Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: artdepo.by
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 08 Jan 2015 17:19:27 GMT
Server: nginx/0.8.54
Content-Type: text/html; charset=UTF-8
Link: <http://artdepo.by/>; rel=shortlink
Set-Cookie: wfvt_1243213581=54aebc1f54687; expires=Thu, 08-Jan-2015 17:49:27 GMT; path=/; httponly
X-Pingback: http://artdepo.by/xmlrpc.php
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: artdepo.by
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 08 Jan 2015 17:19:27 GMT
Server: nginx/0.8.54
Content-Type: text/html; charset=UTF-8
Link: <http://artdepo.by/>; rel=shortlink
Set-Cookie: wfvt_1243213581=54aebc1f54687; expires=Thu, 08-Jan-2015 17:49:27 GMT; path=/; httponly
X-Pingback: http://artdepo.by/xmlrpc.php
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: artdepo.by
Referer: http://www.google.com/search?q=artdepo.by
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: artdepo.by
Referer: http://www.google.com/search?q=artdepo.by
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://www.artdepo.by/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 08 Jan 2015 17:19:26 GMT Location: http://artdepo.by/ Server: nginx/0.8.54 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Set-Cookie: wfvt_1243213581=54aebc1e2aaf4; expires=Thu, 08-Jan-2015 17:49:26 GMT; path=/; httponly X-Pingback: http://artdepo.by/xmlrpc.php X-Powered-By: PHP/5.2.17 | clean |
http://artdepo.by/ | 200 OK Content-Length: 30243 Content-Type: text/html | clean |
http://artdepo.by/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://artdepo.by/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://artdepo.by/wp-content/plugins/vkontakte-api/js/callback.js?ver=4.1 | 200 OK Content-Length: 5165 Content-Type: application/javascript | clean |
http://artdepo.by/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.plugins.min.js?ver=4.1 | 200 OK Content-Length: 17331 Content-Type: application/javascript | clean |
http://artdepo.by/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=4.1 | 200 OK Content-Length: 56235 Content-Type: application/javascript | clean |
http://artdepo.by/wp-includes/js/jquery/ui/core.min.js?ver=1.11.2 | 200 OK Content-Length: 3998 Content-Type: application/javascript | clean |
http://artdepo.by/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.2 | 200 OK Content-Length: 6903 Content-Type: application/javascript | clean |
http://artdepo.by/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.2 | 200 OK Content-Length: 3156 Content-Type: application/javascript | clean |
http://artdepo.by/wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.2 | 200 OK Content-Length: 24575 Content-Type: application/javascript | clean |
http://artdepo.by/wp-includes/js/jquery/ui/tabs.min.js?ver=1.11.2 | 200 OK Content-Length: 12076 Content-Type: application/javascript | clean |
http://artdepo.by/wp-includes/js/jquery/ui/accordion.min.js?ver=1.11.2 | 200 OK Content-Length: 8508 Content-Type: application/javascript | clean |
http://artdepo.by/wp-content/themes/kora/js/fancybox/jquery.fancybox-1.3.4.js?ver=1.0.0 | 200 OK Content-Length: 29398 Content-Type: application/javascript | clean |
http://artdepo.by/wp-content/themes/kora/js/sliders/responsiveslides.js?ver=1.0.0 | 200 OK Content-Length: 9584 Content-Type: application/javascript | clean |
http://artdepo.by/wp-content/themes/kora/js/sliders/jquery.jcarousel.min.js?ver=1.0.0 | 200 OK Content-Length: 15666 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=artdepo.by
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://artdepo.by/
Result: artdepo.by is not infected or malware details are not published yet.
Result: artdepo.by is not infected or malware details are not published yet.