What Is Kinopoisk.ru and Is It Safe?

What Is Kinopoisk.ru?

Kinopoisk (kinopoisk.ru) is a Russian film information database. As of December 2022, the site kinopoisk.ru gets an estimated 240.8 million monthly views, according to SimilarWeb. The Wayback Machine estimates kinopoisk.ru was founded on December 6, 2003. Kinopoisk was founded by Vitaly Tatsiy Dmitry Sukhanov and is now owned by Yandex.

Website: https://www.kinopoisk.ru/

Is Kinopoisk.ru Safe?

I conducted a series of malware tests to find out if kinopoisk.ru is safe and legit. Here are the results:

I installed the Malwarebytes Browser Guard on my Edge browser and was able to browse the site kinopoisk.ru without any issues.

To check this further I ran malware scans with Malwarebytes and Spybot on my computer after browsing the site kinopoisk.ru and they returned no malware detection. I also ran a system-wide scan with Microsoft Defender and no malware was found.

To confirm that the site is clean, I also checked the site kinopoisk.ru on the online malware scanner Sucuri and it returned with no major issues. You can see the same here: Sucuri scan for the site Kinopoisk.ru.

Sucuri says the domain kinopoisk.ru redirects to another URL but upon inspection, I can see that it’s a spam captcha URL which is not a major issue. And I can see this is the only reason Sucuri has listed the site kinopoisk.ru as a low security risk.

Sucuri says the domain kinopoisk.ru has no malware and it is not blacklisted by any security vendor.

Some improvements could be made such as adding a redirect from the HTTP version of the site to the HTTPS version. Here is what Sucuri said on that:

No redirect from HTTP to HTTPS was found. You should redirect your website visitors to the HTTPS version to avoid the “Not Secure” browser warning.

There were also several missing security headers which I have listed below:

Missing security header for ClickJacking Protection. Alternatively, you can use Content-Security-Policy: frame-ancestors ‘none’.

Missing security header to prevent Content Type sniffing.

Missing Strict-Transport-Security security header. Affected pages:
https://kinopoisk.ru/showcaptcha?cc=1&mt=ABAAA3C61CF74DBA495DC35AB795C30BE55C780F2002C6787E30B47AEACC998E40B9&retpath=aHR0cHM6Ly9raW5vcG9pc2sucnUvPw,,_365cb7a07041323888ea94d5c4c7fe84&t=2/1676272023/f0ca4918b790d7a9ddee1644479d129f&u=15d600e5-cfb325ec-54b5e16-8427d4ae&s=cff1abfeee552545a46eed09f250a206

Missing Content-Security-Policy directive. We recommend to add the following CSP directives (you can use default-src if all values are the same): script-src, object-src, base-uri, frame-src

There was also no website firewall detected on the domain kinopoisk.ru which makes the site more vulnerable to hacks and DDoS attacks.

Lastly, I ran a malware scan with VirusTotal on the domain kinopoisk.ru and no security vendors have flagged the domain as malicious. You can see the same here: VirusTotal scan for the site Kinopoisk.ru.

In conclusion, the site kinopoisk.ru is safe to visit. Sucuri listed it as a medium security risk, but I can see that’s only because of a spam recaptcha redirect which is not a problem. No malware was found during the Sucuri scan. And no security vendor associated with VirusTotal has flagged the site as malicious.