Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://bananowiec.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: bananowiec.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 28 Aug 2014 05:06:11 GMT Location: http://46.161.41.152/sds/go.php?sid=1 Server: Apache/2 Content-Length: 311 Content-Type: text/html; charset=iso-8859-1 | malicious |
URL: http://46.161.41.152/sds/go.php?sid=1 (imitation of visitor from search engine) GET /sds/go.php?sid=1 HTTP/1.1 Host: 46.161.41.152 Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Found Connection: close Date: Thu, 28 Aug 2014 05:09:31 GMT Referer: http://www.google.com/url?sa=t&rct=j&q=bananowiec.com&source=web&cd=1&ved=0CDEQFjAG&url=http:%2F%2Fbananowiec.com%2F&ei=wC7yT5qCJbCCkQKtnwE&usg=AFQjCNGEeYp3D7uuNLAJxMIVliLyQ9O_Pg Location: http://medicskrh.ru/ Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html Set-Cookie: schema1=true; expires=Thu, 04-Sep-2014 05:09:31 GMT Set-Cookie: visited1=2; expires=Thu, 04-Sep-2014 05:09:31 GMT X-Powered-By: PHP/5.4.4-14+deb7u14 | suspicious |
Scanned pages/files
Request | Server response | Status |
http://bananowiec.com/ | 200 OK Content-Length: 13825 Content-Type: text/html | clean |
http://bananowiec.com/media/system/js/mootools-core.js | 200 OK Content-Length: 96362 Content-Type: application/javascript | clean |
http://bananowiec.com/media/system/js/core.js | 200 OK Content-Length: 4784 Content-Type: application/javascript | clean |
http://bananowiec.com/media/system/js/caption.js | 200 OK Content-Length: 729 Content-Type: application/javascript | clean |
http://bananowiec.com/media/system/js/mootools-more.js | 200 OK Content-Length: 238331 Content-Type: application/javascript | clean |
http://bananowiec.com/templates/ashton/js/jquery.js | 200 OK Content-Length: 93885 Content-Type: application/javascript | clean |
http://bananowiec.com/templates/ashton/js/superfish.js | 200 OK Content-Length: 4675 Content-Type: application/javascript | clean |
http://bananowiec.com/templates/ashton/js/hoverIntent.js | 200 OK Content-Length: 3589 Content-Type: application/javascript | clean |
http://bananowiec.com/templates/ashton/js/nivo.slider.js | 200 OK Content-Length: 11638 Content-Type: application/javascript | clean |
http://bananowiec.com/templates/ashton/js/scroll.js | HTTP/1.1 302 Found Connection: close Date: Thu, 28 Aug 2014 05:06:13 GMT Location: http://46.161.41.152/sds/go.php?sid=1 Server: Apache/2 Content-Length: 287 Content-Type: text/html; charset=iso-8859-1 | clean |
http://46.161.41.152/sds/go.php?sid=1 | HTTP/1.1 302 Found Connection: close Date: Thu, 28 Aug 2014 05:09:33 GMT Referer: Location: http://medicskrh.ru/ Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html Set-Cookie: schema1=true; expires=Thu, 04-Sep-2014 05:09:33 GMT Set-Cookie: visited1=2; expires=Thu, 04-Sep-2014 05:09:33 GMT X-Powered-By: PHP/5.4.4-14+deb7u14 | clean |
http://medicskrh.ru/ | 500 Server closed connection without sending any data back Content-Length: 105 Content-Type: text/plain | clean |
http://medicskrh.ru/test404page.js | 500 Server closed connection without sending any data back Content-Length: 105 Content-Type: text/plain | clean |
http://bananowiec.com/templates/ashton/js/hide.js | 200 OK Content-Length: 8118 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bananowiec.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bananowiec.com/
Result: bananowiec.com is not infected or malware details are not published yet.
Result: bananowiec.com is not infected or malware details are not published yet.