Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=web-station.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://web-station.ru/ | 200 OK Content-Length: 63189 Content-Type: text/html | clean |
http://web-station.ru/engine/classes/js/jquery.js | 200 OK Content-Length: 92792 Content-Type: text/javascript | clean |
http://web-station.ru/engine/classes/js/jqueryui.js | 200 OK Content-Length: 64903 Content-Type: text/javascript | clean |
http://web-station.ru/engine/classes/js/dle_js.js | 200 OK Content-Length: 22344 Content-Type: text/javascript | clean |
http://web-station.ru/templates/web-station/js/libs.js | 403 Forbidden Content-Length: 314 Content-Type: text/html | clean |
http://web-station.ru/test404page.js | 404 Not Found Content-Length: 292 Content-Type: text/html | clean |
http://web-station.ru/templates/web-station/js/dtree.js | 403 Forbidden Content-Length: 315 Content-Type: text/html | clean |
http://web-station.ru/templates/web-station/js/animatedcollapse.js | 403 Forbidden Content-Length: 326 Content-Type: text/html | clean |
http://adsense-google.ru/js/e7f8a7fb0b77bcb3b283af5be021448f.js | 404 Not Found Content-Length: 43194 Content-Type: text/html | suspicious |
Suspicious code. Script contains iFrame. (function(){ var D=new Date(),d=document,b='body',ce='createElement',ac='appendChild',st='style',ds='display',n='none',gi='getElementById'; var i=d[ce]('iframe');i[st][ds]=n;d[gi]("MarketGidScriptRootC571350")[ac](i);try{var iw=i.contentWindow.document;iw.open();iw.writeln("<ht"+"ml><bo"+"dy></bo"+"dy></ht"+"ml>");iw.close();var c=iw[b];} catch(e){var iw=d;var c=d[gi]("MarketGidScriptRootC571350");}var dv=iw[ce]('div');dv.id="MG_ID";dv[st][ds]=n;dv.innerHTML=571350;c[ac](dv); var s=iw[ce]('script');s.async='async';s.defer='defer';s.charset='utf-8';s.src="//jsc.marketgid.com/1/r/1.reg.ru.571350.js?t="+D.getYear()+D.getMonth()+D.getDate()+D.getHours();c[ac](s);})(); | ||
http://adsense-google.ru/modernizr.js | 200 OK Content-Length: 6296 Content-Type: application/javascript | clean |
http://adsense-google.ru//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | 404 Not Found Content-Length: 43194 Content-Type: text/html | suspicious |
Suspicious code. Script contains iFrame. (function(){ var D=new Date(),d=document,b='body',ce='createElement',ac='appendChild',st='style',ds='display',n='none',gi='getElementById'; var i=d[ce]('iframe');i[st][ds]=n;d[gi]("MarketGidScriptRootC571350")[ac](i);try{var iw=i.contentWindow.document;iw.open();iw.writeln("<ht"+"ml><bo"+"dy></bo"+"dy></ht"+"ml>");iw.close();var c=iw[b];} catch(e){var iw=d;var c=d[gi]("MarketGidScriptRootC571350");}var dv=iw[ce]('div');dv.id="MG_ID";dv[st][ds]=n;dv.innerHTML=571350;c[ac](dv); var s=iw[ce]('script');s.async='async';s.defer='defer';s.charset='utf-8';s.src="//jsc.marketgid.com/1/r/1.reg.ru.571350.js?t="+D.getYear()+D.getMonth()+D.getDate()+D.getHours();c[ac](s);})(); | ||
http://adsense-google.ru/script.js | 200 OK Content-Length: 123144 Content-Type: application/javascript | clean |
http://parking.reg.ru/script/get_domain_data?domain_name=adsense-google.ru&callback=callback | 200 OK Content-Length: 91 Content-Type: application/javascript | clean |
http://google-statistics.ru/js/e7f8a7fb0b77bcb3b283af5be021448f.js | 500 Can't connect to google-statistics.ru:80 (Bad hostname) Content-Length: 172 Content-Type: text/plain | clean |
http://google-webmaster.ru/e7f8a7fb0b77bcb3b283af5be021448f.js | 500 Can't connect to google-webmaster.ru:80 (Bad hostname) Content-Length: 170 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: web-station.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 13 Oct 2014 00:05:46 GMT
Pragma: no-cache
Server: Apache/2.2.15 (CentOS)
Content-Type: text/html; charset=windows-1251
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=n0ukjglou3eovjrtppdupgqkk3; path=/; domain=.web-station.ru; HttpOnly
Set-Cookie: dle_user_id=deleted; expires=Sun, 13-Oct-2013 00:05:45 GMT; path=/; domain=.web-station.ru; httponly
Set-Cookie: dle_password=deleted; expires=Sun, 13-Oct-2013 00:05:45 GMT; path=/; domain=.web-station.ru; httponly
Set-Cookie: dle_hash=deleted; expires=Sun, 13-Oct-2013 00:05:45 GMT; path=/; domain=.web-station.ru; httponly
X-Powered-By: PHP/5.3.3
GET / HTTP/1.1
Host: web-station.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 13 Oct 2014 00:05:46 GMT
Pragma: no-cache
Server: Apache/2.2.15 (CentOS)
Content-Type: text/html; charset=windows-1251
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=n0ukjglou3eovjrtppdupgqkk3; path=/; domain=.web-station.ru; HttpOnly
Set-Cookie: dle_user_id=deleted; expires=Sun, 13-Oct-2013 00:05:45 GMT; path=/; domain=.web-station.ru; httponly
Set-Cookie: dle_password=deleted; expires=Sun, 13-Oct-2013 00:05:45 GMT; path=/; domain=.web-station.ru; httponly
Set-Cookie: dle_hash=deleted; expires=Sun, 13-Oct-2013 00:05:45 GMT; path=/; domain=.web-station.ru; httponly
X-Powered-By: PHP/5.3.3
Second query (visit from search engine):
GET / HTTP/1.1
Host: web-station.ru
Referer: http://www.google.com/search?q=web-station.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: web-station.ru
Referer: http://www.google.com/search?q=web-station.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.