdC5ydTU0YjI5NDQxMDljNWE3LjYzNzY3MDAzCTE0MjA5ODk1MDUJYWRfN18x&l=NAlBRFMJZTZhMzUyZmM4ODliMDFmZTEwZWVmNGQ0MzE4MzVjMWEJMC4wMDAzCTAJMTMJCTMxCTIJMgkwCTA3ZDA4OGM2NTg0NDU1ODc4ZTgzNmUzODAzMjhlMTkwCWh0dHA6Ly92ZXJpZmllZHVwZGF0ZXMudGVjaG5vbG9neQkxOTMwODA2MzkJYwk5MDM3NTY5NwkJdGltZWRpcmVjdAkxMDA2CTcJMjAJMjUJMTQyMDk4OTUwNQkwLjAwMDYJTgkwCTAJMAkJMC4wMDAzCQkJCQkJdGltZWRpcmVjdC5ydTU0YjI5NDQxMDliOWE4LjE1NzY5NjQ5CTAuMDAwNgkwCQkxCTAJMTIwNQkxMzY5Mjg0ODgJ Server: nginx Vary: User-Agent,Accept-Encoding Content-Length: 0 Content-Type: text/html Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Sun, 11 Jan 2015 15:18:27 GMT X-Cache: MISS from 901242 X-Powered-By: PHP/5.3.3-7+squeeze19 | clean |
http://timedirect.ru/search/tcerider.php?f=http%3a%2f%2fjmpdirect01.com%2fctrd%2fclick%2fnewjump1.do%3faffiliate%3d45549%26subid%3d52247%26terms%3dtimedirect%26ai%3dle3inifxzo-vab8siysj1madrjwjr8dg-r-kim1ud8dytfew18djya_jh-lovkz_ywv0hwdg-bnd-eqfbrm89fun5drvtrwtebsroekn6siay7eqmijzpyykp0rx_7l001go5-c3htv5gl8fubhoxrqa5w4fzvfxt6ytehzi_erskx5lnaauj31pwwmnzapgkc98quhtbf_s-_k4wwi-dv9bv6lb8kx-shxzgmjrkq2 <span>...775 symbols skipped</span> | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://bs.yandex.ru/resource/watch.js | 200 OK Content-Length: 59486 Content-Type: application/x-javascript | clean |