Malicious/Suspicious Redirects
| Request | Server response | Status |
URL: http://176.102.38.46/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: 176.102.38.46 Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Cache-Control: max-age=0 Connection: close Date: Fri, 02 Jan 2015 19:36:55 GMT Pragma: no-cache Location: http://google.com Server: Apache/2 Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=utf-8 Expires: Thu, 21 Jul 1977 07:30:00 GMT Last-Modified: Fri, 02 Jan 2015 19:36:55 GMT X-Powered-By: PHP/5.3.29 | suspicious |
Scanned pages/files
| Request | Server response | Status |
http://176.102.38.46/292l | HTTP/1.1 302 Found Cache-Control: max-age=0 Connection: close Date: Fri, 02 Jan 2015 19:36:55 GMT Pragma: no-cache Location: http://google.com Server: Apache/2 Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=utf-8 Expires: Thu, 21 Jul 1977 07:30:00 GMT Last-Modified: Fri, 02 Jan 2015 19:36:56 GMT X-Powered-By: PHP/5.3.29 | clean |
http://google.com/ | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Fri, 02 Jan 2015 19:37:51 GMT Location: http://www.google.lt/?gws_rd=cr&ei=j_OmVLi8F4itygPzjYGQCw Server: gws Content-Length: 258 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic,p=0.02 P3P: CP="This is not a P3P policy! See http://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info." Set-Cookie: PREF=ID=83f52ca55eb18552:FF=0:TM=1420227471:LM=1420227471:S=AO2kYawITI8QyMgZ; expires=Sun, 01-Jan-2017 19:37:51 GMT; path=/; domain=.google.com Set-Cookie: NID=67=huvj9hibs1rVMFRWHTqqpGY_AKFiK_Tw_SVFLUbkHEcc5NC7iujfD1sjlv9Et2kbNAbQza0k1zeGTOD7LwkClTlQXd1cbImkLZgzIzIJZuWXo1Adq0A4oYXv0VwOLfo6; expires=Sat, 04-Jul-2015 19:37:51 GMT; path=/; domain=.google.com; HttpOnly X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.google.lt/?gws_rd=cr&ei=j_omvli8f4itygpzjygqcw | 200 OK Content-Length: 51237 Content-Type: text/html | clean |
https://www.google.lt/webhp?tab=ww | 200 OK Content-Length: 63992 Content-Type: text/html | clean |
https://www.google.lt/imghp?hl=lt&tab=wi | 200 OK Content-Length: 57538 Content-Type: text/html | clean |
https://www.google.lt/webhp?hl=lt&tab=iw | 200 OK Content-Length: 63983 Content-Type: text/html | clean |
http://www.google.lt/intl/lt/options/ | HTTP/1.1 301 Moved Permanently Cache-Control: public, max-age=2592000 Connection: close Date: Fri, 02 Jan 2015 19:37:54 GMT Location: http://www.google.lt/intl/lt/about/products/ Server: sffe Content-Length: 241 Content-Type: text/html; charset=UTF-8 Expires: Sun, 01 Feb 2015 19:37:54 GMT Alternate-Protocol: 80:quic,p=0.02 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
http://www.google.lt/intl/lt/about/products/ | 200 OK Content-Length: 7068 Content-Type: text/html | clean |
http://www.google.lt//www.google.com/js/gweb/analytics/autotrack.js/ | 404 Not Found Content-Length: 1471 Content-Type: text/html | clean |
http://www.google.lt//www.google.com/ | 404 Not Found Content-Length: 1440 Content-Type: text/html | clean |
http://www.google.lt/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://www.google.lt/preferences?hl=lt | 200 OK Content-Length: 64006 Content-Type: text/html | clean |
http://www.google.lt/imghp?hl=lt&tab=wi | 200 OK Content-Length: 51222 Content-Type: text/html | clean |
http://www.google.lt/imghp?hl=lt&tab=ii | 200 OK Content-Length: 51263 Content-Type: text/html | clean |
http://www.google.lt/history/optout?hl=lt | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Fri, 02 Jan 2015 19:37:56 GMT Location: https://history.google.com/history/optout?hl=lt Server: Search-History HTTP Server Content-Length: 244 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic,p=0.02 Set-Cookie: PREF=ID=4503db3892d95965:TM=1420227476:LM=1420227476:S=7_wdZJbpVunPlv5V; expires=Sun, 01-Jan-2017 19:37:56 GMT; path=/; domain=.google.lt X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
https://history.google.com/history/optout?hl=lt | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Fri, 02 Jan 2015 19:37:56 GMT Location: http://www.google.com/ Server: Search-History HTTP Server Content-Length: 219 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 443:quic,p=0.02 Set-Cookie: PREF=ID=841015246d4f4e05:TM=1420227476:LM=1420227476:S=jhRZG-_KplZGs3zy; expires=Sun, 01-Jan-2017 19:37:56 GMT; path=/; domain=.google.com X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.google.com/ | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Fri, 02 Jan 2015 19:37:56 GMT Location: http://www.google.lt/?gws_rd=cr&ei=lPOmVKPKMOP9ygPzxoGQCw Server: gws Content-Length: 258 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic,p=0.02 P3P: CP="This is not a P3P policy! See http://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info." Set-Cookie: PREF=ID=266cfb4f73831e94:FF=0:TM=1420227476:LM=1420227476:S=2Fjs4_EMsDGRoiju; expires=Sun, 01-Jan-2017 19:37:56 GMT; path=/; domain=.google.com Set-Cookie: NID=67=p-ytAtJuYG4AJ4ocYbybhZMFMlgtwK6N3-aHpjKzU7WEDbo3QAArHOGfO00cdeEf_g-y18EC0rRcY_H1EjnR0bkQfwAA0ub9lRnzPzVvUylfp5K7xIqRBxbHNyqlgJXp; expires=Sat, 04-Jul-2015 19:37:56 GMT; path=/; domain=.google.com; HttpOnly X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.google.lt/?gws_rd=cr&ei=lpomvkpkmop9ygpzxogqcw | 200 OK Content-Length: 51464 Content-Type: text/html | clean |
http://www.google.lt/chrome/index.html?hl=lt&brand=CHNG&utm_source=lt-hpp&utm_medium=hpp&utm_campaign=lt | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Fri, 02 Jan 2015 19:37:57 GMT Location: https://www.google.lt/chrome/browser/?hl=lt&brand=CHNG&utm_source=lt-hpp&utm_medium=hpp&utm_campaign=lt Server: sffe Content-Length: 316 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic,p=0.02 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
https://www.google.lt/chrome/browser/?hl=lt&brand=chng&utm_source=lt-hpp&utm_medium=hpp&utm_campaign=lt | HTTP/1.1 200 OK Cache-Control: private, max-age=0 Connection: close Date: Fri, 02 Jan 2015 19:37:57 GMT Server: sffe Vary: Accept-Encoding Content-Type: text/html Expires: Fri, 02 Jan 2015 19:37:57 GMT Last-Modified: Tue, 02 Dec 2014 18:04:39 GMT Alternate-Protocol: 443:quic,p=0.02 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
https://www.google.lt/chrome/browser/../../chrome/browser/desktop/index.html | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Fri, 02 Jan 2015 19:37:57 GMT Location: https://www.google.lt/chrome/browser/desktop/index.html Server: GFE/2.0 Content-Length: 252 Content-Type: text/html; charset=UTF-8 | clean |
https://www.google.lt/chrome/browser/desktop/index.html | 200 OK Content-Length: 43032 Content-Type: text/html | clean |
https://www.google.lt//www.gstatic.com/external_hosted/modernizr/modernizr.js/ | 404 Not Found Content-Length: 1464 Content-Type: text/html | clean |
https://www.google.lt//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=176.102.38.46
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://176.102.38.46/
Result: 176.102.38.46 is not infected or malware details are not published yet.
Result: 176.102.38.46 is not infected or malware details are not published yet.