Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=wap.erwap.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://wap.erwap.ru/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://wap.erwap.ru/ | 200 OK Content-Length: 1527 Content-Type: text/html | clean |
http://wap.erwap.ru/?lng=en | 200 OK Content-Length: 1308 Content-Type: text/html | clean |
http://wap.erwap.ru/?lng=ru | 200 OK Content-Length: 1538 Content-Type: text/html | clean |
http://wap.erwap.ru/index.php?str=1hyy1b3v9oslvzok&v=2&lng=ru | 200 OK Content-Length: 8568 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: games.erwap.ru ...[1704 bytes skipped]... ÑÐ°Ñ >></a></div><div style="text-align:left" class="tit"><b>ÐевÑÑка днÑ:</b></div><div style="text-align:center" class="box"><img src="http://erwap.ru/pic/girl.gif" alt="ÐевÑÑка днÑ"/></div><div style="text-align:left" class="tit"><b>ÐагÑÑзки:</b></div><div style="text-align:left" class="box"><img src="http://games.erwap.ru/img/games.png" alt="*"/> <b><a href="http://games.erwap.ru/?v=2">ÐгÑÑ</a></b> (ХиÑÑ Ð½ÐµÐ´ÐµÐ»Ð¸!)</div><div style="text-align:left" class="box">го оÑгазма.</div><div style="text-align:left" class="box"><a href="http://secret.erwap.ru/sex/?id=1">ÐÑÑгие ÑекÑеÑÑ >></a></div><div style="text-align:left" class="tit"><b>СекÑеÑÑ Ð¸Ð³Ñ:</b></div> ...[2150 bytes skipped]... | ||
http://wap.erwap.ru/index.php?str=1hyy1b3v9oslvzok&v=2&lng=en | 200 OK Content-Length: 6778 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: games.erwap.ru <?xml version="1.0" encoding="utf-8"?><!DOCTYPE html PUBLIC "-//WAPFORUM//DTD XHTML Mobile 1.0//EN" "http://www.wapforum.org/DTD/xhtml-mobile10.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><link rel="SHORTCUT ICON" href="http://wap.erwap.ru/favicon1.ico"/><meta http-equiv="Content-Type" content="application/vnd.wap.xhtml+xml; charset=UTF-8"/><meta http-equiv="language" content="en"/><meta name="desc ...[4514 bytes skipped]... | ||
http://wap.erwap.ru/r.php?v=2&co=lt&lng=en | 200 OK Content-Length: 2354 Content-Type: text/html | clean |
http://wap.erwap.ru/country.php?b3=/r.php&v=2&co=lt&lng=en | 200 OK Content-Length: 2327 Content-Type: text/html | clean |
http://wap.erwap.ru/r.php?co=ru&v=2&lng=en | 200 OK Content-Length: 2603 Content-Type: text/html | clean |
http://wap.erwap.ru/country.php?b3=/r.php&v=2&co=ru&lng=en | 200 OK Content-Length: 2327 Content-Type: text/html | clean |
http://wap.erwap.ru/r.php?co=ua&v=2&lng=en | 200 OK Content-Length: 2606 Content-Type: text/html | clean |
http://wap.erwap.ru/country.php?b3=/r.php&v=2&co=ua&lng=en | 200 OK Content-Length: 2327 Content-Type: text/html | clean |
http://wap.erwap.ru/r.php?co=kg&v=2&lng=en | 200 OK Content-Length: 2434 Content-Type: text/html | clean |
http://wap.erwap.ru/country.php?b3=/r.php&v=2&co=kg&lng=en | 200 OK Content-Length: 2327 Content-Type: text/html | clean |
http://wap.erwap.ru/r.php?co=lt&v=2&lng=en | 200 OK Content-Length: 2354 Content-Type: text/html | clean |
http://wap.erwap.ru/help.php?b=r.php&v=2&co=lt&lng=en | 200 OK Content-Length: 2719 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: wap.erwap.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 24 Aug 2014 04:54:19 GMT
Server: nginx/1.4.4
Content-Length: 1527
Content-Type: text/html; charset=utf-8
X-Powered-By: PHP/5.3.28
...1527 bytes of data.
GET / HTTP/1.1
Host: wap.erwap.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 24 Aug 2014 04:54:19 GMT
Server: nginx/1.4.4
Content-Length: 1527
Content-Type: text/html; charset=utf-8
X-Powered-By: PHP/5.3.28
...1527 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: wap.erwap.ru
Referer: http://www.google.com/search?q=wap.erwap.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: wap.erwap.ru
Referer: http://www.google.com/search?q=wap.erwap.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.