Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://3dmaya.com.ua/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: 3dmaya.com.ua Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Moved Temporarily Cache-Control: max-age=0, no-cache Connection: close Date: Wed, 28 Jan 2015 23:03:30 GMT Location: http://82.118.18.238/?80&source=3dmaya.com.ua Server: nginx Content-Type: text/html; charset=CP1251 X-Page-Speed: on | malicious |
URL: http://82.118.18.238/?80&source=3dmaya.com.ua (imitation of visitor from search engine) GET /?80&source=3dmaya.com.ua HTTP/1.1 Host: 82.118.18.238 Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Moved Temporarily Cache-Control: max-age=0 Connection: close Date: Wed, 28 Jan 2015 23:02:35 GMT Pragma: no-cache Location: http://myfreedownloadsnow.com/download_direct80.php?id=2803&name=Flash Player Update Server: nginx Content-Length: 0 Content-Type: text/html; charset=utf-8 Expires: Thu, 21 Jul 1977 07:30:00 GMT Last-Modified: Wed, 28 Jan 2015 23:02:35 GMT X-Powered-By: PHP/5.3.3 | suspicious |
URL: http://myfreedownloadsnow.com/download_direct80.php?id=2803&name=Flash Player Update (imitation of visitor from search engine) GET /download_direct80.php?id=2803&name=Flash Player Update HTTP/1.1 Host: myfreedownloadsnow.com Referer: http://www.google.com/search?q=redirect+check3 | HTTP/1.1 302 Found Connection: close Date: Wed, 28 Jan 2015 19:57:58 GMT Location: http://www.geranium-download.com/pdownload.php?version=1.1.5.26&campid=3687&instid[appname]=Flash%20Player%20Update%20Downloader&instid[appsetupurl]=http%3A%2F%2Ffastmediadownloads.com%2Fdownload%2FPrompt-Downloader-1418601303.exe&instid[cmdline]=&instid[appimageurl]=http%3A%2F%2Fpromptdownloader.com%2Flogo.png&prefix=Flash%20Player%20Update%20Downloader&instid[interrupted]=http%3A%2F%2Fpromptdownloader.com%2F%3Fcancel&ti1=1418601303&instid[thankyoupage]=http%3A%2F%2Fpromptdownloader.com%2F%3Fsuccess Server: nginx/1.0.15 Content-Length: 0 Content-Type: text/html; charset=utf-8 Set-Cookie: affid=2803; expires=Thu, 28-Jan-2016 19:57:57 GMT; path=/ Set-Cookie: httpref=http%3A%2F%2Fwww.google.com%2Furl%3Fsa%3Dt%26rct%3Dj%26q%3D3dmaya.com.ua%26source%3Dweb%26cd%3D1%26ved%3D0CDEQFjAG%26url%3Dhttp%3A%252F%252F3dmaya.com.ua%252F%26ei%3DwC7yT5qCJbCCkQKtnwE%26usg%3DAFQjCNGEeYp3D7uuNLAJxMIVliLyQ9O_Pg; expires=Thu, 28-Jan-2016 19:57:57 GMT; path=/ Set-Cookie: trackaffid=2803; expires=Thu, 28-Jan-2016 19:57:58 GMT; path=/ Set-Cookie: trackhttpref=http%3A%2F%2Fwww.google.com%2Furl%3Fsa%3Dt%26rct%3Dj%26q%3D3dmaya.com.ua%26source%3Dweb%26cd%3D1%26ved%3D0CDEQFjAG%26url%3Dhttp%3A%252F%252F3dmaya.com.ua%252F%26ei%3DwC7yT5qCJbCCkQKtnwE%26usg%3DAFQjCNGEeYp3D7uuNLAJxMIVliLyQ9O_Pg; expires=Thu, 28-Jan-2016 19:57:58 GMT; path=/ X-Powered-By: PHP/5.3.3 | suspicious |
URL: http://www.geranium-download.com/pdownload.php?version=1.1.5.26&campid=3687&instid[appname]=Flash%20Player%20Update%20Downloader&instid[appsetupurl]=http%3A%2F%2Ffastmediadownloads.com%2Fdownload%2FPrompt-Downloader-1418601303.exe&instid[cmdline]=&instid[appimageurl]=http%3A%2F%2Fpromptdownloader.com%2Flogo.png&prefix=Flash%20Player%20Update%20Downloader&instid[interrupted]=http%3A%2F%2Fpromptdownloader.com%2F%3Fcancel&ti1=1418601303&instid[thankyoupage]=http%3A%2F%2Fpromptdownloader.com%2F%3Fsuccess (imitation of visitor from search engine) GET /pdownload.php?version=1.1.5.26&campid=3687&instid[appname]=Flash%20Player%20Update%20Downloader&instid[appsetupurl]=http%3A%2F%2Ffastmediadownloads.com%2Fdownload%2FPrompt-Downloader-1418601303.exe&instid[cmdline]=&instid[appimageurl]=http%3A%2F%2Fpromptdownloader.com%2Flogo.png&prefix=Flash%20Player%20Update%20Downloader&instid[interrupted]=http%3A%2F%2Fpromptdownloader.com%2F%3Fcancel&ti1=1418601303&instid[thankyoupage]=http%3A%2F%2Fpromptdownloader.com%2F%3Fsuccess HTTP/1.1 Host: www.geranium-download.com Referer: http://www.google.com/search?q=redirect+check4 | HTTP/1.1 302 Found Connection: Close Date: Wed, 28 Jan 2015 23:03:32 GMT Location: http://www.april1-dmdd-download.com/tdownload.php?s1=15e19e7ad94e9857d222454085eb3389c2b0ed6d&t1=1422486392&version=1.1.5.26&campid=3687&instid[appname]=Flash%20Player%20Update%20Downloader&instid[appsetupurl]=http%3A%2F%2Ffastmediadownloads.com%2Fdownload%2FPrompt-Downloader-1418601303.exe&instid[cmdline]=&instid[appimageurl]=http%3A%2F%2Fpromptdownloader.com%2Flogo.png&prefix=Flash%20Player%20Update%20Downloader&instid[interrupted]=http%3A%2F%2Fpromptdownloader.com%2F%3Fcancel&ti1=1418601303&instid[thankyoupage]=http%3A%2F%2Fpromptdownloader.com%2F%3Fsuccess Server: Apache/2.2.15 (Red Hat) Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.3.3 | suspicious |
Scanned pages/files
Request | Server response | Status |
http://3dmaya.com.ua/ | 200 OK Content-Length: 62894 Content-Type: text/html | clean |
http://3dmaya.com.ua/wp-includes/js/jquery/jquery.js,qver=1.11.1.pagespeed.ce.JcduYywe4v.js | 200 OK Content-Length: 95807 Content-Type: application/x-javascript | clean |
http://3dmaya.com.ua/wp-includes/js/jquery/jquery-migrate.min.js,qver=1.2.1.pagespeed.ce.USuHGigw5E.js | 200 OK Content-Length: 7200 Content-Type: application/x-javascript | clean |
http://3dmaya.com.ua/wp-content/themes/DynamiX/js/nv-script.pack.js,qver,P5B0,P5D=jquery.pagespeed.ce.3TVVPcy0fO.js | 200 OK Content-Length: 12452 Content-Type: application/x-javascript | clean |
http://3dmaya.com.ua/wp-content/plugins/metro_grid/js/external/TweenMax.min.js,qver=4.0.1.pagespeed.ce.h5ejh1OeKY.js | 200 OK Content-Length: 94229 Content-Type: application/x-javascript | clean |
http://3dmaya.com.ua/wp-content/plugins/metro_grid/js/external/packery.pkgd.min.js,qver=4.0.1.pagespeed.ce.LGQH6BeXF9.js | 200 OK Content-Length: 31350 Content-Type: application/x-javascript | clean |
http://3dmaya.com.ua/wp-content/plugins/metro_grid/js/sk_grid_js.js,qver=4.0.1.pagespeed.ce.sbA9bCfd3t.js | 200 OK Content-Length: 37203 Content-Type: application/x-javascript | clean |
http://3dmaya.com.ua/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js,qver=3.51.0-2014.06.20.pagespeed.ce.9EjFk8JC0T.js | 200 OK Content-Length: 15248 Content-Type: application/x-javascript | clean |
http://3dmaya.com.ua/wp-content/plugins/contact-form-7/includes/js/scripts.js,qver=4.0.2.pagespeed.ce.EQslzOm3Wh.js | 200 OK Content-Length: 9658 Content-Type: application/x-javascript | clean |
http://3dmaya.com.ua/wp-content/plugins/fancy-gallery/assets/js/fancy-gallery.js?ver=1.5.6.1 | 200 OK Content-Length: 37065 Content-Type: application/x-javascript | clean |
http://3dmaya.com.ua/wp-includes/js/jquery/ui/jquery.ui.core.min.js,qver=1.10.4.pagespeed.ce.R6Inedl3U0.js | 200 OK Content-Length: 4289 Content-Type: application/x-javascript | clean |
http://3dmaya.com.ua/wp-includes/js/jquery/ui/jquery.ui.effect.min.js,qver=1.10.4.pagespeed.ce.lvHmvZ2dBC.js | 200 OK Content-Length: 12972 Content-Type: application/x-javascript | clean |
http://3dmaya.com.ua/wp-content/themes/DynamiX/js/jquery.fancybox.min.js,qver,P5B0,P5D=jquery.pagespeed.ce.nQSQC5d2Mp.js | 200 OK Content-Length: 26046 Content-Type: application/x-javascript | clean |
http://3dmaya.com.ua/wp-content/themes/DynamiX/js/jquery.reflection.js,qver,P5B0,P5D=jquery.pagespeed.ce.FmQD_kY5k3.js | 200 OK Content-Length: 1867 Content-Type: application/x-javascript | clean |
http://3dmaya.com.ua/wp-content/themes/DynamiX/lib/adm/inc/js_composer/assets/js/js_composer_front.js?ver=3.6.8 | 200 OK Content-Length: 18970 Content-Type: application/x-javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=3dmaya.com.ua
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://3dmaya.com.ua/
Result: 3dmaya.com.ua is not infected or malware details are not published yet.
Result: 3dmaya.com.ua is not infected or malware details are not published yet.