Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: avtospec-42.ru
Result:
HTTP/1.1 200 OK
Cache-Control: public, public
Connection: close
Date: Sat, 07 Mar 2015 02:58:04 GMT
Pragma: public
Accept-Ranges: bytes
ETag: "2540-510a9180d15be"
Server: nginx/1.6.2
Vary: Accept-Encoding,Cookie
Content-Length: 9536
Content-Type: text/html; charset=UTF-8
Last-Modified: Sat, 07 Mar 2015 01:55:22 GMT
...9536 bytes of data.
GET / HTTP/1.1
Host: avtospec-42.ru
Result:
HTTP/1.1 200 OK
Cache-Control: public, public
Connection: close
Date: Sat, 07 Mar 2015 02:58:04 GMT
Pragma: public
Accept-Ranges: bytes
ETag: "2540-510a9180d15be"
Server: nginx/1.6.2
Vary: Accept-Encoding,Cookie
Content-Length: 9536
Content-Type: text/html; charset=UTF-8
Last-Modified: Sat, 07 Mar 2015 01:55:22 GMT
...9536 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: avtospec-42.ru
Referer: http://www.google.com/search?q=avtospec-42.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: avtospec-42.ru
Referer: http://www.google.com/search?q=avtospec-42.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://avtospec-42.ru/ | 200 OK Content-Length: 9536 Content-Type: text/html | clean |
http://avtospec-42.ru/wp-content/themes/avtospec/script.js | 200 OK Content-Length: 8241 Content-Type: application/x-javascript | clean |
http://avtospec-42.ru//yandex.st/share/share.js/ | 404 Not Found Content-Length: 6329 Content-Type: text/html | clean |
http://avtospec-42.ru/news/ | 200 OK Content-Length: 15748 Content-Type: text/html | clean |
http://avtospec-42.ru/price/ | 200 OK Content-Length: 9341 Content-Type: text/html | clean |
http://avtospec-42.ru/contacts/ | 200 OK Content-Length: 7624 Content-Type: text/html | clean |
http://avtospec-42.ru/partner/ | 200 OK Content-Length: 7637 Content-Type: text/html | clean |
http://avtospec-42.ru/job/ | 200 OK Content-Length: 6773 Content-Type: text/html | clean |
http://avtospec-42.ru/test404page.js | 404 Not Found Content-Length: 6350 Content-Type: text/html | clean |
http://avtospec-42.ru/wp-content/uploads/2015/02/sheme.jpg?688ab8 | 200 OK Content-Length: 189461 Content-Type: image/jpeg | clean |
http://avtospec-42.ru/wp-content/uploads/2015/02/price.xls?688ab8 | 200 OK Content-Length: 117248 Content-Type: application/vnd.ms-excel | clean |
http://avtospec-42.ru/%d1%83%d1%87%d0%b0%d1%81%d1%82%d0%b8%d0%b5-%d0%b2-x-%d1%81%d0%b8%d0%b1%d0%b8%d1%80%d1%81%d0%ba%d0%be%d0%bc-%d1%81%d1%82%d1%80%d0%be%d0%b8%d1%82%d0%b5%d0%bb%d1%8c%d0%bd%d0%be%d0%bc-%d1%84%d0%be%d1%80/ | 200 OK Content-Length: 10186 Content-Type: text/html | clean |
http://avtospec-42.ru/%d0%ba%d0%be%d0%bc%d0%bf%d0%b0%d0%bd%d0%b8%d1%8f-%d0%bf%d0%b5%d1%80%d0%b5%d0%b5%d1%85%d0%b0%d0%bb%d0%b0/ | 200 OK Content-Length: 9894 Content-Type: text/html | clean |
http://avtospec-42.ru/new_gost/ | 200 OK Content-Length: 12426 Content-Type: text/html | clean |
http://avtospec-42.ru/forum_feb_2014/ | 200 OK Content-Length: 10241 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=avtospec-42.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://avtospec-42.ru/
Result: avtospec-42.ru is not infected or malware details are not published yet.
Result: avtospec-42.ru is not infected or malware details are not published yet.