Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=yarland.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://www.yarland.ru/ | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=31104000 Connection: close Date: Mon, 26 Jan 2015 13:41:45 GMT Location: http://yarland.ru/ Server: Apache/2.2.15 (CentOS) Content-Length: 306 Content-Type: text/html; charset=iso-8859-1 Expires: Thu, 21 Jan 2016 13:41:45 GMT | clean |
http://yarland.ru/ | 200 OK Content-Length: 85495 Content-Type: text/html | malicious |
Suspicious code found <iframe id='ae4a8a8c' name='ae4a8a8c' src='http://adv.yarland.ru/www/delivery/afr.php?zoneid=23&target=_blank&cb={random}&ct0={clickurl}' frameborder='0' scrolling='no' width='100%' height='60' allowtransparency='true'><a href='http://adv.yarland.ru/www/delivery/ck.php?n=aa9d9668&cb={random}' target='_blank'><img src='http://adv.yarland.ru/www/delivery/avw.php?zoneid=23&cb={random}&n=aa9d9668&ct0={clickurl}' border='0' alt='' /></a></iframe> Malicious iFrame found. size: 100x60 src: http://adv.yarland.ru/www/delivery/afr.php?resize=1&zoneid=6&target=_blank&cb={random}&ct0={clickurl} This URL is marked by Google as suspicious <iframe id='a3e8d402' name='a3e8d402' src='http://adv.yarland.ru/www/delivery/afr.php?resize=1&zoneid=6&target=_blank&cb={random}&ct0={clickurl}' frameborder='0' scrolling='no' width='100%' height='60' allowtransparency='true'> Malicious iFrame found. size: 100x60 src: http://adv.yarland.ru/www/delivery/afr.php?zoneid=23&target=_blank&cb={random}&ct0={clickurl} This URL is marked by Google as suspicious <iframe id='ae4a8a8c' name='ae4a8a8c' src='http://adv.yarland.ru/www/delivery/afr.php?zoneid=23&target=_blank&cb={random}&ct0={clickurl}' frameborder='0' scrolling='no' width='100%' height='60' allowtransparency='true'> | ||
http://xxz.pm/ | HTTP/1.1 302 Found Connection: close Date: Mon, 26 Jan 2015 13:36:27 GMT Location: http:// Server: nginx/1.6.2 Content-Type: text/html; charset=iso-8859-1 | clean |
http:// | 500 No Host option provided Content-Length: 85 Content-Type: text/plain | clean |
http:///test404page.js | 500 No Host option provided Content-Length: 85 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: yarland.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 26 Jan 2015 13:41:45 GMT
Pragma: no-cache
Server: Apache/2.2.15 (CentOS)
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Mon, 26 Jan 2015 13:30:00 GMT
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: PHPSESSID=d6e6almcvu935gslel2t1770s6; path=/
Set-Cookie: OAGEO=LT%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C; path=/
Set-Cookie: OAID=d16fb8ebe8cac3a85c8640bcff1754e6; expires=Tue, 26-Jan-2016 13:41:45 GMT; path=/
Set-Cookie: OAID=d16fb8ebe8cac3a85c8640bcff1754e6; expires=Tue, 26-Jan-2016 13:41:45 GMT; path=/
X-Powered-By: PHP/5.3.3
GET / HTTP/1.1
Host: yarland.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 26 Jan 2015 13:41:45 GMT
Pragma: no-cache
Server: Apache/2.2.15 (CentOS)
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Mon, 26 Jan 2015 13:30:00 GMT
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: PHPSESSID=d6e6almcvu935gslel2t1770s6; path=/
Set-Cookie: OAGEO=LT%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C; path=/
Set-Cookie: OAID=d16fb8ebe8cac3a85c8640bcff1754e6; expires=Tue, 26-Jan-2016 13:41:45 GMT; path=/
Set-Cookie: OAID=d16fb8ebe8cac3a85c8640bcff1754e6; expires=Tue, 26-Jan-2016 13:41:45 GMT; path=/
X-Powered-By: PHP/5.3.3
Second query (visit from search engine):
GET / HTTP/1.1
Host: yarland.ru
Referer: http://www.google.com/search?q=yarland.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: yarland.ru
Referer: http://www.google.com/search?q=yarland.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.