Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=x6-auto.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://x6-auto.ru/
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: x6-auto.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 13 Dec 2014 06:42:57 GMT
Server: nginx/1.4.1
Content-Type: text/html; charset=UTF-8
X-Pingback: http://x6-auto.ru/xmlrpc.php
X-Powered-By: PHP/5.3.3
GET / HTTP/1.1
Host: x6-auto.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 13 Dec 2014 06:42:57 GMT
Server: nginx/1.4.1
Content-Type: text/html; charset=UTF-8
X-Pingback: http://x6-auto.ru/xmlrpc.php
X-Powered-By: PHP/5.3.3
Second query (visit from search engine):
GET / HTTP/1.1
Host: x6-auto.ru
Referer: http://www.google.com/search?q=x6-auto.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: x6-auto.ru
Referer: http://www.google.com/search?q=x6-auto.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://x6-auto.ru/ | 200 OK Content-Length: 19544 Content-Type: text/html | clean |
http://x6-auto.ru/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/x-javascript | clean |
http://x6-auto.ru/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/x-javascript | clean |
http://x6-auto.ru//sharebutton.net/plugin/sharebutton.horizontal.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sat, 13 Dec 2014 06:42:58 GMT Pragma: no-cache Location: http://x6-auto.ru/sharebutton.net/plugin/sharebutton.horizontal.js/ Server: nginx/1.4.1 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://x6-auto.ru/xmlrpc.php X-Powered-By: PHP/5.3.3 | clean |
http://x6-auto.ru/sharebutton.net/plugin/sharebutton.horizontal.js/ | 404 Not Found Content-Length: 12644 Content-Type: text/html | clean |
http://x6-auto.ru/wp-includes/js/masonry.min.js?ver=3.1.2 | 200 OK Content-Length: 31700 Content-Type: application/x-javascript | clean |
http://x6-auto.ru/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2 | 200 OK Content-Length: 1836 Content-Type: application/x-javascript | clean |
http://x6-auto.ru/wp-content/themes/twentyfourteen/js/functions.js?ver=20140616 | 200 OK Content-Length: 3449 Content-Type: application/x-javascript | clean |
http://x6-auto.ru/sample-page-2 | 200 OK Content-Length: 13470 Content-Type: text/html | clean |
http://x6-auto.ru/wp-includes/js/comment-reply.min.js?ver=4.0.1 | 200 OK Content-Length: 757 Content-Type: application/x-javascript | clean |
http://x6-auto.ru/obratnaya-svyaz | 200 OK Content-Length: 13565 Content-Type: text/html | clean |
http://x6-auto.ru/wp-login.php?redirect_to=http%3A%2F%2Fx6-auto.ru%2Fobratnaya-svyaz | 200 OK Content-Length: 2779 Content-Type: text/html | clean |
http://x6-auto.ru/wp-login.php?action=lostpassword | 200 OK Content-Length: 2513 Content-Type: text/html | clean |
http://x6-auto.ru/wp-login.php | 200 OK Content-Length: 2773 Content-Type: text/html | clean |
http://x6-auto.ru/test404page.js | 404 Not Found Content-Length: 12644 Content-Type: text/html | clean |
http://x6-auto.ru/hosti.php | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sat, 13 Dec 2014 06:43:00 GMT Location: https://hosti.xxx/hosting/?sssid=46978 Server: nginx/1.4.1 Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.3.3 | clean |
https://hosti.xxx/hosting/?sssid=46978 | HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sat, 13 Dec 2014 06:56:53 GMT Pragma: no-cache Server: Apache/2.2.22 (CentOS) Content-Length: 62 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=d135qhaap306usadhis3sn0fh6; path=/ Set-Cookie: session_id=d135qhaap306usadhis3sn0fh6; expires=Tue, 02-Feb-2016 22:56:53 GMT; path=/ Set-Cookie: partner_id=46978; expires=Tue, 02-Feb-2016 22:56:53 GMT; path=/ X-Powered-By: PHP/5.2.17 | clean |
https://hosti.xxx/ | 200 OK Content-Length: 10731 Content-Type: text/html | clean |