Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://www.anprom.ru/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.anprom.ru Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Mon, 16 Jun 2014 12:32:59 GMT Location: http://goo.gl/0rXySb Server: Jino.ru/mod_pizza Content-Length: 204 Content-Type: text/html | malicious |
URL: http://goo.gl/0rXySb (imitation of visitor from search engine) GET /0rXySb HTTP/1.1 Host: goo.gl Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, no-store, max-age=0, must-revalidate Connection: close Date: Mon, 16 Jun 2014 12:37:34 GMT Pragma: no-cache Age: 38 Location: http://sh.oowoo.ru/redsh.php Server: GSE Content-Type: text/html; charset=UTF-8 Expires: Mon, 01 Jan 1990 00:00:00 GMT Alternate-Protocol: 80:quic X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | malicious |
URL: http://sh.oowoo.ru/redsh.php (imitation of visitor from search engine) GET /redsh.php HTTP/1.1 Host: sh.oowoo.ru Referer: http://www.google.com/search?q=redirect+check3 | HTTP/1.1 302 Found Connection: close Date: Mon, 16 Jun 2014 12:32:50 GMT Location: http://frnon.ru/api/rotation.php?f=1&sites=1&s=12939&q=%D0%9D%D0%BE%D0%B2%D0%B8%D0%BD%D0%BA%D0%B8 Server: nginx/1.1.10 Content-Length: 0 Content-Type: text/html; charset=cp1251 X-Powered-By: PHP/5.2.17 | suspicious |
URL: http://frnon.ru/api/rotation.php?f=1&sites=1&s=12939&q=%D0%9D%D0%BE%D0%B2%D0%B8%D0%BD%D0%BA%D0%B8 (imitation of visitor from search engine) GET /api/rotation.php?f=1&sites=1&s=12939&q=%D0%9D%D0%BE%D0%B2%D0%B8%D0%BD%D0%BA%D0%B8 HTTP/1.1 Host: frnon.ru Referer: http://www.google.com/search?q=redirect+check4 | HTTP/1.1 302 Found Connection: close Date: Mon, 16 Jun 2014 12:38:13 GMT Location: http://tcme.searchesroyal.ru/search?f=1&sites=1&s=12939&q=%D0%9D%D0%BE%D0%B2%D0%B8%D0%BD%D0%BA%D0%B8 Server: nginx/1.4.2 Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.4.4-14+deb7u9 | suspicious |
Scanned pages/files
Request | Server response | Status |
http://www.anprom.ru/ | 200 OK Content-Length: 20759 Content-Type: text/html | clean |
http://www.anprom.ru/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/javascript | clean |
http://www.anprom.ru/modules/mod_news_pro_gk1/scripts/engine_standard_compressed.js | 200 OK Content-Length: 1667 Content-Type: application/javascript | clean |
http://www.anprom.ru/modules/mod_ariyuimenu/mod_ariyuimenu/js/build/yahoo-dom-event/yahoo-dom-event.js | 200 OK Content-Length: 36628 Content-Type: application/javascript | clean |
http://www.anprom.ru/modules/mod_ariyuimenu/mod_ariyuimenu/js/build/container/container_core-min.js | 200 OK Content-Length: 42173 Content-Type: application/javascript | clean |
http://www.anprom.ru/modules/mod_ariyuimenu/mod_ariyuimenu/js/build/menu/menu-min.js | 200 OK Content-Length: 56063 Content-Type: application/javascript | clean |
http://www.anprom.ru/index.php?option=com_content&view=article&id=183&Itemid=153 | 200 OK Content-Length: 20880 Content-Type: text/html | clean |
http://www.anprom.ru/index.php?option=com_content&view=article&id=52&Itemid=185 | 200 OK Content-Length: 25817 Content-Type: text/html | clean |
http://www.anprom.ru/index.php?option=com_content&view=article&id=53&Itemid=66 | 200 OK Content-Length: 15555 Content-Type: text/html | clean |
http://www.anprom.ru/index.php?option=com_content&view=article&id=55&Itemid=67 | 200 OK Content-Length: 31433 Content-Type: text/html | clean |
http://www.anprom.ru/index.php?option=com_content&view=article&id=148&Itemid=152 | 200 OK Content-Length: 26553 Content-Type: text/html | clean |
http://www.anprom.ru/index.php?option=com_content&view=article&id=87&Itemid=118 | 200 OK Content-Length: 22858 Content-Type: text/html | clean |
http://www.anprom.ru/index.php?option=com_content&view=article&id=110&Itemid=133 | 200 OK Content-Length: 14740 Content-Type: text/html | clean |
http://www.anprom.ru/index.php?option=com_content&view=article&id=181&Itemid=182 | 200 OK Content-Length: 24097 Content-Type: text/html | clean |
http://www.anprom.ru/index.php?option=com_content&view=article&id=182&Itemid=183 | 200 OK Content-Length: 13347 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=anprom.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://anprom.ru/
Result: anprom.ru is not infected or malware details are not published yet.
Result: anprom.ru is not infected or malware details are not published yet.