February 23, 2020 at 5:52:17 PM UTC
VERIFY
Anomaly
DNS tampering
Websites
Runtime: 10.4s
On February 23, 2020 at 5:52:17 PM UTC, http://astalavista.box.sk/ presented signs of DNS tampering on AS397403 in United States.
This might mean that http://astalavista.box.sk/ was blocked, but false positives can occur.
Please explore the network measurement data below.
Failures
HTTP Experiment
null
DNS Experiment
null
Control
null
DNS Queries
Resolver:
100.110.238.234
Query:
IN A astalavista.box.sk
Engine:
system
Name
Class
TTL
Type
DATA
Answer IP Info
@
IN
CNAME
astalavista.box.sk
Unknown AS
@
IN
A
100.110.240.98
Unknown AS
TCP Connections
100.110.240.98:80: succeeded
HTTP Requests
URL
GET http://af-int.net/protect/snap.html?url=astalavista.box.sk%2f
Response Headers
Content-Length:11519Accept-Ranges:bytesServer:nginxLast-Modified:Fri, 20 Dec 2019 17:11:09 GMTConnection:keep-aliveETag:"5dfd00ad-2cff"Date:Sun, 23 Feb 2020 18:52:19 GMTContent-Type:text/html
Response Body
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<title>This website has been classified as malicious</title>
<meta name="viewport" content="width=device-width, initial-scale=1">
<style>
html, body {
height: 100%;
}
body {
font-family: Arial, sans-serif;
font-size: 16px;
line-height: 22px;
margin: 0;
text-align: center;
background: #8b0000;
background: -moz-linear-gradient(top, #8b0000 0%, #660000 100%);
background: -webkit-linear-gradient(top, #8b0000 0%,#660000 100%);
background: linear-gradient(to bottom, #8b0000 0%,#660000 100%);
filter: progid:DXImageTransform.Microsoft.gradient( startColorstr='#8b0000', endColorstr='#660000',GradientType=0 );
}
body:after {
content: '';
width: 0;
height: 100%;
display: inline-block;
vertical-align: middle;
}
.article {
margin: 20px;
padding: 30px 20px;
background: #fff;
max-width: 600px;
display: inline-block;
vertical-align: middle;
border-radius: 6px;
box-shadow: 0 0 10px rgba(0,0,0,0.4);
text-align: left;
}
h1 {
font-weight: normal;
line-height: 1.1;
margin-left: 115px;
}
.sign_stop {
display: inline-block;
width: 100px;
height: 100px;
float: left;
background: url('data:image/png;base64,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');
}
.btn_block {
text-align: center;
padding: 30px 0;
}
.btn_block a {
display: inline-block;
}
h3 {
text-align: center;
overflow: hidden;
width: 100%;
}
.btn_block .green {
background: green;
color: #fff;
font-weight: bold;
padding: 0 25px;
border-radius: 5px;
line-height: 36px;
text-decoration: none;
-webkit-box-shadow: 0 0 5px rgba(0,0,0,0.3);
-moz-box-shadow: 0 0 5px rgba(0,0,0,0.3);
box-shadow: 0 0 5px rgba(0,0,0,0.3);
margin: 10px 0;
}
.btn_block .red {
color: #7b0000;
padding: 0 25px;
border-radius: 5px;
line-height: 36px;
text-decoration: underline;
margin: 10px 0;
}
@media (max-width: 800px) {
h1 {
font-size: 18px;
}
h3 {
max-width: 180px;
padding: 30px 0 0;
overflow: hidden;
}
#url {
display: inline-block;
max-width: 180px;
overflow: hidden;
}
}
</style>
</head>
<body>
<div class="article">
<span class="sign_stop"></span><h1>This website has been classified as malicious</h1>
<h3 id="url_h3"></h3>
<div class="btn_block">
<a class="green" href="https://www.google.com/">Go Back to Safety</a>
<a class="red" id="badUrl" href="">Continue to this web site</a>
</div>
</div>
<script>
function parse_query_string(query) {
var vars = query.split("&");
var query_string = {};
for (var i = 0; i < vars.length; i++) {
var pair = vars[i].split("=");
// If first entry with this name
if (typeof query_string[pair[0]] === "undefined") {
query_string[pair[0]] = decodeURIComponent(pair[1]);
// If second entry with this name
} else if (typeof query_string[pair[0]] === "string") {
var arr = [query_string[pair[0]], decodeURIComponent(pair[1])];
query_string[pair[0]] = arr;
// If third or later entry with this name
} else {
query_string[pair[0]].push(decodeURIComponent(pair[1]));
}
}
return query_string;
}
var query = window.location.search.substring(1);
var qs = parse_query_string(query);
if(qs.url){
document.getElementById('url_h3').innerText = qs.url;
var badUrl = 'http://af-int.net/sm/allowmalware/?uri='+encodeURIComponent(qs.url);
document.getElementById('badUrl').setAttribute('href', badUrl);
}
</script>
</body>
</html>
URL
GET http://astalavista.box.sk/
Response Headers
Connection:closeLocation:http://af-int.net/protect/snap.html?url=astalavista.box.sk%2f
Response Body
Empty body
Measurement UID
0120200223a6ab1f17b50c9437d8a7d92d2a3bca
Report ID
20200223T185109Z_AS397403_de81o588gRzkfLgbo98ugyJANTSs9P0QyMA07h9NVJSpHep69r
Platform
android
Software Name
ooniprobe-android (2.2.0)
Measurement Engine
libmeasurement_kit (0.10.6)